Easily To Pass New PECB ISO-IEC-27001-Lead-Implementer Dumps with 50 Questions
Latest ISO-IEC-27001-Lead-Implementer Study Guides 2022 - With Test Engine PDF
NEW QUESTION 26
Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the value of the information in the insurance terms and conditions document?
- A. The recipient, Rachel
- B. The person who drafted the insurance terms and conditions
- C. The sender, Peter
- D. The manager, Linda
Answer: A
NEW QUESTION 27
You apply for a position in another company and get the job. Along with your contract, you are asked to sign a code of conduct. What is a code of conduct?
- A. A code of conduct is a standard part of a labor contract.
- B. A code of conduct differs from company to company and specifies, among other things, the rules of behavior with regard to the usage of information systems.
- C. A code ofconduct specifies how employees are expected to conduct themselves and is the same for all companies.
Answer: B
NEW QUESTION 28
What sort of security does a Public Key Infrastructure (PKI) offer?
- A. It provides digital certificates that can be used to digitally signdocuments. Such signatures irrefutably determine from whom a document was sent.
- B. Having a PKI shows customers that a web-based business is secure.
- C. By providing agreements, procedures and an organization structure, a PKI defines which person or which system belongs to which specific public key.
- D. A PKI ensures that backups of company data are made on a regular basis.
Answer: D
NEW QUESTION 29
What is the most important reason for applying the segregation of duties?
- A. Segregation of duties makes it clear who is responsible for what.
- B. Segregation of duties makes it easier for a person who is readywith his or her part of the work to take time off or to take over the work of another person.
- C. Segregation of duties ensures that, when a person is absent, it can be investigated whether he or she has been committing fraud.
- D. Tasks and responsibilities must be separated in order to minimize the opportunities for business assets to be misused or changed, whether the change be unauthorized or unintentional.
Answer: D
NEW QUESTION 30
Who is accountable to classify information assets?
- A. the CEO
- B. theasset owner
- C. the Information Security Team
- D. the CISO
Answer: B
NEW QUESTION 31
Which of these control objectives are NOT in the domain "12.OPERATIONAL SAFETY"?
- A. Protection against malicious code
- B. Redundancies
- C. Technical vulnerability management
- D. Test data
Answer: B
NEW QUESTION 32
You are a consultant and areregularly hired by the Ministry of Defense to perform analysis. Since the assignments are irregular, you outsource the administration of your business to temporary workers. You don't want the temporary workers to have access to your reports.
Which reliability aspect of the information in your reports must you protect?
- A. Confidentiality
- B. Availability
- C. Integrity
Answer: A
NEW QUESTION 33
A non-human threat for computer systems is a flood. In which situation is a flood always a relevant threat?
- A. When the organization is located near a river.
- B. When computer systems are kept in a cellar below ground level.
- C. If the riskanalysis has not been carried out.
- D. When the computer systems are not insured.
Answer: B
NEW QUESTION 34
Which is a legislative or regulatory act related to information security that can be imposed upon all organizations?
- A. Personal data protection legislation
- B. Intellectual Property Rights
- C. ISO/IEC 27002:2005
- D. ISO/IEC 27001:2005
Answer: A
NEW QUESTION 35
An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry date of a contract with one of theclients is earlier than the start date. What type of measure could prevent this error?
- A. Organizational measure
- B. Availability measure
- C. Integrity measure
- D. Technical measure
Answer: D
NEW QUESTION 36
It is allowed that employees and contractors are provided with an anonymous reporting channel to report violations of information security policies or procedures ("whistle blowing")
- A. False
- B. True
Answer: B
NEW QUESTION 37
What is an example of a good physical security measure?
- A. Maintenance staff can be given quick and unimpeded access to the server area in the event of disaster.
- B. Printers that are defective or have been replacedare immediately removed and given away as garbage for recycling.
- C. All employees and visitors carry an access pass.
Answer: C
NEW QUESTION 38
What is an example of a security incident?
- A. A file is saved under an incorrect name.
- B. You cannot set the correct fonts in your word processing software.
- C. The lighting in the department no longer works.
- D. A member of staff loses a laptop.
Answer: D
NEW QUESTION 39
What is the greatest risk for an organization ifno information security policy has been defined?
- A. If everyone works with the same account, it is impossible to find out who worked on what.
- B. Information security activities are carried out by only a few people.
- C. It is not possible for an organization to implement information security in a consistent manner.
- D. Too many measures areimplemented.
Answer: C
NEW QUESTION 40
How many domains does ISO / IEC 27002: 2013 have?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: C
NEW QUESTION 41
What should be used to protect data on removable media ifdata confidentiality or integrity are important considerations?
- A. backup on another removable medium
- B. a password
- C. cryptographic techniques
- D. logging
Answer: C
NEW QUESTION 42
......
ISO-IEC-27001-Lead-Implementer Dumps and Exam Test Engine: https://www.examslabs.com/PECB/ISO-27001/best-ISO-IEC-27001-Lead-Implementer-exam-dumps.html
Get New ISO-IEC-27001-Lead-Implementer Practice Test Questions Answers : https://drive.google.com/open?id=1u3OzQf_u34jMQnpgqD6okDxYOsr2s1bZ