Get New 2021 PECB ISO-IEC-27001-Lead-Implementer Exam Dumps Bundle On flat Updated Dumps! [Q26-Q49]

Share

Get New 2021 PECB exam ISO-IEC-27001-Lead-Implementer Dumps Bundle On flat Updated Dumps!

Full ISO-IEC-27001-Lead-Implementer Practice Test and 50 unique questions with explanations waiting just for you, get it now!

NEW QUESTION 26
What is the objective of classifying information?

  • A. Displaying on the document who is permitted access
  • B. Creating alabel that indicates how confidential the information is
  • C. Defining different levels of sensitivity into which information may be arranged
  • D. Authorizing the use of an information system

Answer: C

 

NEW QUESTION 27
Logging in to a computer system is an access-granting process consisting of three steps: identification, authentication and authorization. What occurs during the first step of this process: identification?

  • A. Thefirst step consists of checking if the user is using the correct certificate.
  • B. The first step consists of granting access to the information to which the user is authorized.
  • C. The first step consists of checking if the user appears on the list of authorized users.
  • D. The first step consists of comparing the password with the registered password.

Answer: C

 

NEW QUESTION 28
In the context ofcontact with special interest groups, any information-sharing agreements should identify requirements for the protection of _________ information.

  • A. Authorization
  • B. Authentic
  • C. Availability
  • D. Confidential

Answer: D

 

NEW QUESTION 29
You are the owner of a growing company, SpeeDelivery, which provides courier services. You decide that it is time to draw up a risk analysis for your information system. This includes an inventoryof threats and risks.
What is the relation between a threat, risk and risk analysis?

  • A. A riskanalysis is used to remove the risk of a threat.
  • B. A risk analysis is used to clarify which threats are relevant and what risks they involve.
  • C. A risk analysis identifies threats from the known risks.
  • D. Risk analyses help to find a balance between threats and risks.

Answer: B

 

NEW QUESTION 30
Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the value of the information in the insurance terms and conditions document?

  • A. The person who drafted the insurance terms and conditions
  • B. The manager, Linda
  • C. The recipient, Rachel
  • D. The sender, Peter

Answer: C

 

NEW QUESTION 31
Select the controls that correspond to thedomain "9. ACCESS CONTROL" of ISO / 27002 (Choose three)

  • A. Restriction of access to information
  • B. Return of assets
  • C. Withdrawal or adaptation of access rights
  • D. Management of access rights with special privileges

Answer: A,B,C

 

NEW QUESTION 32
Select risk control activities for domain "10. Encryption" of ISO / 27002: 2013 (Choose two)

  • A. Physical security perimeter
  • B. Work in safe areas
  • C. Cryptographic Controls Use Policy
  • D. Key management

Answer: C,D

 

NEW QUESTION 33
A company moves into a new building. A few weeks after the move, a visitor appears unannounced in the office of the director. An investigation shows that visitors passes grant the same access as the passes of the company's staff. Which kind of security measure could have prevented this?

  • A. A technical security measure
  • B. physical security measure
  • C. An organizational security measure

Answer: B

 

NEW QUESTION 34
One of the ways Internet of Things (IoT) devices can communicate with each other (or 'the outside world') is using a so-called short-range radio protocol. Which kind of short-range radio protocol makes it possible to use your phone as a credit card?

  • A. Radio Frequency Identification (RFID)
  • B. The 4G protocol
  • C. Bluetooth
  • D. Near Field Communication (NFC)

Answer: D

 

NEW QUESTION 35
What should be used to protect data on removable media ifdata confidentiality or integrity are important considerations?

  • A. backup on another removable medium
  • B. logging
  • C. cryptographic techniques
  • D. a password

Answer: C

 

NEW QUESTION 36
You have juststarted working at a large organization. You have been asked to sign a code of conduct as well as a contract. What does the organization wish to achieve with this?

  • A. A code of conduct gives staff guidance on how to report suspected misuses of IT facilities.
  • B. A code of conduct prevents a virus outbreak.
  • C. A code of conduct is alegal obligation that organizations have to meet.
  • D. A code of conduct helps to prevent the misuse of IT facilities.

Answer: D

 

NEW QUESTION 37
ISO 27002 provides guidance in the following area

  • A. Framework for an overall security andcompliance program
  • B. Detailed lists of required policies and procedures
  • C. Information handling recommendations
  • D. PCI environment scoping

Answer: A

 

NEW QUESTION 38
Companies use 27002 for compliance for which of the following reasons:

  • A. Compliance with ISO 27002 is sufficient to comply with all regulations
  • B. A structured program that helps with security and compliance
  • C. Explicit requirements for all regulations

Answer: B

 

NEW QUESTION 39
Susan sends an email to Paul. Who determines the meaning and the value of information in this email?

  • A. Susan, the sender of the information.
  • B. Paul, therecipient of the information.
  • C. Paul and Susan, the sender and the recipient of the information.

Answer: B

 

NEW QUESTION 40
Who is accountable to classify information assets?

  • A. theasset owner
  • B. the CISO
  • C. the CEO
  • D. the Information Security Team

Answer: A

 

NEW QUESTION 41
What is the ISO / IEC 27002 standard?

  • A. It is a guide of good practices that describes the controlobjectives and recommended controls regarding information security.
  • B. It is a guide that focuses on the critical aspects necessary for the successful design and implementation of an ISMS in accordance with ISO / IEC 27001
  • C. It is a guide for the development and use of applicable metrics and measurement techniques to determine the effectiveness of an ISMS and the controls or groups of controls implemented according to ISO / IEC 27001.

Answer: A

 

NEW QUESTION 42
You apply for a position in another company and get the job. Along with your contract, you are asked to sign a code of conduct. What is a code of conduct?

  • A. A code of conduct is a standard part of a labor contract.
  • B. A code of conduct differs from company to company and specifies, among other things, the rules of behavior with regard to the usage of information systems.
  • C. A code ofconduct specifies how employees are expected to conduct themselves and is the same for all companies.

Answer: B

 

NEW QUESTION 43
What is the greatest risk for an organization ifno information security policy has been defined?

  • A. It is not possible for an organization to implement information security in a consistent manner.
  • B. Information security activities are carried out by only a few people.
  • C. Too many measures areimplemented.
  • D. If everyone works with the same account, it is impossible to find out who worked on what.

Answer: A

 

NEW QUESTION 44
We can acquire and supply information in various ways. The value of the information depends on whether it is reliable. What are the reliability aspects of information?

  • A. Availability, Information Value and Confidentiality
  • B. Availability, Integrity and Completeness
  • C. Timeliness, Accuracy and Completeness
  • D. Availability, Integrity and Confidentiality

Answer: D

 

NEW QUESTION 45
What is the best description of a risk analysis?

  • A. A risk analysis calculates the exact financial consequences of damages.
  • B. A risk analysis helps to estimate the risks and develop the appropriate security measures.
  • C. A risk analysis is a method of mapping risks without looking at company processes.

Answer: B

 

NEW QUESTION 46
......

[Aug-2021] Pass PECB ISO-IEC-27001-Lead-Implementer Exam in First Attempt Guaranteed: https://drive.google.com/open?id=1gpLwcrxtj-JL__DUKpq8Br_Dks7sd_MG

Reduce Your Chance of Failure in ISO-IEC-27001-Lead-Implementer Exam: https://www.trainingdump.com/PECB/ISO-IEC-27001-Lead-Implementer-practice-exam-dumps.html

 

0
0
0
0