
Ultimate Guide to Prepare ISO-IEC-27001-Lead-Auditor Certification Exam for ISO 27001 in 2021
Use Real ISO-IEC-27001-Lead-Auditor Dumps - PECB Correct Answers updated on 2021
NEW QUESTION 38
What is a definition of compliance?
- A. A rule or directive made and maintained by an authority.
- B. An official or authoritative instruction
- C. Laws, considered collectively or the process of making or enacting laws
- D. The state or fact of according with or meeting rules or standards
Answer: D
NEW QUESTION 39
What is a repressive measure in case of a fire?
- A. Putting out a fire after it has been detected by a fire detector
- B. Taking out a fire insurance
- C. Repairing damage caused by the fire
Answer: A
NEW QUESTION 40
A hacker gains access to a web server and reads the credit card numbers stored on that server. Which security principle is violated?
- A. Integrity
- B. Availability
- C. Confidentiality
- D. Authenticity
Answer: C
NEW QUESTION 41
Changes to the information processing facilities shall be done in controlled manner.
- A. True
- B. False
Answer: A
NEW QUESTION 42
A member of staff denies sending a particular message.
Which reliability aspect of information is in danger here?
- A. confidentiality
- B. integrity
- C. correctness
- D. availability
Answer: B
NEW QUESTION 43
There is a scheduled fire drill in your facility. What should you do?
- A. Excuse yourself by saying you have an urgent deliverable
- B. Call in sick
- C. None of the above
- D. Participate in the drill
Answer: D
NEW QUESTION 44
Backup media is kept in the same secure area as the servers. What risk may the organisation be exposed to?
- A. Responsibility for the backups is not defined well
- B. After a server crash, it will take extra time to bring it back up again
- C. Unauthorised persons will have access to both the servers and backups
- D. After a fire, the information systems cannot be restored
Answer: D
NEW QUESTION 45
Availability means
- A. Service should not be accessible when required
- B. Service should be accessible at the required time and usable by all
- C. Service should be accessible at the required time and usable only by the authorized entity
Answer: C
NEW QUESTION 46
In order to take out a fire insurance policy, an administration office must determine the value of the data that it manages.
Which factor is [b]not[/b] important for determining the value of data for an organization?
- A. The content of data.
- B. The degree to which missing, incomplete or incorrect data can be recovered.
- C. The importance of the business processes that make use of the data.
- D. The indispensability of data for the business processes.
Answer: A
NEW QUESTION 47
What controls can you do to protect sensitive data in your computer when you go out for lunch?
- A. You turn off the monitor
- B. You lock your computer by pressing Windows+L or CTRL-ALT-DELETE and then click "Lock Computer".
- C. You activate your favorite screen-saver
- D. You are confident to leave your computer screen as is since a password protected screensaver is installed and it is set to activate after 10 minutes of inactivity
Answer: B
NEW QUESTION 48
Which reliability aspect of information is compromised when a staff member denies having sent a message?
- A. Availability
- B. Integrity
- C. Confidentiality
- D. Correctness
Answer: B
NEW QUESTION 49
After a devastating office fire, all staff are moved to other branches of the company. At what moment in the incident management process is this measure effectuated?
- A. Between recovery and normal operations
- B. Between classification and escalation
- C. Between detection and classification
- D. Between incident and damage
Answer: D
NEW QUESTION 50
What is the relationship between data and information?
- A. Data is structured information.
- B. Information is the meaning and value assigned to a collection of data.
Answer: B
NEW QUESTION 51
What is the security management term for establishing whether someone's identity is correct?
- A. Verification
- B. Authorisation
- C. Authentication
- D. Identification
Answer: C
NEW QUESTION 52
In the event of an Information security incident, system users' roles and responsibilities are to be observed, except:
- A. Report suspected or known incidents upon discovery through the Servicedesk
- B. Make the information security incident details known to all employees
- C. Cooperate with investigative personnel during investigation if needed
- D. Preserve evidence if necessary
Answer: B
NEW QUESTION 53
Which department maintain's contacts with law enforcement authorities, regulatory bodies, information service providers and telecommunications service providers depending on the service required.
- A. CSM
- B. CISO
- C. COO
- D. MRO
Answer: B
NEW QUESTION 54
Does the security have the right to ask you to display your ID badges and check your bags?
- A. True
- B. False
Answer: A
NEW QUESTION 55
You receive an E-mail from some unknown person claiming to be representative of your bank and asking for your account number and password so that they can fix your account. Such an attempt of social engineering is called
- A. Spoofing
- B. Shoulder Surfing
- C. Mountaineering
- D. Phishing
Answer: D
NEW QUESTION 56
What is an example of a human threat?
- A. phishing
- B. thunderstrom
- C. fire
- D. a lightning strike
Answer: A
NEW QUESTION 57
......
ISO 27001 -ISO-IEC-27001-Lead-Auditor Exam-Practice-Dumps: https://www.dumpsactual.com/ISO-IEC-27001-Lead-Auditor-actualtests-dumps.html
ISO-IEC-27001-Lead-Auditor Premium Files Test pdf - Free Dumps Collection: https://drive.google.com/open?id=1Xue_mU2paNCkOdBALRb6s1FhWZVH8H9L
