[May-2023] Dumps Brief Outline Of The ISO-IEC-27001-Lead-Implementer Exam - TestPassKing [Q17-Q37]

[May-2023] Dumps Brief Outline Of The ISO-IEC-27001-Lead-Implementer Exam - TestPassKing

ISO-IEC-27001-Lead-Implementer Training & Certification Get Latest ISO 27001

The PECB ISO-IEC-27001-Lead-Implementer certification exam is a rigorous and comprehensive assessment of a professional's knowledge and skills. The exam consists of multiple-choice questions and is timed at four hours. To pass the exam and earn the certification, candidates must achieve a minimum score of 70%.

 

NEW QUESTION # 17
Which is a legislative or regulatory act related to information security that can be imposed upon all organizations?

• A. ISO/IEC 27002:2005
• B. Personal data protection legislation
• C. Intellectual Property Rights
• D. ISO/IEC 27001:2005

Answer: B

NEW QUESTION # 18
You are a consultant and areregularly hired by the Ministry of Defense to perform analysis. Since the assignments are irregular, you outsource the administration of your business to temporary workers. You don't want the temporary workers to have access to your reports.
Which reliability aspect of the information in your reports must you protect?

• A. Confidentiality
• B. Integrity
• C. Availability

Answer: A

NEW QUESTION # 19
What is an example of a security incident?

• A. You cannot set the correct fonts in your word processing software.
• B. A file is saved under an incorrect name.
• C. A member of staff loses a laptop.
• D. The lighting in the department no longer works.

Answer: C

NEW QUESTION # 20
In the context ofcontact with special interest groups, any information-sharing agreements should identify requirements for the protection of _________ information.

• A. Authentic
• B. Authorization
• C. Confidential
• D. Availability

Answer: C

NEW QUESTION # 21
The identified owner of an asset is always an individual

• A. True
• B. False

Answer: B

NEW QUESTION # 22
Which of these control objectives are NOT in the domain "12.OPERATIONAL SAFETY"?

• A. Test data
• B. Redundancies
• C. Protection against malicious code
• D. Technical vulnerability management

Answer: B

NEW QUESTION # 23
What should be used to protect data on removable media ifdata confidentiality or integrity are important considerations?

• A. logging
• B. a password
• C. cryptographic techniques
• D. backup on another removable medium

Answer: C

NEW QUESTION # 24
Who is accountable to classify information assets?

• A. the CISO
• B. the CEO
• C. the Information Security Team
• D. theasset owner

Answer: D

NEW QUESTION # 25
Which of the following measures is a correctivemeasure?

• A. Installing a virus scanner in an information system
• B. Restoring a backup of the correct database after a corrupt copy of the database was written over the original
• C. Making a backup of the data that has been created or altered that day
• D. Incorporating an Intrusion Detection System (IDS) in the design of a computer center

Answer: B

NEW QUESTION # 26
What is an example of a non-human threat to the physical environment?

• A. Fraudulent transaction
• B. Corrupted file
• C. Storm
• D. Virus

Answer: C

NEW QUESTION # 27
You have juststarted working at a large organization. You have been asked to sign a code of conduct as well as a contract. What does the organization wish to achieve with this?

• A. A code of conduct helps to prevent the misuse of IT facilities.
• B. A code of conduct is alegal obligation that organizations have to meet.
• C. A code of conduct gives staff guidance on how to report suspected misuses of IT facilities.
• D. A code of conduct prevents a virus outbreak.

Answer: A

NEW QUESTION # 28
Companies use 27002 for compliance for which of the following reasons:

• A. Explicit requirements for all regulations
• B. A structured program that helps with security and compliance
• C. Compliance with ISO 27002 is sufficient to comply with all regulations

Answer: B

NEW QUESTION # 29
Select the controls that correspond to thedomain "9. ACCESS CONTROL" of ISO / 27002 (Choose three)

• A. Return of assets
• B. Withdrawal or adaptation of access rights
• C. Management of access rights with special privileges
• D. Restriction of access to information

Answer: A,B,D

NEW QUESTION # 30
A company moves into a new building. A few weeks after the move, a visitor appears unannounced in the office of the director. An investigation shows that visitors passes grant the same access as the passes of the company's staff. Which kind of security measure could have prevented this?

• A. physical security measure
• B. An organizational security measure
• C. A technical security measure

Answer: A

NEW QUESTION # 31
Why is compliance important forthe reliability of the information?

• A. Compliance is another word for reliability. So, if a company indicates that it is compliant, it means that the information is managed properly.
• B. When an organization is compliant, it meets the requirements of privacy legislation and, in doing so, protects the reliability of its information.
• C. By meeting the legislative requirements and theregulations of both the government and internal management, an organization shows that it manages its information in a sound manner.
• D. When an organization employs a standard such as the ISO/IEC 27002 and uses it everywhere, it is compliant and thereforeit guarantees the reliability of its information.

Answer: C

NEW QUESTION # 32
Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the value of the information in the insurance terms and conditions document?

• A. The person who drafted the insurance terms and conditions
• B. The manager, Linda
• C. The recipient, Rachel
• D. The sender, Peter

Answer: C

NEW QUESTION # 33
Midwest Insurance grades the monthly report of all claimed losses per insured as confidential. What is accomplished if all other reports from this insurance office are also assigned the appropriate grading?

• A. The costs for automating are easier to charge to the responsible departments.
• B. A determination can be made as to which report should be printed firstand which ones can wait a little longer.
• C. Everyone can easily see how sensitive the reports' contents are by consulting the grading label.
• D. Reports can be developed more easily and with fewer errors.

Answer: C

NEW QUESTION # 34
One of the ways Internet of Things (IoT) devices can communicate with each other (or 'the outside world') is using a so-called short-range radio protocol. Which kind of short-range radio protocol makes it possible to use your phone as a credit card?

• A. Bluetooth
• B. The 4G protocol
• C. Radio Frequency Identification (RFID)
• D. Near Field Communication (NFC)

Answer: D

NEW QUESTION # 35
You are the owner of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large risks but not for the small risks. What is this risk strategy called?

• A. Risk neutral
• B. Risk passing
• C. Risk bearing
• D. Risk avoiding

Answer: A

NEW QUESTION # 36
Responsibilities for information security in projects should be defined and allocated to:

• A. the owner of the involved asset
• B. the InfoSec officer
• C. specified roles defined in the used project management method of the organization
• D. the project manager

Answer: C

NEW QUESTION # 37
......

Certification Training for ISO-IEC-27001-Lead-Implementer Exam Dumps Test Engine: https://www.testpassking.com/ISO-IEC-27001-Lead-Implementer-exam-testking-pass.html

ISO 27001 ISO-IEC-27001-Lead-Implementer Real Exam Questions and Answers FREE Updated: https://drive.google.com/open?id=14ES2FN1ko17Aqbi0r5GWUEbgkZ6kKGc-