Verified ISO-IEC-27001-Lead-Auditor dumps Q&As - Pass Guarantee or Full Refund [Oct-2022]
ISO-IEC-27001-Lead-Auditor PDF Dumps | Oct 18, 2022 Recently Updated Questions
PECB ISO-IEC-27001-Lead-Auditor Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
NEW QUESTION 52
Information Security is a matter of building and maintaining ________ .
- A. Protection
- B. Firewalls
- C. Trust
- D. Confidentiality
Answer: C
NEW QUESTION 53
There is a network printer in the hallway of the company where you work. Many employees don't pick up their printouts immediately and leave them on the printer.
What are the consequences of this to the reliability of the information?
- A. The integrity of the information is no longer guaranteed.
- B. The confidentiality of the information is no longer guaranteed.
- C. The Security of the information is no longer guaranteed.
- D. The availability of the information is no longer guaranteed.
Answer: D
NEW QUESTION 54
A hacker gains access to a webserver and can view a file on the server containing credit card numbers.
Which of the Confidentiality, Integrity, Availability (CIA) principles of the credit card file are violated?
- A. Compliance
- B. Availability
- C. Confidentiality
- D. Integrity
Answer: C
NEW QUESTION 55
Who are allowed to access highly confidential files?
- A. Non-employees designated with approved access and have signed NDA
- B. Employees with a business need-to-know
- C. Employees with signed NDA have a business need-to-know
- D. Contractors with a business need-to-know
Answer: C
NEW QUESTION 56
A scenario wherein the city or location where the building(s) reside is / are not accessible.
- A. City
- B. Component
- C. Facility
- D. Country
Answer: A
NEW QUESTION 57
Access Control System, CCTV and security guards are form of:
- A. Compliance
- B. Access Control
- C. Physical Security
- D. Environment Security
Answer: C
NEW QUESTION 58
In acceptable use of Information Assets, which is the best practice?
- A. Interfering with or denying service to any user other than the employee's host
- B. Playing any computer games during office hours
- C. Access to information and communication systems are provided for business purpose only
- D. Accessing phone or network transmissions, including wireless or wifi transmissions
Answer: C
NEW QUESTION 59
There was a fire in a branch of the company Midwest Insurance. The fire department quickly arrived at the scene and could extinguish the fire before it spread and burned down the entire premises. The server, however, was destroyed in the fire. The backup tapes kept in another room had melted and many other documents were lost for good.
What is an example of the indirect damage caused by this fire?
- A. Burned computer systems
- B. Burned documents
- C. Melted backup tapes
- D. Water damage due to the fire extinguishers
Answer: D
NEW QUESTION 60
Changes on project-managed applications or database should undergo the change control process as documented.
- A. False
- B. True
Answer: B
NEW QUESTION 61
In which order is an Information Security Management System set up?
- A. Establishment, operation, monitoring, improvement
- B. Establishment, implementation, operation, maintenance
- C. Implementation, operation, maintenance, establishment
- D. Implementation, operation, improvement, maintenance
Answer: B
NEW QUESTION 62
Which of the following does an Asset Register contain? (Choose two)
- A. Asset Owner
- B. Asset Modifier
- C. Asset Type
- D. Process ID
Answer: A,C
NEW QUESTION 63
After a devastating office fire, all staff are moved to other branches of the company. At what moment in the incident management process is this measure effectuated?
- A. Between recovery and normal operations
- B. Between detection and classification
- C. Between incident and damage
- D. Between classification and escalation
Answer: C
NEW QUESTION 64
Integrity of data means
- A. Data should be viewable at all times
- B. Data should be accessed by only the right people
- C. Accuracy and completeness of the data
Answer: C
NEW QUESTION 65
A well-executed risk analysis provides a great deal of useful information. A risk analysis has four main objectives.
What is not one of the four main objectives of a risk analysis?
- A. Determining relevant vulnerabilities and threats
- B. Identifying assets and their value
- C. Establishing a balance between the costs of an incident and the costs of a security measure
- D. Implementing counter measures
Answer: D
NEW QUESTION 66
What type of compliancy standard, regulation or legislation provides a code of practice for information security?
- A. ISO/IEC 27002
- B. Personal data protection act
- C. Computer criminality act
- D. IT Service Management
Answer: A
NEW QUESTION 67
A fire breaks out in a branch office of a health insurance company. The personnel are transferred to neighboring branches to continue their work.
Where in the incident cycle is moving to a stand-by arrangements found?
- A. between recovery and threat
- B. between incident and damage
- C. between threat and incident
- D. between damage and recovery
Answer: B
NEW QUESTION 68
Why do we need to test a disaster recovery plan regularly, and keep it up to date?
- A. Otherwise remotely stored backups may no longer be available to the security team
- B. Otherwise the measures taken and the incident procedures planned may not be adequate
- C. Otherwise it is no longer up to date with the registration of daily occurring faults
Answer: B
NEW QUESTION 69
In what part of the process to grant access to a system does the user present a token?
- A. Authorisation
- B. Verification
- C. Identification
- D. Authentication
Answer: C
NEW QUESTION 70
......
ISO-IEC-27001-Lead-Auditor Exam Questions – Valid ISO-IEC-27001-Lead-Auditor Dumps Pdf: https://www.pdfvce.com/PECB/ISO-IEC-27001-Lead-Auditor-exam-pdf-dumps.html
ISO-IEC-27001-Lead-Auditor Practice Test Questions Answers Updated 99 Questions: https://drive.google.com/open?id=1D3vs1BVypaON8EWyZOdY58dAexiX6kue