Scenario: A Chief Information Security Officer (CISO) recently had a third party conduct an audit of the security program. Internal policies and international standards were used as audit baselines. The audit report was presented...
What type of attack requires the least amount of technical equipment and has the highest success rate?A . Social engineeringB . Shrink wrap attacksC . Operating system attacksD . War drivingView AnswerAnswer: A
A Security Operations Centre (SOC) manager is informed that a database containing highly sensitive corporate strategy information is under attack. Information has been stolen and the database server was disconnected. Who must be informed...
Which of the following is of MOST importance when security leaders of an organization are required to align security to influence the culture of an organization?A . Understand the business goals of the organizationB...
The ability to hold intruders accountable in a court of law is important. Which of the following activities are needed to ensure the highest possibility for successful prosecution?A . Establishing Enterprise-owned Botnets for preemptive...
Scenario: Your organization employs single sign-on (user name and password only) as a convenience to your employees to access organizational systems and data. Permission to individual systems and databases is vetted and approved through...
Scenario: Your corporate systems have been under constant probing and attack from foreign IP addresses for more than a week. Your security team and security infrastructure have performed well under the stress. You are...
The purpose of NIST SP 800-53 as part of the NIST System Certification and Accreditation Project is to establish a set of standardized, minimum security controls for IT systems addressing low, moderate, and high...
The establishment of a formal risk management framework and system authorization program is essential. The LAST step of the system authorization process is:A . Getting authority to operate the system from executive managementB ....
Which of the following has the GREATEST impact on the implementation of an information security governance model?A . Complexity of organizational structureB . Distance between physical locationsC . Organizational budgetD . Number of employeesView...
