NEW QUESTION 1
The ability to hold intruders accountable in a court of law is important. Which of the following activities are needed to ensure the highest possibility for successful prosecution?

• A. Well established and defined digital forensics process
• B. Establishing Enterprise-owned Botnets for preemptive attacks
• C. Be able to retaliate under the framework of Active Defense
• D. Collaboration with law enforcement

Answer: A

NEW QUESTION 2
Scenario: You are the newly hired Chief Information Security Officer for a company that has not previously had a senior level security practitioner. The company lacks a defined security policy and framework for their Information Security Program. Your new boss, the Chief Financial Officer, has asked you to draft an outline of a security policy and recommend an industry/sector neutral information security control framework for implementation.
Your Corporate Information Security Policy should include which of the following?

• A. Information security theory
• B. Roles and responsibilities
• C. Incident response contacts
• D. Desktop configuration standards

Answer: B

NEW QUESTION 3
Control Objectives for Information and Related Technology (COBIT) is which of the following?

• A. An Information Security audit standard
• B. An audit guideline for certifying secure systems and controls
• C. A framework for Information Technology management and governance
• D. A set of international regulations for Information Technology governance

Answer: C

NEW QUESTION 4
Which of the following BEST describes an international standard framework that is based on the security model Information Technology—Code of Practice for Information Security Management?

• A. International Organization for Standardization 27001
• B. National Institute of Standards and Technology Special Publication SP 800-12
• C. Request For Comment 2196
• D. National Institute of Standards and Technology Special Publication SP 800-26

Answer: A

NEW QUESTION 5
Which of the following is a MAJOR consideration when an organization retains sensitive customer data and uses this data to better target the organization’s products and services?

• A. Strong authentication technologies
• B. Financial reporting regulations
• C. Credit card compliance and regulations
• D. Local privacy laws

Answer: D

NEW QUESTION 6
Which of the following is used to establish and maintain a framework to provide assurance that information security strategies are aligned with organizational objectives?

• A. Awareness
• B. Compliance
• C. Governance
• D. Management

Answer: C

NEW QUESTION 7
What role should the CISO play in properly scoping a PCI environment?

• A. Validate the business units’ suggestions as to what should be included in the scoping process
• B. Work with a Qualified Security Assessor (QSA) to determine the scope of the PCI environment
• C. Ensure internal scope validation is completed and that an assessment has been done to discover all credit card data
• D. Complete the self-assessment questionnaire and work with an Approved Scanning Vendor (ASV) to determine scope

Answer: C

NEW QUESTION 8
Which of the following are necessary to formulate responses to external audit findings?

• A. Internal Audit, Management, and Technical Staff
• B. Internal Audit, Budget Authority, Management
• C. Technical Staff, Budget Authority, Management
• D. Technical Staff, Internal Audit, Budget Authority

Answer: C

NEW QUESTION 9
The executive board has requested that the CISO of an organization define and Key Performance Indicators (KPI) to measure the effectiveness of the security awareness program provided to call center employees. Which of the following can be used as a KPI?

• A. Number of callers who report security issues.
• B. Number of callers who report a lack of customer service from the call center
• C. Number of successful social engineering attempts on the call center
• D. Number of callers who abandon the call before speaking with a representative

Answer: C

NEW QUESTION 10
A system was hardened at the Operating System level and placed into the production environment. Months later an audit was performed and it identified insecure configuration different from the original hardened state. Which of the following security issues is the MOST likely reason leading to the audit findings?

• A. Lack of asset management processes
• B. Lack of change management processes
• C. Lack of hardening standards
• D. Lack of proper access controls

Answer: B

NEW QUESTION 11
In terms of supporting a forensic investigation, it is now imperative that managers, first- responders, etc., accomplish the following actions to the computer under investigation:

• A. Secure the area and shut-down the computer until investigators arrive
• B. Secure the area and attempt to maintain power until investigators arrive
• C. Immediately place hard drive and other components in an anti-static bag
• D. Secure the area.

Answer: B

NEW QUESTION 12
The process to evaluate the technical and non-technical security controls of an IT system to validate that a given design and implementation meet a specific set of security requirements is called

• A. Security certification
• B. Security system analysis
• C. Security accreditation
• D. Alignment with business practices and goals.

Answer: A

NEW QUESTION 13
What is the FIRST step in developing the vulnerability management program?

• A. Baseline the Environment
• B. Maintain and Monitor
• C. Organization Vulnerability
• D. Define Policy

Answer: A

Explanation: Topic 5, Strategic Planning & Finance.

NEW QUESTION 14
Which of the following functions implements and oversees the use of controls to reduce risk when creating an information security program?

• A. Risk Assessment
• B. Incident Response
• C. Risk Management
• D. Network Security administration

Answer: C

NEW QUESTION 15
Why is it vitally important that senior management endorse a security policy?

• A. So that they will accept ownership for security within the organization.
• B. So that employees will follow the policy directives.
• C. So that external bodies will recognize the organizations commitment to security.
• D. So that they can be held legally accountable.

Answer: A

NEW QUESTION 16
Scenario: An organization has made a decision to address Information Security formally and consistently by adopting established best practices and industry standards. The organization is a small retail merchant but it is expected to grow to a global customer base of many millions of customers in just a few years.
Which of the following would be the FIRST step when addressing Information Security formally and consistently in this organization?

• A. Contract a third party to perform a security risk assessment
• B. Define formal roles and responsibilities for Internal audit functions
• C. Define formal roles and responsibilities for Information Security
• D. Create an executive security steering committee

Answer: C

NEW QUESTION 17
When entering into a third party vendor agreement for security services, at what point in the process is it BEST to understand and validate the security posture and compliance level of the vendor?

• A. At the time the security services are being performed and the vendor needs access to the network
• B. Once the agreement has been signed and the security vendor states that they will need access to the network
• C. Once the vendor is on premise and before they perform security services
• D. Prior to signing the agreement and before any security services are being performed

Answer: D

NEW QUESTION 18
The ability to demand the implementation and management of security controls on third parties providing services to an organization is

• A. Security Governance
• B. Compliance management
• C. Vendor management
• D. Disaster recovery

Answer: C