Information Security Foundation based on ISO/IEC 27002 試験
Question No : 1
Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the value of the information in the insurance terms and conditions document?
Question No : 2
You have just started working at a large organization. You have been asked to sign a code of conduct as well as a contract. What does the organization wish to achieve with this?
Question No : 3
What do employees need to know to report a security incident?
Question No : 4
What is the objective of classifying information?
Question No : 5
What is the greatest risk for an organization if no information security policy has been defined?
Question No : 6
An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry date of a contract with one of the clients is earlier than the start date. What type of measure could prevent this error?
Question No : 7
What sort of security does a Public Key Infrastructure (PKI) offer?
Question No : 8
Your company has to ensure that it meets the requirements set down in personal data protection legislation. What is the first thing you should do?
Question No : 9
We can acquire and supply information in various ways. The value of the information depends on whether it is reliable. What are the reliability aspects of information?
Question No : 10
Which of the following measures is a corrective measure?
Question No : 11
What is an example of a security incident?
Question No : 12
A well executed risk analysis provides a great deal of useful information. A risk analysis has four main objectives. What is not one of the four main objectives of a risk analysis?
Question No : 13
What is a risk analysis used for?
Question No : 14
Which of the following measures is a preventive measure?
Question No : 15
Your organization has an office with space for 25 workstations. These workstations are all fully equipped and in use. Due to a reorganization 10 extra workstations are added, 5 of which are used for a call centre 24 hours per day. Five workstations must always be available. What physical security measures must be taken in order to ensure this?