
[Dec 28, 2021] Fully Updated Dumps PDF - Latest ISO-IEC-27001-Lead-Auditor Exam Questions and Answers
100% Free ISO-IEC-27001-Lead-Auditor Exam Dumps to Pass Exam Easily from ExamCost
NEW QUESTION 55
Availability means
- A. Service should not be accessible when required
- B. Service should be accessible at the required time and usable only by the authorized entity
- C. Service should be accessible at the required time and usable by all
Answer: B
NEW QUESTION 56
There was a fire in a branch of the company Midwest Insurance. The fire department quickly arrived at the scene and could extinguish the fire before it spread and burned down the entire premises. The server, however, was destroyed in the fire. The backup tapes kept in another room had melted and many other documents were lost for good.
What is an example of the indirect damage caused by this fire?
- A. Burned computer systems
- B. Melted backup tapes
- C. Water damage due to the fire extinguishers
- D. Burned documents
Answer: C
NEW QUESTION 57
As a new member of the IT department you have noticed that confidential information has been leaked several times. This may damage the reputation of the company. You have been asked to propose an organisational measure to protect laptop computers. What is the first step in a structured approach to come up with this measure?
- A. Formulate a policy
- B. Encrypt all sensitive information
- C. Set up an access control procedure
- D. Appoint security staff
Answer: A
NEW QUESTION 58
What is the standard definition of ISMS?
- A. Is an information security systematic approach to achieve business objectives for implementation, establishing, reviewing,operating and maintaining organization's reputation.
- B. A company wide business objectives to achieve information security awareness for establishing, implementing, operating, monitoring, reviewing, maintaining and improving
- C. A systematic approach for establishing, implementing, operating,monitoring, reviewing, maintaining and improving an organization's information security to achieve business objectives.
- D. A project-based approach to achieve business objectives for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an organization's information security
Answer: C
NEW QUESTION 59
What is the worst possible action that an employee may receive for sharing his or her password or access with others?
- A. The lowest rating on his or her performance assessment
- B. Termination
- C. Three days suspension from work
- D. Forced roll off from the project
Answer: B
NEW QUESTION 60
What is an example of a human threat?
- A. phishing
- B. fire
- C. a lightning strike
- D. thunderstrom
Answer: A
NEW QUESTION 61
Which of the following factors does NOT contribute to the value of data for an organisation?
- A. The importance of data for processes
- B. The content of data
- C. The correctness of data
- D. The indispensability of data
Answer: B
NEW QUESTION 62
In acceptable use of Information Assets, which is the best practice?
- A. Playing any computer games during office hours
- B. Access to information and communication systems are provided for business purpose only
- C. Interfering with or denying service to any user other than the employee's host
- D. Accessing phone or network transmissions, including wireless or wifi transmissions
Answer: B
NEW QUESTION 63
There is a scheduled fire drill in your facility. What should you do?
- A. None of the above
- B. Call in sick
- C. Excuse yourself by saying you have an urgent deliverable
- D. Participate in the drill
Answer: D
NEW QUESTION 64
Which is not a requirement of HR prior to hiring?
- A. Must undergo Awareness training on information security.
- B. Undergo background verification
- C. Applicant must complete pre-employment documentation requirements
- D. Must successfully pass Background Investigation
Answer: A
NEW QUESTION 65
Backup media is kept in the same secure area as the servers. What risk may the organisation be exposed to?
- A. Unauthorised persons will have access to both the servers and backups
- B. Responsibility for the backups is not defined well
- C. After a server crash, it will take extra time to bring it back up again
- D. After a fire, the information systems cannot be restored
Answer: D
NEW QUESTION 66
What is the security management term for establishing whether someone's identity is correct?
- A. Verification
- B. Authorisation
- C. Identification
- D. Authentication
Answer: D
NEW QUESTION 67
CEO sends a mail giving his views on the status of the company and the company's future strategy and the CEO's vision and the employee's part in it. The mail should be classified as
- A. Restricted Mail
- B. Public Mail
- C. Internal Mail
- D. Confidential Mail
Answer: C
NEW QUESTION 68
What is the name of the system that guarantees the coherence of information security in the organization?
- A. Rootkit
- B. Security regulations for special information for the government
- C. Information Technology Service Management (ITSM)
- D. Information Security Management System (ISMS)
Answer: D
NEW QUESTION 69
Access Control System, CCTV and security guards are form of:
- A. Compliance
- B. Environment Security
- C. Access Control
- D. Physical Security
Answer: D
NEW QUESTION 70
You receive the following mail from the IT support team: Dear User,Starting next week, we will be deleting all inactive email accounts in order to create spaceshare the below details in order to continue using your account. In case of no response, Name:
Email ID:
Password:
DOB:
Kindly contact the webmail team for any further support. Thanks for your attention.
Which of the following is the best response?
- A. One should not respond to these mails and report such email to your supervisor
- B. Respond it by saying that one should not share the password with anyone
- C. Ignore the email
Answer: A
NEW QUESTION 71
Information Security is a matter of building and maintaining ________ .
- A. Confidentiality
- B. Protection
- C. Firewalls
- D. Trust
Answer: D
NEW QUESTION 72
Below is Purpose of "Integrity", which is one of the Basic Components of Information Security
- A. the property of safeguarding the accuracy and completeness of assets.
- B. the property that information is not made available or disclosed to unauthorized individuals
- C. the property that information is not made available or disclosed to unauthorized individuals
- D. the property of being accessible and usable upon demand by an authorized entity.
Answer: A
NEW QUESTION 73
How is the purpose of information security policy best described?
- A. An information security policy provides direction and support to the management regarding information security.
- B. An information security policy makes the security plan concrete by providing it with the necessary details.
- C. An information security policy provides insight into threats and the possible consequences.
- D. An information security policy documents the analysis of risks and the search for countermeasures.
Answer: A
NEW QUESTION 74
CMM stands for?
- A. Capability Maturity Matrix
- B. Capable Mature Model
- C. Capability Maturity Model
- D. Capacity Maturity Matrix
Answer: C
NEW QUESTION 75
......
Free ISO-IEC-27001-Lead-Auditor Exam Questions ISO-IEC-27001-Lead-Auditor Actual Free Exam Questions: https://www.examcost.com/ISO-IEC-27001-Lead-Auditor-practice-exam.html
Verified ISO-IEC-27001-Lead-Auditor dumps and 99 unique questions: https://drive.google.com/open?id=162_TeBnIyGrtAwlPpLdD9BX912PyltwL

