2021 100% Free ISO-IEC-27001-Lead-Implementer Daily Practice Exam With 50 Questions [Q27-Q47]

2021 100% Free ISO-IEC-27001-Lead-Implementer Daily Practice Exam With 50 Questions

ISO-IEC-27001-Lead-Implementer exam torrent PECB study guide

NEW QUESTION 27
What is the best way to comply with legislation and regulations for personal data protection?

• A. Maintaining an incident register
• B. Appointing the responsibility to someone
• C. Performing a vulnerability analysis
• D. Performing a threat analysis

Answer: B

 

NEW QUESTION 28
You are the owner of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large risks but not for the small risks. What is this risk strategy called?

• A. Risk avoiding
• B. Risk passing
• C. Risk neutral
• D. Risk bearing

Answer: C

 

NEW QUESTION 29
Who is accountable to classify information assets?

• A. the Information Security Team
• B. the CEO
• C. theasset owner
• D. the CISO

Answer: C

 

NEW QUESTION 30
What is the greatest risk for an organization ifno information security policy has been defined?

• A. It is not possible for an organization to implement information security in a consistent manner.
• B. Information security activities are carried out by only a few people.
• C. Too many measures areimplemented.
• D. If everyone works with the same account, it is impossible to find out who worked on what.

Answer: A

 

NEW QUESTION 31
What should be used to protect data on removable media ifdata confidentiality or integrity are important considerations?

• A. backup on another removable medium
• B. cryptographic techniques
• C. logging
• D. a password

Answer: B

 

NEW QUESTION 32
Of the following, which is the best organization or set of organizations to contribute to compliance?

• A. IT and legal
• B. IT,business management, HR and legal
• C. IT and management
• D. IT only

Answer: B

 

NEW QUESTION 33
What sort of security does a Public Key Infrastructure (PKI) offer?

• A. By providing agreements, procedures and an organization structure, a PKI defines which person or which system belongs to which specific public key.
• B. A PKI ensures that backups of company data are made on a regular basis.
• C. It provides digital certificates that can be used to digitally signdocuments. Such signatures irrefutably determine from whom a document was sent.
• D. Having a PKI shows customers that a web-based business is secure.

Answer: B

 

NEW QUESTION 34
What is an example of a security incident?

• A. A member of staff loses a laptop.
• B. You cannot set the correct fonts in your word processing software.
• C. A file is saved under an incorrect name.
• D. The lighting in the department no longer works.

Answer: A

 

NEW QUESTION 35
In the context ofcontact with special interest groups, any information-sharing agreements should identify requirements for the protection of _________ information.

• A. Availability
• B. Authentic
• C. Authorization
• D. Confidential

Answer: D

 

NEW QUESTION 36
Which of these reliability aspects is "completeness" a part of?

• A. Exclusivity
• B. Integrity
• C. Availability
• D. Confidentiality

Answer: B

 

NEW QUESTION 37
Who is authorized to change the classification of a document?

• A. The administrator of the document
• B. The author of the document
• C. The owner of the document
• D. The manager of the owner of the document

Answer: C

 

NEW QUESTION 38
What is the most important reason for applying the segregation of duties?

• A. Segregation of duties makes it clear who is responsible for what.
• B. Tasks and responsibilities must be separated in order to minimize the opportunities for business assets to be misused or changed, whether the change be unauthorized or unintentional.
• C. Segregation of duties ensures that, when a person is absent, it can be investigated whether he or she has been committing fraud.
• D. Segregation of duties makes it easier for a person who is readywith his or her part of the work to take time off or to take over the work of another person.

Answer: B

 

NEW QUESTION 39
One of the ways Internet of Things (IoT) devices can communicate with each other (or 'the outside world') is using a so-called short-range radio protocol. Which kind of short-range radio protocol makes it possible to use your phone as a credit card?

• A. Radio Frequency Identification (RFID)
• B. Near Field Communication (NFC)
• C. The 4G protocol
• D. Bluetooth

Answer: B

 

NEW QUESTION 40
Why is compliance important forthe reliability of the information?

• A. Compliance is another word for reliability. So, if a company indicates that it is compliant, it means that the information is managed properly.
• B. By meeting the legislative requirements and theregulations of both the government and internal management, an organization shows that it manages its information in a sound manner.
• C. When an organization employs a standard such as the ISO/IEC 27002 and uses it everywhere, it is compliant and thereforeit guarantees the reliability of its information.
• D. When an organization is compliant, it meets the requirements of privacy legislation and, in doing so, protects the reliability of its information.

Answer: B

 

NEW QUESTION 41
Companies use 27002 for compliance for which of the following reasons:

• A. Explicit requirements for all regulations
• B. A structured program that helps with security and compliance
• C. Compliance with ISO 27002 is sufficient to comply with all regulations

Answer: B

 

NEW QUESTION 42
What does the Information Security Policy describe?

• A. which InfoSec-controls have been selected and taken
• B. what the implementation-planning of the information security management system is
• C. how the InfoSec-objectives will be reached
• D. which Information Security-procedures are selected

Answer: C

 

NEW QUESTION 43
You are the owner of a growing company, SpeeDelivery, which provides courier services. You decide that it is time to draw up a risk analysis for your information system. This includes an inventoryof threats and risks.
What is the relation between a threat, risk and risk analysis?

• A. A risk analysis is used to clarify which threats are relevant and what risks they involve.
• B. Risk analyses help to find a balance between threats and risks.
• C. A risk analysis identifies threats from the known risks.
• D. A riskanalysis is used to remove the risk of a threat.

Answer: A

 

NEW QUESTION 44
A company moves into a new building. A few weeks after the move, a visitor appears unannounced in the office of the director. An investigation shows that visitors passes grant the same access as the passes of the company's staff. Which kind of security measure could have prevented this?

• A. A technical security measure
• B. physical security measure
• C. An organizational security measure

Answer: B

 

NEW QUESTION 45
How many domains does ISO / IEC 27002: 2013 have?

• A. 0
• B. 1
• C. 2
• D. 3

Answer: A

 

NEW QUESTION 46
Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the value of the information in the insurance terms and conditions document?

• A. The recipient, Rachel
• B. The person who drafted the insurance terms and conditions
• C. The sender, Peter
• D. The manager, Linda

Answer: A

 

NEW QUESTION 47
......

Use Valid New ISO-IEC-27001-Lead-Implementer Test Notes & ISO-IEC-27001-Lead-Implementer Valid Exam Guide: https://www.testkingpass.com/ISO-IEC-27001-Lead-Implementer-testking-dumps.html

ISO-IEC-27001-Lead-Implementer Actual Questions Answers PDF 100% Cover Real Exam Questions: https://drive.google.com/open?id=1MeL769GfyKjj6DgIw13BH0Tdb6-d2WRN