Use Real ISO-IEC-27001-Lead-Auditor - 100% Cover Real Exam Questions [Aug-2021]
Dumps Brief Outline Of The ISO-IEC-27001-Lead-Auditor Exam - Pass4SureQuiz
NEW QUESTION 11
You receive an E-mail from some unknown person claiming to be representative of your bank and asking for your account number and password so that they can fix your account. Such an attempt of social engineering is called
- A. Spoofing
- B. Shoulder Surfing
- C. Mountaineering
- D. Phishing
Answer: D
NEW QUESTION 12
Information Security is a matter of building and maintaining ________ .
- A. Trust
- B. Firewalls
- C. Protection
- D. Confidentiality
Answer: A
NEW QUESTION 13
Which threat could occur if no physical measures are taken?
- A. Confidential prints being left on the printer
- B. Hackers entering the corporate network
- C. Unauthorised persons viewing sensitive files
- D. A server shutting down because of overheating
Answer: D
NEW QUESTION 14
Changes on project-managed applications or database should undergo the change control process as documented.
- A. True
- B. False
Answer: A
NEW QUESTION 15
A hacker gains access to a web server and reads the credit card numbers stored on that server. Which security principle is violated?
- A. Integrity
- B. Availability
- C. Confidentiality
- D. Authenticity
Answer: C
NEW QUESTION 16
A hacker gains access to a webserver and can view a file on the server containing credit card numbers.
Which of the Confidentiality, Integrity, Availability (CIA) principles of the credit card file are violated?
- A. Integrity
- B. Availability
- C. Confidentiality
- D. Compliance
Answer: C
NEW QUESTION 17
Which of the following does an Asset Register contain? (Choose two)
- A. Asset Type
- B. Asset Modifier
- C. Asset Owner
- D. Process ID
Answer: A,C
NEW QUESTION 18
What would be the reference for you to know who should have access to data/document?
- A. Access Control List (ACL)
- B. Information Rights Management (IRM)
- C. Masterlist of Project Records (MLPR)
- D. Data Classification Label
Answer: A
NEW QUESTION 19
CMM stands for?
- A. Capacity Maturity Matrix
- B. Capability Maturity Model
- C. Capable Mature Model
- D. Capability Maturity Matrix
Answer: B
NEW QUESTION 20
You are the lead auditor of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large risks but not for the small risks.
What is this risk strategy called?
- A. Risk bearing
- B. Risk avoidance
- C. Risk neutral
- D. Risk skipping
Answer: A
NEW QUESTION 21
We can leave laptops during weekdays or weekends in locked bins.
- A. False
- B. True
Answer: A
NEW QUESTION 22
Access Control System, CCTV and security guards are form of:
- A. Environment Security
- B. Access Control
- C. Compliance
- D. Physical Security
Answer: D
NEW QUESTION 23
What is we do in ACT - From PDCA cycle
- A. Take actions to continually monitor process performance
- B. Take actions to continually improve people performance
- C. Take actions to continually monitor process performance
- D. Take actions to continually improve process performance
Answer: D
NEW QUESTION 24
What is social engineering?
- A. A group planning for a social activity in the organization
- B. Creating a situation wherein a third party gains confidential information from you
- C. The organization planning an activity for welfare of the neighborhood
Answer: B
NEW QUESTION 25
Which of the following is a possible event that can have a disruptive effect on the reliability of information?
- A. Risk
- B. Threat
- C. Dependency
- D. Vulnerability
Answer: B
NEW QUESTION 26
How are data and information related?
- A. Information consists of facts and statistics collected together for reference or analysis
- B. Data is a collection of structured and unstructured information
- C. When meaning and value are assigned to data, it becomes information
Answer: C
NEW QUESTION 27
An employee caught temporarily storing an MP3 file in his workstation will not receive an IR.
- A. False
- B. True
Answer: A
NEW QUESTION 28
Which of the following is a preventive security measure?
- A. Storing sensitive information in a data save
- B. Installing logging and monitoring software
- C. Shutting down the Internet connection after an attack
Answer: A
NEW QUESTION 29
......
Certification Training for ISO-IEC-27001-Lead-Auditor Exam Dumps Test Engine: https://www.pass4surequiz.com/ISO-IEC-27001-Lead-Auditor-exam-quiz.html
ISO-IEC-27001-Lead-Auditor Training & Certification Get Latest ISO 27001 : https://drive.google.com/open?id=1MWWEj4o_nJ3kJvafkEtCCTZDaa_P9-m2