• Home
  • Blogs
  • ISO-IEC-27001-Lead-Auditor Certification - Valid Exam Dumps Questions Study Guide! (Updated 99 Questions) [Q20-Q37]

ISO-IEC-27001-Lead-Auditor Certification - Valid Exam Dumps Questions Study Guide! (Updated 99 Questions) [Q20-Q37]

Share

ISO-IEC-27001-Lead-Auditor Certification – Valid Exam Dumps Questions Study Guide! (Updated 99 Questions)

ISO-IEC-27001-Lead-Auditor Dumps are Available for Instant Access using ExamPrepAway

NEW QUESTION 20
You are the lead auditor of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large risks but not for the small risks.
What is this risk strategy called?

  • A. Risk skipping
  • B. Risk bearing
  • C. Risk neutral
  • D. Risk avoidance

Answer: B

 

NEW QUESTION 21
Which of the following factors does NOT contribute to the value of data for an organisation?

  • A. The indispensability of data
  • B. The correctness of data
  • C. The importance of data for processes
  • D. The content of data

Answer: D

 

NEW QUESTION 22
You receive the following mail from the IT support team: Dear User,Starting next week, we will be deleting all inactive email accounts in order to create spaceshare the below details in order to continue using your account. In case of no response, Name:
Email ID:
Password:
DOB:
Kindly contact the webmail team for any further support. Thanks for your attention.
Which of the following is the best response?

  • A. Ignore the email
  • B. Respond it by saying that one should not share the password with anyone
  • C. One should not respond to these mails and report such email to your supervisor

Answer: C

 

NEW QUESTION 23
Which of the following statements are correct for Clean Desk Policy?

  • A. Don't leave highly confidential items.
  • B. Don't leave laptops without cable lock.
  • C. Don't leave confidential documents on your desk.
  • D. Don't leave valuable items on your desk if you are not in your work area.

Answer: A,C,D

 

NEW QUESTION 24
Which department maintain's contacts with law enforcement authorities, regulatory bodies, information service providers and telecommunications service providers depending on the service required.

  • A. CISO
  • B. CSM
  • C. MRO
  • D. COO

Answer: A

 

NEW QUESTION 25
What is the name of the system that guarantees the coherence of information security in the organization?

  • A. Security regulations for special information for the government
  • B. Information Technology Service Management (ITSM)
  • C. Rootkit
  • D. Information Security Management System (ISMS)

Answer: D

 

NEW QUESTION 26
Cabling Security is associated with Power, telecommunication and network cabling carrying information are protected from interception and damage.

  • A. False
  • B. True

Answer: B

 

NEW QUESTION 27
A hacker gains access to a web server and reads the credit card numbers stored on that server. Which security principle is violated?

  • A. Integrity
  • B. Authenticity
  • C. Confidentiality
  • D. Availability

Answer: C

 

NEW QUESTION 28
What is a reason for the classification of information?

  • A. To structure the information according to its sensitivity
  • B. To provide clear identification tags
  • C. Creating a manual describing the BYOD policy

Answer: A

 

NEW QUESTION 29
Which of the following is not a type of Information Security attack?

  • A. Technical Vulnerabilities
  • B. Vehicular Incidents
  • C. Privacy Incidents
  • D. Legal Incidents

Answer: B

 

NEW QUESTION 30
What is the goal of classification of information?

  • A. To create a manual about how to handle mobile devices
  • B. Applying labels making the information easier to recognize
  • C. Structuring information according to its sensitivity

Answer: C

 

NEW QUESTION 31
What is the security management term for establishing whether someone's identity is correct?

  • A. Identification
  • B. Authentication
  • C. Authorisation
  • D. Verification

Answer: B

 

NEW QUESTION 32
What type of system ensures a coherent Information Security organisation?

  • A. Information Exchange Data System (IEDS)
  • B. Federal Information Security Management Act (FISMA)
  • C. Information Technology Service Management System (ITSM)
  • D. Information Security Management System (ISMS)

Answer: D

 

NEW QUESTION 33
-------------------------is an asset like other important business assets has value to an organization and consequently needs to be protected.

  • A. Security
  • B. Infrastructure
  • C. Information
  • D. Data

Answer: C

 

NEW QUESTION 34
A couple of years ago you started your company which has now grown from 1 to 20 employees. Your company's information is worth more and more and gone are the days when you could keep control yourself.
You are aware that you have to take measures, but what should they be? You hire a consultant who advises you to start with a qualitative risk analysis.
What is a qualitative risk analysis?

  • A. This analysis follows a precise statistical probability calculation in order to calculate exact loss caused by damage.
  • B. This analysis is based on scenarios and situations and produces a subjective view of the possible threats.

Answer: B

 

NEW QUESTION 35
Integrity of data means

  • A. Data should be viewable at all times
  • B. Data should be accessed by only the right people
  • C. Accuracy and completeness of the data

Answer: C

 

NEW QUESTION 36
Which reliability aspect of information is compromised when a staff member denies having sent a message?

  • A. Confidentiality
  • B. Integrity
  • C. Correctness
  • D. Availability

Answer: B

 

NEW QUESTION 37
......

PECB ISO-IEC-27001-Lead-Auditor Exam Practice Test Questions: https://ucertify.examprepaway.com/PECB/braindumps.ISO-IEC-27001-Lead-Auditor.ete.file.html

Related Blogs

more
PECB ISO-IEC-27001-Lead-Auditor Certification Practice Exam