Get ready to pass the ISO-IEC-LI Exam right now using our GAQM certification Exam Package
A fully updated 2021 ISO-IEC-LI Exam Dumps exam guide from training expert PassLeader
NEW QUESTION 10
Of the following, which is the best organization or set of organizations to contribute to compliance?
- A. IT only
- B. IT, business management, HR and legal
- C. IT and legal
- D. IT and management
Answer: B
NEW QUESTION 11
It is allowed that employees and contractors are provided with an anonymous reporting channel to report violations of information security policies or procedures ("whistle blowing")
- A. True
- B. False
Answer: A
NEW QUESTION 12
Physical labels and ________ are two common forms of labeling which are mentioned in ISO 27002.
- A. metadata
- B. bridge
- C. teradata
Answer: A
NEW QUESTION 13
Select the controls that correspond to the domain "9. ACCESS CONTROL" of ISO / 27002 (Choose three)
- A. Restriction of access to information
- B. Return of assets
- C. Withdrawal or adaptation of access rights
- D. Management of access rights with special privileges
Answer: A,B,C
NEW QUESTION 14
What is an example of a good physical security measure?
- A. Maintenance staff can be given quick and unimpeded access to the server area in the event of disaster.
- B. All employees and visitors carry an access pass.
- C. Printers that are defective or have been replaced are immediately removed and given away as garbage for recycling.
Answer: B
NEW QUESTION 15
What is an example of a security incident?
- A. The lighting in the department no longer works.
- B. A file is saved under an incorrect name.
- C. A member of staff loses a laptop.
- D. You cannot set the correct fonts in your word processing software.
Answer: C
NEW QUESTION 16
You are the owner of a growing company, SpeeDelivery, which provides courier services. You decide that it is time to draw up a risk analysis for your information system. This includes an inventory of threats and risks.
What is the relation between a threat, risk and risk analysis?
- A. A risk analysis is used to clarify which threats are relevant and what risks they involve.
- B. A risk analysis identifies threats from the known risks.
- C. A risk analysis is used to remove the risk of a threat.
- D. Risk analyses help to find a balance between threats and risks.
Answer: A
NEW QUESTION 17
An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry date of a contract with one of the clients is earlier than the start date. What type of measure could prevent this error?
- A. Integrity measure
- B. Availability measure
- C. Technical measure
- D. Organizational measure
Answer: C
NEW QUESTION 18
What is the best way to comply with legislation and regulations for personal data protection?
- A. Maintaining an incident register
- B. Appointing the responsibility to someone
- C. Performing a vulnerability analysis
- D. Performing a threat analysis
Answer: B
NEW QUESTION 19
Why is compliance important for the reliability of the information?
- A. By meeting the legislative requirements and the regulations of both the government and internal management, an organization shows that it manages its information in a sound manner.
- B. When an organization is compliant, it meets the requirements of privacy legislation and, in doing so, protects the reliability of its information.
- C. Compliance is another word for reliability. So, if a company indicates that it is compliant, it means that the information is managed properly.
- D. When an organization employs a standard such as the ISO/IEC 27002 and uses it everywhere, it is compliant and therefore it guarantees the reliability of its information.
Answer: A
NEW QUESTION 20
What should be used to protect data on removable media if data confidentiality or integrity are important considerations?
- A. backup on another removable medium
- B. logging
- C. cryptographic techniques
- D. a password
Answer: C
NEW QUESTION 21
Logging in to a computer system is an access-granting process consisting of three steps: identification, authentication and authorization. What occurs during the first step of this process: identification?
- A. The first step consists of granting access to the information to which the user is authorized.
- B. The first step consists of checking if the user appears on the list of authorized users.
- C. The first step consists of comparing the password with the registered password.
- D. The first step consists of checking if the user is using the correct certificate.
Answer: B
NEW QUESTION 22
Which of the following measures is a corrective measure?
- A. Restoring a backup of the correct database after a corrupt copy of the database was written over the original
- B. Installing a virus scanner in an information system
- C. Incorporating an Intrusion Detection System (IDS) in the design of a computer center
- D. Making a backup of the data that has been created or altered that day
Answer: A
NEW QUESTION 23
What is an example of a non-human threat to the physical environment?
- A. Storm
- B. Corrupted file
- C. Fraudulent transaction
- D. Virus
Answer: A
NEW QUESTION 24
You apply for a position in another company and get the job. Along with your contract, you are asked to sign a code of conduct. What is a code of conduct?
- A. A code of conduct is a standard part of a labor contract.
- B. A code of conduct differs from company to company and specifies, among other things, the rules of behavior with regard to the usage of information systems.
- C. A code of conduct specifies how employees are expected to conduct themselves and is the same for all companies.
Answer: B
NEW QUESTION 25
......
Master 2021 Latest The Questions GAQM certification and Pass ISO-IEC-LI Real Exam!: https://www.passleader.top/GAQM/ISO-IEC-LI-exam-braindumps.html