Exam Code : ISFS
Exam Name : Information Security Foundation based on ISO/IEC 27002
Vendor Name :
"Exin"
ISFS Dumps ISFS Braindumps
ISFS Real Questions ISFS Practice Test ISFS Actual Questions
Information Security Foundation based on ISO/IEC 27002
https://killexams.com/pass4sure/exam-detail/ISFS
Which one of the threats listed below can occur as a result of the absence of a physical measure?
A user can view the files belonging to another user.
A server shuts off because of overheating.
A confidential document is left in the printer.
Hackers can freely enter the computer network.
What is the best description of a risk analysis?
A risk analysis is a method of mapping risks without looking at company processes.
A risk analysis helps to estimate the risks and develop the appropriate security measures.
A risk analysis calculates the exact financial consequences of damages.
What is the goal of an organization's security policy?
To provide direction and support to information security
To define all threats to and measures for ensuring information security
To document all incidents that threaten the reliability of information
To document all procedures required to maintain information security
The Information Security Manager (ISM) at Smith Consultants Inc. introduces the following measures to assure information security: - The security requirements for the network are specified. - A test environment is set up for the purpose of testing reports coming from the database. - The various employee functions are assigned corresponding access rights. RFID access passes are introduced for the building. Which one of these measures is not a technical measure?
The specification of requirements for the network
Setting up a test environment
Introducing a logical access policy
Introducing RFID access passes
A company moves into a new building. A few weeks after the move, a visitor appears unannounced in the office of the director. An investigation shows that visitors passes grant the same access as the passes of the companys staff. Which kind of security measure could have prevented this?
A physical security measure
An organizational security measure
A technical security measure
You have an office that designs corporate logos. You have been working on a draft for a large client. Just as you are going to press the <save> button, the screen goes blank. The hard disk is damaged and cannot be repaired. You find an early version of the design in your mail folder and you reproduce the draft for the customer. What is such a measure called?
Corrective measure
Preventive measure
Reductive measure
You are the owner of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large risks but not for the small risks. What is this risk strategy called?
Risk bearing
Risk avoiding
Risk neutral
Three characteristics determine the reliability of information. Which characteristics are these?
Availability, Integrity and Correctness
Availability, Integrity and Confidentiality
Availability, Nonrepudiation and Confidentiality
What action is an unintentional human threat?
Arson
Theft of a laptop
Social engineering
Incorrect use of fire extinguishing equipment