Updated May-2023 Test Engine to Practice ISO-IEC-27001-Lead-Implementer Dumps & Practice Exam [Q12-Q31]

Updated May-2023 Test Engine to Practice ISO-IEC-27001-Lead-Implementer Dumps & Practice Exam

Dumps Collection ISO-IEC-27001-Lead-Implementer Test Engine Dumps Training With 50 Questions

NEW QUESTION # 12
Select the controls that correspond to thedomain "9. ACCESS CONTROL" of ISO / 27002 (Choose three)

• A. Restriction of access to information
• B. Management of access rights with special privileges
• C. Return of assets
• D. Withdrawal or adaptation of access rights

Answer: A,C,D

NEW QUESTION # 13
What should be used to protect data on removable media ifdata confidentiality or integrity are important considerations?

• A. cryptographic techniques
• B. logging
• C. backup on another removable medium
• D. a password

Answer: A

NEW QUESTION # 14
Susan sends an email to Paul. Who determines the meaning and the value of information in this email?

• A. Paul and Susan, the sender and the recipient of the information.
• B. Paul, therecipient of the information.
• C. Susan, the sender of the information.

Answer: B

NEW QUESTION # 15
Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the value of the information in the insurance terms and conditions document?

• A. The manager, Linda
• B. The sender, Peter
• C. The recipient, Rachel
• D. The person who drafted the insurance terms and conditions

Answer: C

NEW QUESTION # 16
True or False: Organizations allowing teleworking activities, the physical security of the building and the local environment of the teleworking site should be considered

• A. False
• B. True

Answer: B

NEW QUESTION # 17
Responsibilities for information security in projects should be defined and allocated to:

• A. the project manager
• B. the InfoSec officer
• C. the owner of the involved asset
• D. specified roles defined in the used project management method of the organization

Answer: D

NEW QUESTION # 18
Prior to employment, _________ as well as terms & conditions of employment are included as controls in ISO
27002 to ensure that employees and contractors understand their responsibilities and are suitable for the roles for which they are considered.

• A. authorizing
• B. screening
• C. controlling
• D. flexing

Answer: B

NEW QUESTION # 19
Who is authorized to change the classification of a document?

• A. The author of the document
• B. The administrator of the document
• C. The owner of the document
• D. The manager of the owner of the document

Answer: C

NEW QUESTION # 20
ISO 27002 provides guidance in the following area

• A. Detailed lists of required policies and procedures
• B. Information handling recommendations
• C. Framework for an overall security andcompliance program
• D. PCI environment scoping

Answer: C

NEW QUESTION # 21
What is the ISO / IEC 27002 standard?

• A. It is a guide for the development and use of applicable metrics and measurement techniques to determine the effectiveness of an ISMS and the controls or groups of controls implemented according to ISO / IEC 27001.
• B. It is a guide of good practices that describes the controlobjectives and recommended controls regarding information security.
• C. It is a guide that focuses on the critical aspects necessary for the successful design and implementation of an ISMS in accordance with ISO / IEC 27001

Answer: B

NEW QUESTION # 22
What is an example of a security incident?

• A. You cannot set the correct fonts in your word processing software.
• B. A file is saved under an incorrect name.
• C. The lighting in the department no longer works.
• D. A member of staff loses a laptop.

Answer: D

NEW QUESTION # 23
We can acquire and supply information in various ways. The value of the information depends on whether it is reliable. What are the reliability aspects of information?

• A. Availability, Integrity and Confidentiality
• B. Availability, Information Value and Confidentiality
• C. Timeliness, Accuracy and Completeness
• D. Availability, Integrity and Completeness

Answer: A

NEW QUESTION # 24
In the context ofcontact with special interest groups, any information-sharing agreements should identify requirements for the protection of _________ information.

• A. Authorization
• B. Availability
• C. Confidential
• D. Authentic

Answer: C

NEW QUESTION # 25
An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry date of a contract with one of theclients is earlier than the start date. What type of measure could prevent this error?

• A. Organizational measure
• B. Technical measure
• C. Availability measure
• D. Integrity measure

Answer: B

NEW QUESTION # 26
What is the most important reason for applying the segregation of duties?

• A. Segregation of duties ensures that, when a person is absent, it can be investigated whether he or she has been committing fraud.
• B. Segregation of duties makes it clear who is responsible for what.
• C. Segregation of duties makes it easier for a person who is readywith his or her part of the work to take time off or to take over the work of another person.
• D. Tasks and responsibilities must be separated in order to minimize the opportunities for business assets to be misused or changed, whether the change be unauthorized or unintentional.

Answer: D

NEW QUESTION # 27
Who is accountable to classify information assets?

• A. theasset owner
• B. the Information Security Team
• C. the CEO
• D. the CISO

Answer: A

NEW QUESTION # 28
How many domains does ISO / IEC 27002: 2013 have?

• A. 0
• B. 1
• C. 2
• D. 3

Answer: C

NEW QUESTION # 29
You are the owner of a growing company, SpeeDelivery, which provides courier services. You decide that it is time to draw up a risk analysis for your information system. This includes an inventoryof threats and risks.
What is the relation between a threat, risk and risk analysis?

• A. A riskanalysis is used to remove the risk of a threat.
• B. Risk analyses help to find a balance between threats and risks.
• C. A risk analysis identifies threats from the known risks.
• D. A risk analysis is used to clarify which threats are relevant and what risks they involve.

Answer: D

NEW QUESTION # 30
Which of the following measures is a correctivemeasure?

• A. Installing a virus scanner in an information system
• B. Restoring a backup of the correct database after a corrupt copy of the database was written over the original
• C. Making a backup of the data that has been created or altered that day
• D. Incorporating an Intrusion Detection System (IDS) in the design of a computer center

Answer: B

NEW QUESTION # 31
......

PECB ISO-IEC-27001-Lead-Implementer Dumps Cover Real Exam Questions: https://www.dumpsfree.com/ISO-IEC-27001-Lead-Implementer-valid-exam.html

Real ISO-IEC-27001-Lead-Implementer dumps - Real PECB dumps PDF: https://drive.google.com/open?id=1B5UT0Z-8zkEG9sOH7m8nFvz9Xjvabzh5