[Q16-Q35] Use the best ways of preparing for ISO-IEC-27001-Lead-Implementer Exam Dumps with PrepAwayPDF PECB ISO-IEC-27001-Lead-Implementer PDF Dumps [2022]

4/5 - (1 vote)

Use the best ways of preparing for ISO-IEC-27001-Lead-Implementer Exam Dumps with PrepAwayPDF PECB ISO-IEC-27001-Lead-Implementer dump PDF [2022]

PECB ISO-IEC-27001-Lead-Implementer exam candidates will surely pass the Exam if they consider the ISO-IEC-27001-Lead-Implementer dumps learning material presented by PrepAwayPDF.

NEW QUESTION 16
Midwest Insurance grades the monthly report of all claimed losses per insured as confidential. What is accomplished if all other reports from this insurance office are also assigned the appropriate grading?

The costs for automating are easier to charge to the responsible departments.

A determination can be made as to which report should be printed firstand which ones can wait a little longer.

Everyone can easily see how sensitive the reports’ contents are by consulting the grading label.

Reports can be developed more easily and with fewer errors.

NEW QUESTION 17
What is the most important reason for applying the segregation of duties?

Segregation of duties makes it clear who is responsible for what.

Segregation of duties ensures that, when a person is absent, it can be investigated whether he or she has been committing fraud.

Tasks and responsibilities must be separated in order to minimize the opportunities for business assets to be misused or changed, whether the change be unauthorized or unintentional.

Segregation of duties makes it easier for a person who is readywith his or her part of the work to take time off or to take over the work of another person.

NEW QUESTION 18
You have juststarted working at a large organization. You have been asked to sign a code of conduct as well as a contract. What does the organization wish to achieve with this?

A code of conduct helps to prevent the misuse of IT facilities.

A code of conduct is alegal obligation that organizations have to meet.

A code of conduct prevents a virus outbreak.

A code of conduct gives staff guidance on how to report suspected misuses of IT facilities.

NEW QUESTION 19
Which of these reliability aspects is “completeness” a part of?

Availability

Exclusivity

Integrity

Confidentiality

NEW QUESTION 20
What is an example of a security incident?

The lighting in the department no longer works.

A member of staff loses a laptop.

You cannot set the correct fonts in your word processing software.

A file is saved under an incorrect name.

NEW QUESTION 21
What do employees need to know to report a security incident?

How to report an incident and to whom.

Whether the incident has occurred before and what was the resulting damage.

The measures that should have been taken to prevent the incident in the first place.

Who is responsible for the incident and whether it was intentional.

NEW QUESTION 22
You are a consultant and areregularly hired by the Ministry of Defense to perform analysis. Since the assignments are irregular, you outsource the administration of your business to temporary workers. You don’t want the temporary workers to have access to your reports.
Which reliability aspect of the information in your reports must you protect?

Availability

Integrity

Confidentiality

NEW QUESTION 23
You apply for a position in another company and get the job. Along with your contract, you are asked to sign a code of conduct. What is a code of conduct?

A code ofconduct specifies how employees are expected to conduct themselves and is the same for all companies.

A code of conduct is a standard part of a labor contract.

A code of conduct differs from company to company and specifies, among other things, the rules of behavior with regard to the usage of information systems.

NEW QUESTION 24
What are the data protection principles set out in the GDPR?

Purpose limitation, proportionality, availability, data minimisation

Purpose limitation, proportionality, data minimisation, transparency

Target group, proportionality, transparency, data minimisation

Purpose limitation, pudicity, transparency, data minimisation

NEW QUESTION 25
Responsibilities for information security in projects should be defined and allocated to:

the project manager

specified roles defined in the used project management method of the organization

the InfoSec officer

the owner of the involved asset

NEW QUESTION 26
Susan sends an email to Paul. Who determines the meaning and the value of information in this email?

Paul, therecipient of the information.

Paul and Susan, the sender and the recipient of the information.

Susan, the sender of the information.

NEW QUESTION 27
The company Midwest Insurance has taken many measures to protect its information. It uses an Information Security Management System, the input and output of data in applications is validated, confidential documents are sent in encrypted form and staff use tokens to access information systems. Which of these is not a technical measure?

Information Security Management System

The use of tokens to gain access to information systems

Validation of input and output data in applications

Encryption ofinformation

NEW QUESTION 28
What is the ISO / IEC 27002 standard?

It is a guide of good practices that describes the controlobjectives and recommended controls regarding information security.

It is a guide that focuses on the critical aspects necessary for the successful design and implementation of an ISMS in accordance with ISO / IEC 27001

It is a guide for the development and use of applicable metrics and measurement techniques to determine the effectiveness of an ISMS and the controls or groups of controls implemented according to ISO / IEC 27001.

NEW QUESTION 29
Companies use 27002 for compliance for which of the following reasons:

A structured program that helps with security and compliance

Explicit requirements for all regulations

Compliance with ISO 27002 is sufficient to comply with all regulations

NEW QUESTION 30
An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry date of a contract with one of theclients is earlier than the start date. What type of measure could prevent this error?

Availability measure

Integrity measure

Organizational measure

Technical measure

NEW QUESTION 31
We can acquire and supply information in various ways. The value of the information depends on whether it is reliable. What are the reliability aspects of information?

Availability, Information Value and Confidentiality

Availability, Integrity and Confidentiality

Availability, Integrity and Completeness

Timeliness, Accuracy and Completeness

NEW QUESTION 32
The identified owner of an asset is always an individual

True

False

NEW QUESTION 33
A non-human threat for computer systems is a flood. In which situation is a flood always a relevant threat?

If the riskanalysis has not been carried out.

When computer systems are kept in a cellar below ground level.

When the computer systems are not insured.

When the organization is located near a river.

NEW QUESTION 34
Select the controls that correspond to thedomain “9. ACCESS CONTROL” of ISO / 27002 (Choose three)

Restriction of access to information

Return of assets

Management of access rights with special privileges

Withdrawal or adaptation of access rights

NEW QUESTION 35
You are the owner of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large risks but not for the small risks. What is this risk strategy called?

Risk bearing

Risk avoiding

Risk neutral

Risk passing