
Pass PECB ISO-IEC-27001-Lead-Implementer Exam Info and Free Practice Test
New 2021 Latest Questions ISO-IEC-27001-Lead-Implementer Dumps - Use Updated PECB Exam
NEW QUESTION 16
Who is authorized to change the classification of a document?
- A. The manager of the owner of the document
- B. The administrator of the document
- C. The author of the document
- D. The owner of the document
Answer: D
NEW QUESTION 17
Companies use 27002 for compliance for which of the following reasons:
- A. Compliance with ISO 27002 is sufficient to comply with all regulations
- B. A structured program that helps with security and compliance
- C. Explicit requirements for all regulations
Answer: B
NEW QUESTION 18
You are a consultant and areregularly hired by the Ministry of Defense to perform analysis. Since the assignments are irregular, you outsource the administration of your business to temporary workers. You don't want the temporary workers to have access to your reports.
Which reliability aspect of the information in your reports must you protect?
- A. Confidentiality
- B. Availability
- C. Integrity
Answer: A
NEW QUESTION 19
Physical labels and ________ are two common forms of labeling which are mentioned in ISO 27002.
- A. metadata
- B. teradata
- C. bridge
Answer: A
NEW QUESTION 20
The company Midwest Insurance has taken many measures to protect its information. It uses an Information Security Management System, the input and output of data in applications is validated, confidential documents are sent in encrypted form and staff use tokens to access information systems. Which of these is not a technical measure?
- A. The use of tokens to gain access to information systems
- B. Encryption ofinformation
- C. Validation of input and output data in applications
- D. Information Security Management System
Answer: D
NEW QUESTION 21
Logging in to a computer system is an access-granting process consisting of three steps: identification, authentication and authorization. What occurs during the first step of this process: identification?
- A. The first step consists of comparing the password with the registered password.
- B. The first step consists of granting access to the information to which the user is authorized.
- C. The first step consists of checking if the user appears on the list of authorized users.
- D. Thefirst step consists of checking if the user is using the correct certificate.
Answer: C
NEW QUESTION 22
ISO 27002 provides guidance in the following area
- A. Framework for an overall security andcompliance program
- B. PCI environment scoping
- C. Information handling recommendations
- D. Detailed lists of required policies and procedures
Answer: A
NEW QUESTION 23
What is the ISO / IEC 27002 standard?
- A. It is a guide of good practices that describes the controlobjectives and recommended controls regarding information security.
- B. It is a guide for the development and use of applicable metrics and measurement techniques to determine the effectiveness of an ISMS and the controls or groups of controls implemented according to ISO / IEC 27001.
- C. It is a guide that focuses on the critical aspects necessary for the successful design and implementation of an ISMS in accordance with ISO / IEC 27001
Answer: A
NEW QUESTION 24
One of the ways Internet of Things (IoT) devices can communicate with each other (or 'the outside world') is using a so-called short-range radio protocol. Which kind of short-range radio protocol makes it possible to use your phone as a credit card?
- A. Near Field Communication (NFC)
- B. The 4G protocol
- C. Bluetooth
- D. Radio Frequency Identification (RFID)
Answer: A
NEW QUESTION 25
What are the data protection principles set out in the GDPR?
- A. Purpose limitation, proportionality, availability, data minimisation
- B. Purpose limitation, proportionality, data minimisation, transparency
- C. Purpose limitation, pudicity, transparency, data minimisation
- D. Target group, proportionality, transparency, data minimisation
Answer: B
NEW QUESTION 26
What is the most important reason for applying the segregation of duties?
- A. Segregation of duties makes it clear who is responsible for what.
- B. Segregation of duties ensures that, when a person is absent, it can be investigated whether he or she has been committing fraud.
- C. Tasks and responsibilities must be separated in order to minimize the opportunities for business assets to be misused or changed, whether the change be unauthorized or unintentional.
- D. Segregation of duties makes it easier for a person who is readywith his or her part of the work to take time off or to take over the work of another person.
Answer: C
NEW QUESTION 27
What is the best way to comply with legislation and regulations for personal data protection?
- A. Maintaining an incident register
- B. Appointing the responsibility to someone
- C. Performing a vulnerability analysis
- D. Performing a threat analysis
Answer: B
NEW QUESTION 28
We can acquire and supply information in various ways. The value of the information depends on whether it is reliable. What are the reliability aspects of information?
- A. Availability, Integrity and Completeness
- B. Availability, Integrity and Confidentiality
- C. Timeliness, Accuracy and Completeness
- D. Availability, Information Value and Confidentiality
Answer: B
NEW QUESTION 29
True or False: Organizations allowing teleworking activities, the physical security of the building and the local environment of the teleworking site should be considered
- A. True
- B. False
Answer: A
NEW QUESTION 30
How many domains does ISO / IEC 27002: 2013 have?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: B
NEW QUESTION 31
What sort of security does a Public Key Infrastructure (PKI) offer?
- A. Having a PKI shows customers that a web-based business is secure.
- B. It provides digital certificates that can be used to digitally signdocuments. Such signatures irrefutably determine from whom a document was sent.
- C. By providing agreements, procedures and an organization structure, a PKI defines which person or which system belongs to which specific public key.
- D. A PKI ensures that backups of company data are made on a regular basis.
Answer: D
NEW QUESTION 32
It is allowed that employees and contractors are provided with an anonymous reporting channel to report violations of information security policies or procedures ("whistle blowing")
- A. True
- B. False
Answer: A
NEW QUESTION 33
......
Latest ISO-IEC-27001-Lead-Implementer Exam Dumps PECB Exam: https://www.certkingdompdf.com/ISO-IEC-27001-Lead-Implementer-latest-certkingdom-dumps.html
Pass PECB ISO-IEC-27001-Lead-Implementer PDF Dumps Recently Updated 50 Questions: https://drive.google.com/open?id=161o99EmC5Of8mtGdNOuGl3Wrdg-8GPzL