Question 1

Developing effective security controls is a balance between:

Accepted Answer

Developing effective security controls requires balancing risk management and operations. Risk management involves identifying and assessing risks, while operations involve implementing and maintaining controls to mitigate those risks.

Question 2

The PRIMARY objective for information security program development should be:

Accepted Answer

The primary objective of an information security program is to reduce the impact of risks to the business, ensuring that the organization's assets and information are protected against threats.

Question 3

Which of the following should be determined while defining risk management strategies?

Accepted Answer

Risk management strategies should align with organizational objectives and risk tolerance to ensure that risks are managed in a way that supports the organization's goals and acceptable levels of risk.

Question 4

The FIRST step in establishing a security governance program is to?

Accepted Answer

Obtaining senior level sponsorship is crucial as it ensures commitment and support from top management, which is essential for the success and sustainability of a security governance program.

Question 5

Which of the following most commonly falls within the scope of an information security governance steering committee?

Accepted Answer

The information security governance steering committee is typically responsible for overseeing and vetting information security policies to ensure they align with organizational goals and compliance requirements.

Question 6

When briefing senior management on the creation of a governance process, the MOST important aspect should be:

Accepted Answer

Linkage to business area objectives is crucial because it ensures that the governance process aligns with the organization's goals and priorities, making it relevant and effective for senior management.

Question 7

One of the MAIN goals of a Business Continuity Plan is to

Accepted Answer

A Business Continuity Plan primarily aims to ensure that business processes can continue or be quickly resumed after a disaster, which involves having detailed recovery plans for critical business functions.

Question 8

Which of the following has the GREATEST impact on the implementation of an information security governance model?

Accepted Answer

The complexity of the organizational structure has the greatest impact on the implementation of an information security governance model because it affects how policies, procedures, and controls are developed, communicated, and enforced across different departments and levels of the organization.

Question 9

Which of the following is of MOST importance when security leaders of an organization are required to align security to influence the culture of an organization?

Accepted Answer

Understanding the business goals of the organization is crucial for security leaders to align security measures with the organization's objectives and influence its culture effectively.

Question 10

From an information security perspective, information that no longer supports the main purpose of the business should be:

Accepted Answer

Information that no longer supports the main purpose of the business should be analyzed under the retention policy to determine if it should be archived or disposed of, ensuring compliance with legal and business requirements.

Question 11

Which of the following is considered the MOST effective tool against social engineering?

Accepted Answer

An effective security awareness program educates and trains employees to recognize and respond to social engineering attacks, making it the most effective tool against such threats.

Question 12

A security professional has been promoted to be the CISO of an organization.  The first task is to create a security policy for this organization.  The CISO creates and publishes the security policy.  This policy however, is ignored and not enforced consistently.  Which of the following is the MOST likely reason for the policy shortcomings?

Accepted Answer

A formal security policy governance process ensures that policies are enforced, reviewed, and updated regularly. Without it, policies may be ignored or inconsistently applied.

Question 13

Who in the organization determines access to information?

Accepted Answer

The Data Owner is responsible for determining who has access to specific information within an organization, as they are accountable for the data's integrity, security, and proper use.

Question 14

Which of the following is the MOST important benefit of an effective security governance process?

Accepted Answer

An effective security governance process primarily aims to reduce liability and overall risk to the organization by ensuring that security measures align with business objectives and regulatory requirements.

Question 15

When dealing with Security Incident Response procedures, which of the following steps come FIRST when reacting to an incident?

Accepted Answer

Containment is the first step in responding to a security incident to prevent further damage and spread of the threat.

Question 16

Which of the following is a benefit of information security governance?

Accepted Answer

The answer of Which of the following is a benefit...

Question 17

An organization's Information Security Policy is of MOST importance because

Accepted Answer

An Information Security Policy is crucial because it communicates management's commitment to protecting information resources, setting the tone for the organization's security culture and priorities.

Question 18

Which of the following is the MAIN reason to follow a formal risk management process in an organization that hosts and uses privately identifiable information (PII) as part of their business models and processes?

Accepted Answer

A formal risk management process helps an organization to systematically identify, assess, and mitigate risks associated with using PII data, ensuring informed decision-making and protection of sensitive information.

Question 19

When managing an Information Security Program, which of the following is of MOST importance in order to influence the culture of an organization?

Accepted Answer

Aligning security goals with business goals ensures that security initiatives are relevant and supported by the organization, thereby influencing the overall culture towards prioritizing security.

Question 20

The alerting, monitoring and life-cycle management of security related events is typically handled by the

Accepted Answer

The security threat and vulnerability management process is responsible for the alerting, monitoring, and life-cycle management of security-related events.

Exam 1: EC-Council Certified Incident Handler