Question 1

Which of the following set of processes is considered to be one of the cornerstone cycles of the International Organization for Standardization (ISO) 27001 standard?

Accepted Answer

The Plan-Do-Check-Act (PDCA) cycle is a key component of the ISO 27001 standard, which is used for establishing, implementing, maintaining, and continually improving an information security management system (ISMS).

Question 2

Which represents PROPER separation of duties in the corporate environment?

Accepted Answer

The answer of Which represents PROPER separation of duties in...

Question 3

The remediation of a specific audit finding is deemed too expensive and will not be implemented. Which of the following is a TRUE statement?

Accepted Answer

The decision not to implement the remediation suggests that the cost of remediation exceeds the value of the asset being protected, making it economically unjustifiable.

Question 4

To have accurate and effective information security policies how often should the CISO review the organization policies?

Accepted Answer

Reviewing information security policies at least once a year is a standard practice to ensure they remain relevant and effective in addressing current security threats and compliance requirements.

Question 5

A Chief Information Security Officer received a list of high, medium, and low impact audit findings. Which of the following represents the BEST course of action?

Accepted Answer

Remediating the high findings as quickly as possible is the best course of action when the findings impact regulatory compliance.

Question 6

At which point should the identity access management team be notified of the termination of an employee?

Accepted Answer

The identity access management team should be notified immediately upon termination to promptly disable the employee's accounts and prevent unauthorized access.

Question 7

Which of the following is the MOST important reason to measure the effectiveness of an Information Security Management System (ISMS)?

Accepted Answer

Measuring the effectiveness of an ISMS helps in understanding the strengths and weaknesses of the program, allowing for continuous improvement and ensuring that security measures are effective in protecting the organization's information assets.

Question 8

With respect to the audit management process, management response serves what function?

Accepted Answer

Management response in the audit management process involves deciding whether resources will be allocated to address and remediate findings identified during an audit.

Question 9

An employee successfully avoids becoming a victim of a sophisticated spear phishing attack due to knowledge gained through the corporate information security awareness program. What type of control has been effectively utilized?

Accepted Answer

Operational controls include security measures that are implemented and executed by people, such as security awareness training programs, which help employees recognize and respond to threats like spear phishing.

Question 10

Which of the following are primary concerns for management with regard to assessing internal control objectives?

Accepted Answer

Management is primarily concerned with compliance, effectiveness, and efficiency when assessing internal control objectives to ensure that operations are conducted in accordance with laws and regulations, resources are used effectively, and processes are efficient.

Question 11

When a CISO considers delaying or not remediating system vulnerabilities which of the following are MOST important to take into account?

Accepted Answer

The most important factors to consider are the threat level, the risk of compromise, and the consequences of a compromise, as these directly impact the security posture and potential damage to the organization.

Question 12

Which of the following organizations is typically in charge of validating the implementation and effectiveness of security controls?

Accepted Answer

Internal/External Audit is responsible for validating the implementation and effectiveness of security controls by conducting independent assessments and reviews.

Question 13

Which International Organization for Standardization (ISO) below BEST describes the performance of risk management, and includes a five-stage risk management methodology.

Accepted Answer

ISO 27005 provides guidelines for information security risk management and includes a five-stage risk management methodology, making it the best choice for describing the performance of risk management.

Question 14

Creating good security metrics is essential for a CISO. What would be the BEST sources for creating security metrics for baseline defenses coverage?

Accepted Answer

Firewall, anti-virus console, IDS, and syslog are directly related to security monitoring and provide relevant data for creating security metrics for baseline defenses coverage.

Question 15

When working in the Payment Card Industry (PCI), how often should security logs be review to comply with the standards?

Accepted Answer

Security logs should be reviewed daily to comply with PCI standards, ensuring timely detection and response to any suspicious activities.

Question 16

Control Objectives for Information and Related Technology (COBIT) is which of the following?

Accepted Answer

COBIT is a framework created by ISACA for IT management and governance, providing a comprehensive approach to ensure effective IT governance and management.

Question 17

An organization has implemented a change management process for all changes to the IT production environment. This change management process follows best practices and is expected to help stabilize the availability and integrity of the organization's IT environment. Which of the following can be used to measure the effectiveness of this newly implemented process?

Accepted Answer

The number of unplanned outages is a direct indicator of the effectiveness of the change management process, as a well-managed process should minimize disruptions caused by changes.

Question 18

You have implemented the new controls. What is the next step?

Accepted Answer

After implementing new controls, the next step is to monitor their effectiveness to ensure they are working as intended and mitigating the risks they were designed to address.

Question 19

An information security department is required to remediate system vulnerabilities when they are discovered. Please select the three primary remediation methods that can be used on an affected system.

Accepted Answer

The three primary remediation methods for system vulnerabilities are installing a software patch to fix the vulnerability, adjusting the system configuration to mitigate the risk, and removing the affected software if it cannot be patched or adjusted.

Question 20

The ultimate goal of an IT security projects is:

Accepted Answer

The ultimate goal of IT security projects is to support business requirements by ensuring that the organization's information systems are secure and aligned with business objectives.

Exam 2: Certified Network Defender