Validate your Skills with Updated ISO-IEC-27001-Lead-Auditor Exam Questions & Answers and Test Engine

Tested & Approved ISO-IEC-27001-Lead-Auditor Study Materials Download Free Updated 99 Questions

NEW QUESTION 33
You are the lead auditor of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large risks but not for the small risks.
What is this risk strategy called?

• A. Risk skipping
• B. Risk neutral
• C. Risk avoidance
• D. Risk bearing

Answer: D

 

NEW QUESTION 34
We can leave laptops during weekdays or weekends in locked bins.

• A. True
• B. False

Answer: B

 

NEW QUESTION 35
What is the purpose of an Information Security policy?

• A. An information security policy makes the security plan concrete by providing the necessary details
• B. An information security policy provides direction and support to the management regarding information security
• C. An information security policy documents the analysis of risks and the search for countermeasures
• D. An information security policy provides insight into threats and the possible consequences

Answer: B

 

NEW QUESTION 36
Which of the following is an information security management system standard published by the International Organization for Standardization?

• A. ISO22301
• B. ISO5501
• C. ISO9008
• D. ISO27001

Answer: D

 

NEW QUESTION 37
What is a repressive measure in case of a fire?

• A. Repairing damage caused by the fire
• B. Putting out a fire after it has been detected by a fire detector
• C. Taking out a fire insurance

Answer: B

 

NEW QUESTION 38
CEO sends a mail giving his views on the status of the company and the company's future strategy and the CEO's vision and the employee's part in it. The mail should be classified as

• A. Confidential Mail
• B. Internal Mail
• C. Public Mail
• D. Restricted Mail

Answer: B

 

NEW QUESTION 39
Stages of Information

• A. creation, use, disposition, maintenance, evolution
• B. creation, distribution, use, maintenance, disposition
• C. creation, evolution, maintenance, use, disposition
• D. creation, distribution, maintenance, disposition, use

Answer: B

 

NEW QUESTION 40
A hacker gains access to a webserver and can view a file on the server containing credit card numbers.
Which of the Confidentiality, Integrity, Availability (CIA) principles of the credit card file are violated?

• A. Compliance
• B. Availability
• C. Confidentiality
• D. Integrity

Answer: C

 

NEW QUESTION 41
The following are purposes of Information Security, except:

• A. Ensure Business Continuity
• B. Minimize Business Risk
• C. Maximize Return on Investment
• D. Increase Business Assets

Answer: D

 

NEW QUESTION 42
What is the goal of classification of information?

• A. Applying labels making the information easier to recognize
• B. Structuring information according to its sensitivity
• C. To create a manual about how to handle mobile devices

Answer: B

 

NEW QUESTION 43
Information has a number of reliability aspects. Reliability is constantly being threatened. Examples of threats are: a cable becomes loose, someone alters information by accident, data is used privately or is falsified.
Which of these examples is a threat to integrity?

• A. private use of data
• B. a loose cable
• C. System restart
• D. accidental alteration of data

Answer: D

 

NEW QUESTION 44
The following are the guidelines to protect your password, except:

• A. For easy recall, use the same password for company and personal accounts
• B. Don't use the same password for various company system security access
• C. Do not share passwords with anyone
• D. Change a temporary password on first log-on

Answer: A,C

 

NEW QUESTION 45
CMM stands for?

• A. Capability Maturity Model
• B. Capability Maturity Matrix
• C. Capable Mature Model
• D. Capacity Maturity Matrix

Answer: A

 

NEW QUESTION 46
Which of the following does an Asset Register contain? (Choose two)

• A. Asset Type
• B. Asset Owner
• C. Asset Modifier
• D. Process ID

Answer: A,B

 

NEW QUESTION 47
What is we do in ACT - From PDCA cycle

• A. Take actions to continually improve process performance
• B. Take actions to continually monitor process performance
• C. Take actions to continually monitor process performance
• D. Take actions to continually improve people performance

Answer: A

 

NEW QUESTION 48
Which measure is a preventive measure?

• A. Shutting down all internet traffic after a hacker has gained access to the company systems
• B. Putting sensitive information in a safe
• C. Installing a logging system that enables changes in a system to be recognized

Answer: B

 

NEW QUESTION 49
......

PECB ISO-IEC-27001-Lead-Auditor Exam Syllabus Topics:

Topic	Details
Topic 1	Interpret the ISO IEC 27001 requirements for an ISMS from the perspective of an auditor Information Security Management System (ISMS)
Topic 2	Evaluate the ISMS conformity to ISO IEC 27001 requirements, in accordance with the fundamental audit concepts and principles
Topic 3	Plan, conduct, and close an ISO IEC 27001 compliance audit Manage an ISO IEC 27001 audit program
Topic 4	Managing an ISO IEC 27001 audit program Preparation, Conducting, Closing of an ISO IEC 27001 audit
Topic 5	Fundamental audit concepts and principles Fundamental principles and concepts of Information Security Management System (ISMS)

 

Regular Free Updates ISO-IEC-27001-Lead-Auditor Dumps Real Exam Questions Test Engine: https://www.testsimulate.com/ISO-IEC-27001-Lead-Auditor-study-materials.html