ISO 27001 : 2013 - Certified Lead Auditor (ISO27-13-001) Free Practice Test

Question 1

A fire breaks out in a branch office of a health insurance company. The personnel are transferred to neighboring branches to continue their work.
Where in the incident cycle is moving to a stand-by arrangements found?

A. between damage and recovery

B. between recovery and threat

C. between threat and incident

D. between incident and damage

Correct Answer: D

Question 2

A decent visitor is roaming around without visitor's ID. As an employee you should do the following, except:

A. Escort him to his destination

B. Greet and ask him what is his business

C. Say "hi" and offer coffee

D. Call the receptionist and inform about the visitor

Correct Answer: C

Question 3

Which of the following is a preventive security measure?

A. Installing logging and monitoring software

B. Storing sensitive information in a data save

C. Shutting down the Internet connection after an attack

Correct Answer: B

Question 4

We can leave laptops during weekdays or weekends in locked bins.

A. False

B. True

Correct Answer: A

Question 5

Changes on project-managed applications or database should undergo the change control process as documented.

A. False

B. True

Correct Answer: B

Question 6

In which order is an Information Security Management System set up?

A. Establishment, operation, monitoring, improvement

B. Implementation, operation, maintenance, establishment

C. Establishment, implementation, operation, maintenance

D. Implementation, operation, improvement, maintenance

Correct Answer: C

Question 7

An administration office is going to determine the dangers to which it is exposed.
What do we call a possible event that can have a disruptive effect on the reliability of information?

A. risk

B. vulnerability

C. dependency

D. threat

Correct Answer: D

Question 8

Cabling Security is associated with Power, telecommunication and network cabling carrying information are protected from interception and damage.

A. False

B. True

Correct Answer: B

Question 9

What is the standard definition of ISMS?

A. A project-based approach to achieve business objectives for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an organization's information security

B. A systematic approach for establishing, implementing,operating,monitoring, reviewing, maintaining and improving an organization's information security to achieve business objectives.

C. Is an information security systematic approach to achieve business objectives for implementation, establishing, reviewing,operating and maintaining organization's reputation.

D. A company wide business objectives to achieve information security awareness for establishing, implementing, operating, monitoring, reviewing, maintaining and improving

Correct Answer: B

Question 10

The following are definitions of Information, except:

A. accurate and timely data

B. can lead to understanding and decrease in uncertainty

C. specific and organized data for a purpose

D. mature and measurable data

Correct Answer: D

Welcome to TestSimulate

GAQM ISO 27001 : 2013 - Certified Lead Auditor (ISO27-13-001) Free Practice Test