Valid ISO-IEC-27001-Lead-Implementer Test Answers & PECB ISO-IEC-27001-Lead-Implementer Exam PDF [Q13-Q34]

Valid ISO-IEC-27001-Lead-Implementer Test Answers & PECB ISO-IEC-27001-Lead-Implementer Exam PDF

PECB ISO-IEC-27001-Lead-Implementer Certification Real 2021 Mock Exam

NEW QUESTION 13
Physical labels and ________ are two common forms of labeling which are mentioned in ISO 27002.

• A. metadata
• B. teradata
• C. bridge

Answer: A

 

NEW QUESTION 14
We can acquire and supply information in various ways. The value of the information depends on whether it is reliable. What are the reliability aspects of information?

• A. Availability, Information Value and Confidentiality
• B. Availability, Integrity and Completeness
• C. Availability, Integrity and Confidentiality
• D. Timeliness, Accuracy and Completeness

Answer: C

 

NEW QUESTION 15
What does the Information Security Policy describe?

• A. which InfoSec-controls have been selected and taken
• B. how the InfoSec-objectives will be reached
• C. what the implementation-planning of the information security management system is
• D. which Information Security-procedures are selected

Answer: B

 

NEW QUESTION 16
In the context ofcontact with special interest groups, any information-sharing agreements should identify requirements for the protection of _________ information.

• A. Confidential
• B. Availability
• C. Authentic
• D. Authorization

Answer: A

 

NEW QUESTION 17
The identified owner of an asset is always an individual

• A. False
• B. True

Answer: A

 

NEW QUESTION 18
What is the ISO / IEC 27002 standard?

• A. It is a guide for the development and use of applicable metrics and measurement techniques to determine the effectiveness of an ISMS and the controls or groups of controls implemented according to ISO / IEC 27001.
• B. It is a guide that focuses on the critical aspects necessary for the successful design and implementation of an ISMS in accordance with ISO / IEC 27001
• C. It is a guide of good practices that describes the controlobjectives and recommended controls regarding information security.

Answer: C

 

NEW QUESTION 19
What are the data protection principles set out in the GDPR?

• A. Purpose limitation, proportionality, availability, data minimisation
• B. Purpose limitation, pudicity, transparency, data minimisation
• C. Purpose limitation, proportionality, data minimisation, transparency
• D. Target group, proportionality, transparency, data minimisation

Answer: C

 

NEW QUESTION 20
Which of the following measures is a correctivemeasure?

• A. Restoring a backup of the correct database after a corrupt copy of the database was written over the original
• B. Making a backup of the data that has been created or altered that day
• C. Installing a virus scanner in an information system
• D. Incorporating an Intrusion Detection System (IDS) in the design of a computer center

Answer: A

 

NEW QUESTION 21
One of the ways Internet of Things (IoT) devices can communicate with each other (or 'the outside world') is using a so-called short-range radio protocol. Which kind of short-range radio protocol makes it possible to use your phone as a credit card?

• A. Near Field Communication (NFC)
• B. The 4G protocol
• C. Bluetooth
• D. Radio Frequency Identification (RFID)

Answer: A

 

NEW QUESTION 22
Prior to employment, _________ as well as terms & conditions of employment are included as controls in ISO
27002 to ensure that employees and contractors understand their responsibilities and are suitable for the roles for which they are considered.

• A. authorizing
• B. screening
• C. controlling
• D. flexing

Answer: B

 

NEW QUESTION 23
Companies use 27002 for compliance for which of the following reasons:

• A. A structured program that helps with security and compliance
• B. Explicit requirements for all regulations
• C. Compliance with ISO 27002 is sufficient to comply with all regulations

Answer: A

 

NEW QUESTION 24
Who is accountable to classify information assets?

• A. the CEO
• B. theasset owner
• C. the Information Security Team
• D. the CISO

Answer: B

 

NEW QUESTION 25
Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the value of the information in the insurance terms and conditions document?

• A. The recipient, Rachel
• B. The person who drafted the insurance terms and conditions
• C. The sender, Peter
• D. The manager, Linda

Answer: A

 

NEW QUESTION 26
A company moves into a new building. A few weeks after the move, a visitor appears unannounced in the office of the director. An investigation shows that visitors passes grant the same access as the passes of the company's staff. Which kind of security measure could have prevented this?

• A. physical security measure
• B. A technical security measure
• C. An organizational security measure

Answer: A

 

NEW QUESTION 27
What is the best description of a risk analysis?

• A. A risk analysis calculates the exact financial consequences of damages.
• B. A risk analysis is a method of mapping risks without looking at company processes.
• C. A risk analysis helps to estimate the risks and develop the appropriate security measures.

Answer: C

 

NEW QUESTION 28
True or False: Organizations allowing teleworking activities, the physical security of the building and the local environment of the teleworking site should be considered

• A. False
• B. True

Answer: B

 

NEW QUESTION 29
The company Midwest Insurance has taken many measures to protect its information. It uses an Information Security Management System, the input and output of data in applications is validated, confidential documents are sent in encrypted form and staff use tokens to access information systems. Which of these is not a technical measure?

• A. Information Security Management System
• B. Encryption ofinformation
• C. The use of tokens to gain access to information systems
• D. Validation of input and output data in applications

Answer: A

 

NEW QUESTION 30
What is the greatest risk for an organization ifno information security policy has been defined?

• A. If everyone works with the same account, it is impossible to find out who worked on what.
• B. Information security activities are carried out by only a few people.
• C. It is not possible for an organization to implement information security in a consistent manner.
• D. Too many measures areimplemented.

Answer: C

 

NEW QUESTION 31
Midwest Insurance grades the monthly report of all claimed losses per insured as confidential. What is accomplished if all other reports from this insurance office are also assigned the appropriate grading?

• A. Everyone can easily see how sensitive the reports' contents are by consulting the grading label.
• B. The costs for automating are easier to charge to the responsible departments.
• C. A determination can be made as to which report should be printed firstand which ones can wait a little longer.
• D. Reports can be developed more easily and with fewer errors.

Answer: A

 

NEW QUESTION 32
A non-human threat for computer systems is a flood. In which situation is a flood always a relevant threat?

• A. When the organization is located near a river.
• B. When computer systems are kept in a cellar below ground level.
• C. If the riskanalysis has not been carried out.
• D. When the computer systems are not insured.

Answer: B

 

NEW QUESTION 33
......

ISO-IEC-27001-Lead-Implementer Exam Questions and Valid ISO-IEC-27001-Lead-Implementer Dumps PDF: https://www.validtorrent.com/ISO-IEC-27001-Lead-Implementer-valid-exam-torrent.html

ISO-IEC-27001-Lead-Implementer Brain Dump: A Study Guide with Tips & Tricks for passing Exam: https://drive.google.com/open?id=1Dc3lhmRu2NfzG0dEluoT3PtOzAyQo_5w