
Free 2022 ISO 27001 ISO-IEC-27001-Lead-Auditor dumps are available on Google Drive shared by TestPassed
Welcome to download the newest TestPassed ISO-IEC-27001-Lead-Auditor PDF dumps: https://www.testpassed.com/ISO-IEC-27001-Lead-Auditor-still-valid-exam.html ( 99 Q&As)
NEW QUESTION 46
The computer room is protected by a pass reader. Only the System Management department has a pass.
What type of security measure is this?
- A. a repressive security measure
- B. a physical security measure
- C. a logical security measure
- D. a corrective security measure
Answer: B
NEW QUESTION 47
Why do we need to test a disaster recovery plan regularly, and keep it up to date?
- A. Otherwise the measures taken and the incident procedures planned may not be adequate
- B. Otherwise remotely stored backups may no longer be available to the security team
- C. Otherwise it is no longer up to date with the registration of daily occurring faults
Answer: A
NEW QUESTION 48
What is a repressive measure in case of a fire?
- A. Taking out a fire insurance
- B. Putting out a fire after it has been detected by a fire detector
- C. Repairing damage caused by the fire
Answer: B
NEW QUESTION 49
After a fire has occurred, what repressive measure can be taken?
- A. Repairing all systems after the fire
- B. Buying in a proper fire insurance policy
- C. Extinguishing the fire after the fire alarm sounds
Answer: C
NEW QUESTION 50
In acceptable use of Information Assets, which is the best practice?
- A. Accessing phone or network transmissions, including wireless or wifi transmissions
- B. Access to information and communication systems are provided for business purpose only
- C. Playing any computer games during office hours
- D. Interfering with or denying service to any user other than the employee's host
Answer: B
NEW QUESTION 51
What is the difference between a restricted and confidential document?
- A. Restricted - to be shared among named individuals
Confidential - to be shared among an authorized group - B. Restricted - to be shared among named individuals
Confidential - to be shared across the organization only - C. Restricted - to be shared among named individuals
Confidential - to be shared with friends and family - D. Restricted - to be shared among an authorized group
Confidential - to be shared among named individuals
Answer: A
NEW QUESTION 52
What is the goal of classification of information?
- A. To create a manual about how to handle mobile devices
- B. Applying labels making the information easier to recognize
- C. Structuring information according to its sensitivity
Answer: C
NEW QUESTION 53
Stages of Information
- A. creation, use, disposition, maintenance, evolution
- B. creation, distribution, maintenance, disposition, use
- C. creation, distribution, use, maintenance, disposition
- D. creation, evolution, maintenance, use, disposition
Answer: C
NEW QUESTION 54
What is a definition of compliance?
- A. Laws, considered collectively or the process of making or enacting laws
- B. A rule or directive made and maintained by an authority.
- C. The state or fact of according with or meeting rules or standards
- D. An official or authoritative instruction
Answer: C
NEW QUESTION 55
Which of the following does a lack of adequate security controls represent?
- A. Threat
- B. Impact
- C. Asset
- D. Vulnerability
Answer: D
NEW QUESTION 56
Access Control System, CCTV and security guards are form of:
- A. Access Control
- B. Physical Security
- C. Environment Security
- D. Compliance
Answer: B
NEW QUESTION 57
You see a blue color sticker on certain physical assets. What does this signify?
- A. The asset is high critical and its failure will affect a group/s/project's work in the organization
- B. The asset with blue stickers should be kept air conditioned at all times
- C. The asset is critical and the impact is restricted to an employee only
- D. The asset is very high critical and its failure affects the entire organization
Answer: A
NEW QUESTION 58
After a devastating office fire, all staff are moved to other branches of the company. At what moment in the incident management process is this measure effectuated?
- A. Between classification and escalation
- B. Between detection and classification
- C. Between incident and damage
- D. Between recovery and normal operations
Answer: C
NEW QUESTION 59
An employee caught with offense of abusing the internet, such as P2P file sharing or video/audio streaming, will not receive a warning for committing such act but will directly receive an IR.
- A. True
- B. False
Answer: A
NEW QUESTION 60
Information or data that are classified as ______ do not require labeling.
- A. Highly Confidential
- B. Internal
- C. Public
- D. Confidential
Answer: C
NEW QUESTION 61
You have a hard copy of a customer design document that you want to dispose off. What would you do
- A. Shred it using a shredder
- B. Be environment friendly and reuse it for writing
- C. Give it to the office boy to reuse it for other purposes
- D. Throw it in any dustbin
Answer: A
NEW QUESTION 62
Backup media is kept in the same secure area as the servers. What risk may the organisation be exposed to?
- A. Unauthorised persons will have access to both the servers and backups
- B. After a fire, the information systems cannot be restored
- C. After a server crash, it will take extra time to bring it back up again
- D. Responsibility for the backups is not defined well
Answer: B
NEW QUESTION 63
Who are allowed to access highly confidential files?
- A. Employees with a business need-to-know
- B. Non-employees designated with approved access and have signed NDA
- C. Employees with signed NDA have a business need-to-know
- D. Contractors with a business need-to-know
Answer: C
NEW QUESTION 64
A hacker gains access to a webserver and can view a file on the server containing credit card numbers.
Which of the Confidentiality, Integrity, Availability (CIA) principles of the credit card file are violated?
- A. Confidentiality
- B. Compliance
- C. Integrity
- D. Availability
Answer: A
NEW QUESTION 65
Which threat could occur if no physical measures are taken?
- A. Confidential prints being left on the printer
- B. Hackers entering the corporate network
- C. Unauthorised persons viewing sensitive files
- D. A server shutting down because of overheating
Answer: D
NEW QUESTION 66
......
Tested Material Used To ISO-IEC-27001-Lead-Auditor: https://www.testpassed.com/ISO-IEC-27001-Lead-Auditor-still-valid-exam.html
Following are some new ISO-IEC-27001-Lead-Auditor Real Exam Questions!: https://drive.google.com/open?id=1u0mPPO4gjQy6WUFnDLtNpgDfejlS36fT