Which of the following compliance legal requirements are covered by the ISO/IEC 27000 series?
1. Intellectual Property Rights.
2. Protection of Organisational Records
3. Forensic recovery of data.
4. Data Deduplication.
5. Data Protection & Privacy.

• A.1, 2 and 5
• B.1, 2 and 3
• C.2, 3 and 4
• D.3, 4 and 5

Comment: *

Name: *

Email: *

Verification: *

When considering the disposal of confidential data, equipment and storage devices, what social engineering technique SHOULD always be taken into consideration?

• A.Spear Phishing.
• B.Shoulder Surfing.
• C.Dumpster Diving.
• D.Tailgating.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is a framework and methodology for Enterprise Security Architecture and Service Management?

• A.TOGAF
• B.OWASP.
• C.SABSA
• D.PCI DSS.

Comment: *

Name: *

Email: *

Verification: *

In order to better improve the security culture within an organisation with a top down approach, which of the following actions at board level is the MOST effective?

• A.Developing a security awareness e-learning course.
• B.Purchasing all senior executives personal firewalls.
• C.Adopting an organisation wide "clear desk" policy.
• D.Appointment of a Chief Information Security Officer (CISO).

Comment: *

Name: *

Email: *

Verification: *

What term is used to describe the act of checking out a privileged account password in a manner that bypasses normal access controls procedures during a critical emergency situation?

• A.Privileged User Gateway
• B.Multi Factor Authentication.
• C.Break Glass
• D.Enterprise Security Management

Comment: *

Name: *

Email: *

Verification: *