Free EC-COUNCIL 512-50 Exam Dumps Questions & Answers

You are the CISO of a commercial social media organization. The leadership wants to rapidly create new methods of sharing customer data through creative linkages with mobile devices. You have voiced concern about privacy regulations but the velocity of the business is given priority. Which of the following BEST describes this organization?

• A.  Risk conditional
• B.  Risk averse
• C.  Risk minimal
• D.  Risk tolerant

The purpose of NIST SP 800-53 as part of the NIST System Certification and Accreditation Project is to establish a set of standardized, minimum security controls for IT systems addressing low, moderate, and high levels of concern for

• A.  Integrity and Availability
• B.  International Compliance
• C.  Assurance, Compliance and Availability
• D.  Confidentiality, Integrity and Availability

Your company has a "no right to privacy" notice on all logon screens for your information systems and users sign an Acceptable Use Policy informing them of this condition. A peer group member and friend comes to you and requests access to one of her employee's email account. What should you do? (choose the BEST answer):

• A.  Assist her with the request, but only after her supervisor signs off on the action.
• B.  Reset the employee's password and give it to the supervisor.
• C.  Grant her access, the employee has been adequately warned through the AUP.
• D.  Deny the request citing national privacy laws.

Which of the following is used to lure attackers into false environments so they can be monitored, contained, or blocked from reaching critical systems?

• A.  Shadow applications.
• B.  Vulnerability management.
• C.  Deception technology.
• D.  Segmentation controls.

You have implemented a new security control. Which of the following risk strategy options have you engaged in?

• A.  Risk Avoidance
• B.  Risk Acceptance
• C.  Risk Mitigation
• D.  Risk Transfer