Adding security requirements late in the software development life cycle would MOST likely result in:

• A.cost savings
• B.clearer understanding of requirements
• C.operational efficiency
• D.compensating controls

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the PRIMARY reason for an IS auditor to map out the narrative of a business process?

• A.To verify the business process is as described in the engagement letter
• B.To identify the resources required to perform the audit
• C.To ensure alignment with organizational objectives
• D.To gain insight into potential risks

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST course of action for an information security manager to align security
and business goals?

• A.Reviewing the business strategy
• B.Actively engaging with stakeholders
• C.Conducting a business impact analysis
• D.Defining key performance indicators

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST important action in recovering from a cyberattack?

• A.Creation of an incident response team
• B.Use of cyber forensic investigators
• C.Execution of a business continuity plan
• D.Filling an insurance claim

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST likely to reduce the effectiveness of a signature-based intrusion detection system (IDS)?

• A.The activities being monitored deviate from what is considered normal.
• B.The environment is complex.
• C.The pattern of normal behavior changes quickly and dramatically.
• D.The information regarding monitored activities becomes state.

Comment: *

Name: *

Email: *

Verification: *