A company has purchased a rival organization and is looking to integrate security strategies. Which of the following is the GREATEST issue to consider?

• A.The organizations have different risk appetites
• B.Differing security technologies
• C.Differing security skills within the organizations
• D.Confidential information could be leaked

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST way to align security and business strategies?

• A.Develop a balanced scorecard for security.
• B.Integrate information security governance into corporate governance.
• C.Establish key performance indicators (KPIs) for business through security processes.
• D.Include security risk as part of corporate risk management.

Comment: *

Name: *

Email: *

Verification: *

Which of the following will BEST protect an organization from internal security attacks?

• A.Static IP addressing
• B.Internal address translation
• C.Prospective employee background checks
• D.Employee awareness certification program

Comment: *

Name: *

Email: *

Verification: *

When defining responsibilities with a cloud computing vendor, which of the following should be regarded as a shared responsibility between user and provider?

• A.Data ownership
• B.Access log review
• C.Application logging
• D.Incident response

Comment: *

Name: *

Email: *

Verification: *

An information security manager is asked to provide evidence that the organization is fulfilling its legal obligation to protect personally identifiable information (PII).
Which of the following would be

• A.Written policies and standards
• B.Risk assessments of privacy-related applications
• C.Privacy awareness training
• D.Metrics related to program effectiveness

Comment: *

Name: *

Email: *

Verification: *