Which of the following is MOST important in determining whether a disaster recovery test is successful?

• A.Only business data files from offsite storage are used
• B.IT staff fully recovers the processing infrastructure
• C.Critical business processes are duplicated
• D.All systems are restored within recovery time objectives (RTOs)

Comment: *

Name: *

Email: *

Verification: *

An organization is already certified to an international security standard. Which mechanism would BEST help to further align the organization with other data security regulatory requirements as per new business needs?

• A.Key performance indicators (KPIs)
• B.Business impact analysis (BIA)
• C.Gap analysis
• D.Technical vulnerability assessment

Comment: *

Name: *

Email: *

Verification: *

Primary direction on the impact of compliance with new regulatory requirements that may lead to major application system changes should be obtained from the:

• A.corporate internal auditor.
• B.System developers/analysts.
• C.key business process owners.
• D.corporate legal counsel.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST approach for improving information security management processes?

• A.Conduct periodic security audits.
• B.Perform periodic penetration testing.
• C.Define and monitor security metrics.
• D.Survey business units for feedback.

Comment: *

Name: *

Email: *

Verification: *

Which of the following helps to ensure that the appropriate resources are applied in a timely manner after an incident has occurred?

• A.Define incident response teams.
• B.Broadcast an emergency message.
• C.Classify the incident.
• D.Initiate an incident management log.

Comment: *

Name: *

Email: *

Verification: *