Which of the following BEST reduces the likelihood of leakage of private information via email?

• A.Email encryption
• B.User awareness training
• C.Strong user authentication protocols
• D.Prohibition on the personal use of email

Comment: *

Name: *

Email: *

Verification: *

The MOST appropriate owner of customer data stored in a central database, used only by an organization's sales department, would be the:

• A.sales department.
• B.database administrator.
• C.chief information officer (CIO).
• D.head of the sales department.

Comment: *

Name: *

Email: *

Verification: *

When personal information is transmitted across networks, there MUST be adequate controls over:

• A.change management.
• B.privacy protection.
• C.consent to data transfer.
• D.encryption devices.

Comment: *

Name: *

Email: *

Verification: *

To determine the selection of controls required to meet business objectives, an information security manager should:

• A.prioritize the use of role-based access controls.
• B.focus on key controls.
• C.restrict controls to only critical applications.
• D.focus on automated controls.

Comment: *

Name: *

Email: *

Verification: *

Senior management has decided to accept a significant risk within a security remediation plan.
Which of the following is the information security manager's BEST course of action?

• A.Remediate the risk and document the rationale.
• B.Update the risk register with the risk acceptance.
• C.Communicate the remediation plan to the board of directors.
• D.Report the risk acceptance to regulatory agencies.

Comment: *

Name: *

Email: *

Verification: *