Which of the following is the MOST important factor to consider when establishing a severity hierarchy for information security incidents?

• A.Residual risk
• B.Regulatory compliance
• C.Management support
• D.Business impact

Comment: *

Name: *

Email: *

Verification: *

Which of the following BEST provides message integrity, sender identity authentication and nonrepudiation?

• A.Symmetric cryptography
• B.Public key infrastructure (PKI)
• C.Message hashing
• D.Message authentication code

Comment: *

Name: *

Email: *

Verification: *

Which of the following BEST contributes to the development of a security governance framework that supports the maturity model concept?

• A.Continuous analysis, monitoring and feedback
• B.Continuous monitoring of the return on security investment (ROSD
• C.Continuous risk reduction
• D.Key risk indicator (KRD setup to security management processes

Comment: *

Name: *

Email: *

Verification: *

An organization wants to ensure its confidential data is isolated in a multi-tenanted environment at a well- known cloud service provider. Which of the following is the BEST way to ensure the data is adequately protected?

• A.Obtain documentation of the encryption management practices.
• B.Verify the provider follows a cloud service framework standard.
• C.Ensure an audit of the provider is conducted to identify control gaps.
• D.Review the provider's information security policies and procedures.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the PRIMARY prerequisite to implementing data classification within an organization?

• A.Defining job roles
• B.Performing a risk assessment
• C.Identifying data owners
• D.Establishing data retention policies

Comment: *

Name: *

Email: *

Verification: *