Which of the following is the MOST important item to consider when evaluating products to monitor security across the enterprise?

• A.Ease of installation
• B.Product documentation
• C.Available support
• D.System overhead

Comment: *

Name: *

Email: *

Verification: *

When developing a new application, which of the following is the BEST approach to ensure compliance with security requirements?

• A.Provide security training for developers.
• B.Prepare detailed acceptance criteria.
• C.Adhere to change management processes.
• D.Perform a security gap analysis.

Comment: *

Name: *

Email: *

Verification: *

Which of the following should be reviewed to obtain a structured overview of relevant information about an information security investment?

• A.Security balanced scorecard
• B.Information security strategy
• C.Business case
• D.Quantitative risk analysis report

Comment: *

Name: *

Email: *

Verification: *

Embedding security responsibilities into job descriptions is important PRIMARILY because it:

• A.simplifies development of the security awareness program.
• B.supports access management.
• C.aligns security to the human resources (HR) function.
• D.strengthens employee accountability.

Comment: *

Name: *

Email: *

Verification: *

An organization is concerned with the risk of information leakage caused by incorrect use of personally owned smart devices by employees. What is the BEST way for the information security manager to mitigate the associated risk?

• A.Require employees to sign a nondisclosure agreement (NDA).
• B.Implement a mobile device management (MDM) solution.
• C.Document a bring-your-own-device (BYOD) policy.
• D.Implement a multi-factor authentication (MFA) solution.

Comment: *

Name: *

Email: *

Verification: *