The PRIMARY goal of a security infrastructure design is the:

• A.reduction of security incidents.
• B.elimination of risk exposures.
• C.optimization of IT resources
• D.protection of corporate assets

Comment: *

Name: *

Email: *

Verification: *

An organization plans to leverage popular social network platforms to promote its products and services. Which of the following is the BEST course of action for the information security manager to support this initiative?

• A.Assess the security risk associated with the use of social networks
• B.Establish processes to publish content on social networks
• C.Conduct vulnerability assessments on social network platforms
• D.Develop security controls for the use of social networks

Comment: *

Name: *

Email: *

Verification: *

When configuring a biometric access control system that protects a high-security data center, the system's sensitivity level should be set:

• A.to u higher false reject rate (FRR).
• B.to a lower crossover error rate.
• C.to a higher false acceptance rate (FAR).
• D.exactly to the crossover error rate.

Comment: *

Name: *

Email: *

Verification: *

Penetration testing is MOST appropriate when a:

• A.new system is about to go live.
• B.security incident has occurred.
• C.security policy is being developed
• D.new system is being designed.

Comment: *

Name: *

Email: *

Verification: *

When developing a classification method for incidents, the categories MUST be:

• A.regularly reviewed.
• B.specific to situations.
• C.assigned to incident handlers.
• D.quantitatively defined.

Comment: *

Name: *

Email: *

Verification: *