Which of the following is the PRIMARY objective of incident triage?

• A.Coordination of communications
• B.Mitigation of vulnerabilities
• C.Categorization of events
• D.Containment of threats

Comment: *

Name: *

Email: *

Verification: *

An organization's HR department requires that employee account privileges be removed from all corporate IT systems within three days of termination to comply with a government regulation However, the systems all have different user directories, and it currently takes up to four weeks to remove the privileges Which of the following would BEST enable regulatory compliance?

• A.Multi-factor authentication (MFA) system
• B.Identity and access management (IAM) system
• C.Privileged access management (PAM) system
• D.Governance, risk, and compliance (GRC) system

Comment: *

Name: *

Email: *

Verification: *

The MOST important reason for having an information security manager serve on the change management committee is to:

• A.ensure changes are properly documented.
• B.identify changes to the information security policy.
• C.advise on change-related risk.
• D.ensure that changes are tested.

Comment: *

Name: *

Email: *

Verification: *

Which of the following BEST enables an organization to transform its culture to support information security?

• A.Periodic compliance audits
• B.Strong management support
• C.Robust technical security controls
• D.Incentives for security incident reporting

Comment: *

Name: *

Email: *

Verification: *

Which of the following would be the BEST way for an information security manager to improve the effectiveness of an organization's information security program?

• A.Collaborate with business and IT functions in determining controls.
• B.Obtain assistance from IT to implement automated security cantrals.
• C.Focus on addressing conflicts between security and performance.
• D.Include information security requirements in the change control process.

Comment: *

Name: *

Email: *

Verification: *