The MOST appropriate time to conduct a disaster recovery test would be after:

• A.major business processes have been redesigned.
• B.the security risk profile has been reviewed
• C.noncompliance incidents have been filed.
• D.the business continuity plan (BCP) has been updated.

Comment: *

Name: *

Email: *

Verification: *

The MAIN benefit of implementing a data loss prevention (DLP) solution is to:

• A.enhance the organization's antivirus controls.
• B.complement the organization's detective controls.
• C.reduce the need for a security awareness program.
• D.eliminate the risk of data loss.

Comment: *

Name: *

Email: *

Verification: *

In an organization with a rapidly changing environment, business management has accepted an information security risk. It is MOST important for the information security manager to ensure:

• A.the acceptance is aligned with business strategy.
• B.compliance with the risk acceptance framework.
• C.the rationale for acceptance is periodically reviewed.
• D.change activities are documented.

Comment: *

Name: *

Email: *

Verification: *

When properly implemented, secure transmission protocols protect transactions:

• A.in the server's database.
• B.on the client desktop.
• C.from eavesdropping.
• D.from denial of service (DoS) attacks.

Comment: *

Name: *

Email: *

Verification: *

Recovery time objectives (RTOs) are BEST determined by:

• A.business managers
• B.business continuity officers
• C.executive management
• D.database administrators (DBAs).

Comment: *

Name: *

Email: *

Verification: *