Which of the following is the BEST tool to monitor the effectiveness of information security governance?

• A.Key performance indicators (KPIs)
• B.Balanced scorecard
• C.Business impact analysis (BIA)
• D.Risk profile

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST way to reduce the risk associated with a bring your own device (BYOD) program?

• A.Provide employee training on secure mobile device practices
• B.Implement a mobile device management (MDM) solution.
• C.Require employees to install an effective anti-malware app.
• D.Implement a mobile device policy and standard.

Comment: *

Name: *

Email: *

Verification: *

An information security manager learns that IT personnel are not adhering to the information security policy because it creates process inefficiencies. What should the information security manager do FIRST?

• A.Propose that IT update information security policies and procedures.
• B.Request that internal audit conduct a review of the policy development process,
• C.Determine the risk related to noncompliance with the policy.
• D.Conduct user awareness training within the IT function.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the FIRST step to establishing an effective information security program?

• A.Assign accountability.
• B.Create a business case.
• C.Perform a business impact analysis (BIA).
• D.Conduct a compliance review.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important to include in an incident response plan to ensure incidents are responded to by the appropriate individuals?

• A.Skills required for the incident response team
• B.A list of external resources to assist with incidents
• C.Service level agreements (SLAs)
• D.A detailed incident notification process

Comment: *

Name: *

Email: *

Verification: *