Which of the following is the GREATEST value provided by a security information and event management (SIEM) system?

• A.Maintaining a repository base of security policies
• B.Measuring impact of exploits on business processes
• C.Facilitating the monitoring of risk occurrences
• D.Redirecting event logs to an alternate location for business continuity plan

Comment: *

Name: *

Email: *

Verification: *

Which of the following processes BEST supports the evaluation of incident response effectiveness?

• A.Chain of custody
• B.Incident logging
• C.Root cause analysis
• D.Post-incident review

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST technical defense against unauthorized access to a corporate network through social engineering?

• A.Requiring challenge/response information
• B.Requiring multi factor authentication
• C.Enforcing frequent password changes
• D.Enforcing complex password formats

Comment: *

Name: *

Email: *

Verification: *

Reviewing which of the following would be MOST helpful when a new information security manager is developing an information security strategy for a non-regulated organization?

• A.Strategies of other non-regulated companies
• B.Risk assessment results
• C.Management's business goals and objectives
• D.Industry best practices and control recommendations

Comment: *

Name: *

Email: *

Verification: *

Which of the following MUST happen immediately following the identification of a malware incident?

• A.Preparation
• B.Containment
• C.Eradication
• D.Recovery

Comment: *

Name: *

Email: *

Verification: *