Following a successful and well-publicized hacking incident, an organization has plans to improve application security.
Which of the following is a security project risk?

• A.Critical evidence may be lost.
• B.The reputation of the organization may be damaged.
• C.A trapdoor may have been installed in the application.
• D.Resources may not be available to support the implementation.

Comment: *

Name: *

Email: *

Verification: *

Which of the following should be the important consideration of business continuity management?

• A.Ensuring the reliability of backup data
• B.Securing critical information assets
• C.Ensuring human safety
• D.Identifying critical business processes

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST relevant information to include in an information security risk report to facilitate senior management's understanding of impact to the organization?

• A.Status of identified key security risks
• B.Detailed assessment of the security risk profile
• C.Findings from recent penetration testing
• D.Risks inherent in new security technologies

Comment: *

Name: *

Email: *

Verification: *

The PRIMARY goal of a security infrastructure design is the:

• A.protection of corporate assets
• B.reduction of security incidents.
• C.optimization of IT resources
• D.elimination of risk exposures.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the BEST way for an Information security manager to gain wider acceptance for an information security policy that is perceived as restrictive?

• A.Communicate the policy across the organization using various media.
• B.Review the policy with the information security steering committee.
• C.Establish sanctions for failure to follow the policy
• D.Remove the restrictive requirements from the policy.

Comment: *

Name: *

Email: *

Verification: *