Reviewing which of the following would BEST ensure that security controls are effective?

• A.Risk assessment policies
• B.Return on security investment
• C.Security metrics
• D.User access rights

Comment: *

Name: *

Email: *

Verification: *

Effective IT governance is BEST ensured by:

• A.utilizing a bottom-up approach.
• B.management by the IT department.
• C.referring the matter to the organization's legal department.
• D.utilizing a top-down approach.

Comment: *

Name: *

Email: *

Verification: *

What is the BEST way to reduce the impact of a successful ransomware attack?

• A.Perform frequent backups and store them offline.
• B.Purchase or renew cyber insurance policies.
• C.Include provisions to pay ransoms ih the information security budget.
• D.Monitor the network and provide alerts on intrusions.

Comment: *

Name: *

Email: *

Verification: *

An information security manager is recommending an investment in a new security initiative to address recently published threats. Which of the following would be important to include in the business case?

• A.Availability of unused funds in the security budget
• B.Alignment of the new initiative with the approved business strategy
• C.Threat information from reputable sources
• D.Business impact if threats materialize

Comment: *

Name: *

Email: *

Verification: *

An organization wants to ensure its confidential data is isolated in a multi-tenanted environment at a well-known cloud service provider. Which of the following is the BEST way to ensure the data is adequately protected?

• A.Obtain documentation of the encryption management practices.
• B.Ensure an audit of the provider is conducted to identify control gaps.
• C.Verify the provider follows a cloud service framework standard.
• D.Review the provider's information security policies and procedures.

Comment: *

Name: *

Email: *

Verification: *