In business critical applications, where shared access to elevated privileges by a small group is necessary, the BEST approach to implement adequate segregation of duties is to:

• A.ensure access to individual functions can be granted to individual users only.
• B.implement role-based access control in the application.
• C.enforce manual procedures ensuring separation of conflicting duties.
• D.create service accounts that can only be used by authorized team members.

Comment: *

Name: *

Email: *

Verification: *

Logging is an example of which type of defense against systems compromise?

• A.Containment
• B.Detection
• C.Reaction
• D.Recovery

Comment: *

Name: *

Email: *

Verification: *

Which of the following is a PRIMARY responsibility of the information security goxernance function?

• A.Administering information security awareness training
• B.Defining security strategies to support organizational programs
• C.Ensuring adequate support for solutions using emerging technologies
• D.Advising senior management on optimal levels of risk appetite and tolerance

Comment: *

Name: *

Email: *

Verification: *

Which of the following will BEST protect confidential data when connecting large wireless networks to an existing wired-network infrastructure?

• A.Strong passwords
• B.Virtual private network (VPN)
• C.Firewall
• D.Mandatory access control (MAC) address filtering

Comment: *

Name: *

Email: *

Verification: *

Without prior approval, a training department enrolled the company in a free cloud-based collaboration site and invited employees to use it. Which of the following is the BEST response of the information security manager?

• A.Conduct a risk assessment and develop an impact analysis.
• B.Update the risk register and review the information security strategy.
• C.Report the activity to senior management.
• D.Allow temporary use of the site and monitor for data leakage.

Comment: *

Name: *

Email: *

Verification: *