A test plan to validate the security controls of a new system should be developed during which phase of the project?

• A.Testing
• B.Initiation
• C.Design
• D.Development

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST important security consideration when planning to use a cloud service provider in a different country?

• A.Ability to meet business resiliency requirements
• B.Ability to enforce contractual obligations
• C.Ability to meet service level agreements (SLAs)
• D.Ability to logically separate client data

Comment: *

Name: *

Email: *

Verification: *

What would be the MAIN purpose of an immediate post-incident review after a comprehensive test of the incident response plan?

• A.To reduce costs associated with incident response efforts
• B.To revalidate incident response plan activities
• C.To document weaknesses for the next incident response plan test
• D.To determine ways to improve incident response plan processes

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST important consideration for an organization interacting with the media during a disaster?

• A.Communicating specially drafted messages by an authorized person
• B.Refusing to comment until recovery
• C.Referring the media to the authorities
• D.Reporting the losses and recovery strategy to the media

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST helpful in determining the criticality of an organization's business functions?

• A.Disaster recovery plan (DRP)
• B.Business impact analysis (BIA)
• C.Business continuity plan (BCP)
• D.Security assessment report (SAR)

Comment: *

Name: *

Email: *

Verification: *