An information security manager believes that a network file server was compromised by a hacker. Which of the following should be the FIRST action taken?

• A.Unsure that critical data on the server are backed up.
• B.Shut down the compromised server.
• C.Initiate the incident response process.
• D.Shut down the network.

Comment: *

Name: *

Email: *

Verification: *

Why is "slack space" of value to an information security manager as pan of an incident investigation?

• A.Hidden data may be stored there
• B.The slack space contains login information
• C.Slack space is encrypted
• D.It provides flexible space for the investigation

Comment: *

Name: *

Email: *

Verification: *

Which of the following provides the BEST evidence that a newly implemented security awareness program has been effective?

• A.Employees from each department have completed the required training.
• B.There has been an increase in the number of phishing attempts reported.
• C.There have been no reported successful phishing attempts since the training started.
• D.Senior management supports funding for ongoing awareness training.

Comment: *

Name: *

Email: *

Verification: *

Which of the following should be of GREATEST concern to a newly hired information security manager regarding security compliance?

• A.Lack of security audits
• B.Lack of standard operating procedures
• C.Lack of executive support
• D.Lack of risk assessments

Comment: *

Name: *

Email: *

Verification: *

Which of the following messages would be MOST effective in obtaining senior management's commitment to information security management?

• A.Effective security eliminates risk to the business.
• B.Adopt a recognized framework with metrics.
• C.Security is a business product and not a process.
• D.Security supports and protects the business.

Comment: *

Name: *

Email: *

Verification: *