For an organization that provides web-based services, which of the following security events would MOST likely initiate an incident response plan and be escalated to management?

• A.Multiple failed login attempts on an employee's workstation
• B.Several port scans of the web server
• C.Suspicious network traffic originating from the demilitarized zone (DMZ)
• D.Anti-malware alerts on several employees' workstations

Comment: *

Name: *

Email: *

Verification: *

Which of the following BEST facilitates the effective execution of an incident response plan?

• A.The plan is based on industry best practice.
• B.The plan is based on risk assessment results.
• C.The response team is trained on the plan.
• D.The incident response plan aligns with the IT disaster recovery plan.

Comment: *

Name: *

Email: *

Verification: *

A technical vulnerability assessment on a personnel information management server should be performed when:

• A.the data owner leaves the organization unexpectedly.
• B.changes are made to the system configuration.
• C.the number of unauthorized access attempts increases.
• D.an unexpected server outage has occurred.

Comment: *

Name: *

Email: *

Verification: *

Which of the following will result in the MOST accurate controls assessment?

• A.Mature change management processes
• B.Senior management support
• C.Well-defined security policies
• D.Unannounced testing

Comment: *

Name: *

Email: *

Verification: *

For virtual private network (VPN) access to the corporate network, the information security manager is requiring strong authentication. Which of the following is the strongest method to ensure that logging onto the network is secure?

• A.Biometrics
• B.Symmetric encryption keys
• C.Secure Sockets Layer (SSL)-based authentication
• D.Two-factor authentication

Comment: *

Name: *

Email: *

Verification: *