Which of the following types of information would the information security manager expect to have the LOWEST level of security protection in a large, multinational enterprise?

• A.Strategic business plan
• B.Upcoming financial results
• C.Customer personal information
• D.Previous financial results

Comment: *

Name: *

Email: *

Verification: *

Inadvertent disclosure of internal business information on social media is BEST minimized by which of the following?

• A.Developing social media guidelines
• B.Educating users on social media risks
• C.Limiting access to social media sites
• D.Implementing data loss prevention (DLP) solutions

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important for a successful information security program?

• A.Adequate training on emerging security technologies
• B.Open communication with key process owners
• C.Adequate policies, standards and procedures
• D.Executive management commitment

Comment: *

Name: *

Email: *

Verification: *

Which of the following defines the triggers within a business continuity plan (BCP)?

• A.Disaster recovery plan (DRP)
• B.Information security policy
• C.Gap analysis
• D.Needs of the organization

Comment: *

Name: *

Email: *

Verification: *

The MOST important reason for an information security manager to be involved in the change management process is to ensure that:

• A.security controls drive technology changes.
• B.security controls are updated regularly.
• C.risks have been evaluated.
• D.potential vulnerabilities are identified.

Comment: *

Name: *

Email: *

Verification: *