Which of the following would be MOST useful to help senior management understand the status of information security compliance?

• A.Business impact analysis (BIA) results
• B.Risk assessment results
• C.Key performance indicators (KPIs)
• D.Industry benchmarks

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important in order to obtain senior leadership support when presenting an information security strategy?

• A.The strategy aligns with management's acceptable level of risk.
• B.The strategy addresses ineffective information security controls.
• C.The strategy aligns with industry benchmarks and standards.
• D.The strategy addresses organizational maturity and the threat environment.

Comment: *

Name: *

Email: *

Verification: *

An information security program should focus on:

• A.best practices also in place at peer companies.
• B.solutions codified in international standards.
• C.key controls identified in risk assessments.
• D.continued process improvement.

Comment: *

Name: *

Email: *

Verification: *

It is MOST important tot an information security manager to ensure that security risk assessments are performed:

• A.consistently throughout the enterprise.
• B.as part of the security business case
• C.In response to the threat landscape,
• D.during a root cause analysis

Comment: *

Name: *

Email: *

Verification: *

Which of the following security mechanisms is MOST effective in protecting classified data that have been encrypted to prevent disclosure and transmission outside the organization's network?

• A.Configuration of firewalls
• B.Strength of encryption algorithms
• C.Authentication within application
• D.Safeguards over keys

Comment: *

Name: *

Email: *

Verification: *