An organization was forced to pay a ransom to regain access to a critical database that had been encrypted in a ransomware attack. What would have BEST prevented The need to make this ransom payment?

• A.Training employees on ransomware
• B.Ensuring all changes are approved
• C.Verifying the firewall is configured properly
• D.Storing backups on a segregated network.

Comment: *

Name: *

Email: *

Verification: *

Which of the following roles is BEST able to influence the security culture within an organization?

• A.Chief information security officer (CISO)
• B.Chief information officer (CIO)
• C.Chief executive officer (CEO)
• D.Chief operating officer (COO)

Comment: *

Name: *

Email: *

Verification: *

An organization outsources its payroll processing. Which of the following would be the BEST key risk indicator for monitoring the information security of the service provider?

• A.Percentage of application up-time
• B.Number of manual payroll adjustments
• C.Number of critical security patches
• D.Number of security incidents by severity

Comment: *

Name: *

Email: *

Verification: *

Who is responsible for ensuring that information is categorized and that specific protective measures are taken?

• A.The security officer
• B.Senior management
• C.The end user
• D.The custodian

Comment: *

Name: *

Email: *

Verification: *

A common drawback of email software packages that provide native encryption of messages is that the encryption:

• A.cannot encrypt attachments
• B.cannot interoperate across product domains.
• C.has an insufficient key length.
• D.has no key-recovery mechanism.

Comment: *

Name: *

Email: *

Verification: *