Which of the following has the MOST influence on the inherent risk of an information asset?

• A.Risk tolerance
• B.Net present value (NPV)
• C.Return on investment (ROI)
• D.Business criticality

Comment: *

Name: *

Email: *

Verification: *

When using a newly implemented security information and event management (SIEM) infrastructure, which of the following should be considered FIRST?

• A.Tuning
• B.Encryption
• C.Retention
• D.Report distribution

Comment: *

Name: *

Email: *

Verification: *

Which of the following, using public key cryptography, ensures authentication, confidentiality and nonrepudiation of a message?

• A.Encrypting first by receiver's private key and second by sender's public key
• B.Encrypting first by sender's private key and second by receiver's public key
• C.Encrypting first by sender's private key and second decrypting by sender's public key
• D.Encrypting first by sender's public key and second by receiver's private key

Comment: *

Name: *

Email: *

Verification: *

An organization is concerned with the risk of information leakage caused by incorrect use of personally owned smart devices by employees. What is the BEST way for the information security manager to mitigate the associated risk?

• A.Require employees to sign a nondisclosure agreement
• B.implement a multi-factor authentication solution.
• C.Implement a mobile device management solution.
• D.Document a bong-your-own-device (BYODJ policy.

Comment: *

Name: *

Email: *

Verification: *

Which of the following environments represents the GREATEST risk to organizational security?

• A.Locally managed file server
• B.Enterprise data warehouse
• C.Load-balanced, web server cluster
• D.Centrally managed data switch

Comment: *

Name: *

Email: *

Verification: *