Which of the following is a technical security measure?

• A.Safe storage of backups
• B.User role profiles.
• C.Encryption
• D.Security policy

Comment: *

Name: *

Email: *

Verification: *

Integrity of data means

• A.Accuracy and completeness of the data
• B.Data should be viewable at all times
• C.Data should be accessed by only the right people

Comment: *

Name: *

Email: *

Verification: *

What is a repressive measure in case of a fire?

• A.Putting out a fire after it has been detected by a fire detector
• B.Taking out a fire insurance
• C.Repairing damage caused by the fire

Comment: *

Name: *

Email: *

Verification: *

Auditors need to communicate effectively with auditees. Therefore, their personal behaviour is a key characteristic needed to ensure a successful audit. Below there are the characteristics and a brief related description. Match the characteristics to the descriptions.

Correct Answer:

Explanation:
The possible matches of the characteristics to the descriptions are:
Tenacious: Persistent and focused on objectives
Ethical: Fair, truthful, sincere, honest, discreet
Diplomatic: Tactful in dealing with individuals
Observant: Actively observing surroundings/activities
Perceptive: Aware of and able to understand situations
Open to improvement: Willing to learn from situations
Actively observing surroundings/activities = Observant
Fair, truthful, sincere, honest, discreet = Ethical
Persistent and focused on objectives = Tenacious
Willing to learn from situations = Open to improvement
Tactful in dealing with individuals = Diplomatic
Aware of and able to understand situations = Perceptive
These are the auditor's characteristics and their descriptions as defined by ISO 19011:2022, Clause 7.2.21. The auditor's personal behaviour is essential for building trust and confidence with the auditee and for ensuring the credibility and effectiveness of the audit12. References: 1: ISO 19011:2022, Guidelines for auditing management systems, Clause 7.2.2 \n2: PECB Certified ISO/IEC 27001 Lead Auditor Exam Preparation Guide, Domain 3: Fundamental audit concepts and principles

Comment: *

Name: *

Email: *

Verification: *

What is the standard definition of ISMS?

• A.A systematic approach for establishing, implementing, operating,monitoring, reviewing, maintaining and improving an organization's information security to achieve business objectives.
• B.Is an information security systematic approach to achieve business objectives for implementation, establishing, reviewing,operating and maintaining organization's reputation.
• C.A project-based approach to achieve business objectives for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an organization's information security
• D.A company wide business objectives to achieve information security awareness for establishing, implementing, operating, monitoring, reviewing, maintaining and improving

Comment: *

Name: *

Email: *

Verification: *