Free 512-50 Practice Questions & AI Tutor

QUESTION: 56 Exam Topic: 1, Governance, Risk, Compliance

A security manager has created a risk program.
Which of the following is a critical part of ensuring the program is successful?

Providing a risk program governance structure
Ensuring developers include risk control comments in code
Creating risk assessment templates based on specific threats
Allowing for the acceptance of risk for regulatory compliance requirements

Answer(s): A

Show Answer Next Question

QUESTION: 57 Exam Topic: 1, Governance, Risk, Compliance

Which of the following international standards can be BEST used to define a Risk Management process in an organization?

National Institute for Standards and Technology 800-50 (NIST 800-50)
International Organization for Standardizations 27005 (ISO-27005)
Payment Card Industry Data Security Standards (PCI-DSS)
International Organization for Standardizations 27004 (ISO-27004)

Answer(s): B

Show Answer Next Question

QUESTION: 58 Exam Topic: 1, Governance, Risk, Compliance

An organization is looking for a framework to measure the efficiency and effectiveness of their Information Security Management System.
Which of the following international standards can BEST assist this organization?

International Organization for Standardizations 27004 (ISO-27004)
Payment Card Industry Data Security Standards (PCI-DSS)
Control Objectives for Information Technology (COBIT)
International Organization for Standardizations 27005 (ISO-27005)

Answer(s): A

Show Answer Next Question

QUESTION: 59 Exam Topic: 1, Governance, Risk, Compliance

A global retail company is creating a new compliance management process.
Which of the following regulations is of MOST importance to be tracked and managed by this process?

Information Technology Infrastructure Library (ITIL)
International Organization for Standardization (ISO) standards
Payment Card Industry Data Security Standards (PCI-DSS)
National Institute for Standards and Technology (NIST) standard

Answer(s): C

Show Answer Next Question

QUESTION: 60 Exam Topic: 1, Governance, Risk, Compliance

A global retail organization is looking to implement a consistent Disaster Recovery and Business Continuity Process across all of its business units.
Which of the following standards and guidelines can BEST address this organization's need?

International Organization for Standardizations 22301 (ISO-22301)
Information Technology Infrastructure Library (ITIL)
Payment Card Industry Data Security Standards (PCI-DSS)
International Organization for Standardizations 27005 (ISO-27005)

Answer(s): A

Show Answer Next Question

EC-Council 512-50 Exam Questions
Information Security Manager (Page 13 )

QUESTION: 56 Exam Topic: 1, Governance, Risk, Compliance

QUESTION: 57 Exam Topic: 1, Governance, Risk, Compliance

QUESTION: 58 Exam Topic: 1, Governance, Risk, Compliance

QUESTION: 59 Exam Topic: 1, Governance, Risk, Compliance

QUESTION: 60 Exam Topic: 1, Governance, Risk, Compliance

512-50 Exam Discussions & Posts

EC-Council 512-50 Exam Questions Information Security Manager (Page 13 )

QUESTION: 56 Exam Topic: 1, Governance, Risk, Compliance

QUESTION: 57 Exam Topic: 1, Governance, Risk, Compliance

QUESTION: 58 Exam Topic: 1, Governance, Risk, Compliance

QUESTION: 59 Exam Topic: 1, Governance, Risk, Compliance

QUESTION: 60 Exam Topic: 1, Governance, Risk, Compliance

512-50 Exam Discussions & Posts

EC-Council 512-50 Exam Questions
Information Security Manager (Page 13 )