QUESTION: 65 Exam Topic: 1, Governance, Risk, Compliance

What two methods are used to assess risk impact?

Cost and annual rate of expectance
Subjective and Objective
Qualitative and percent of loss realized
Quantitative and qualitative

Answer(s): D

QUESTION: 66 Exam Topic: 1, Governance, Risk, Compliance

According to ISO 27001, of the steps for establishing an Information Security Governance program listed below, which comes first?

Identify threats, risks, impacts and vulnerabilities
Decide how to manage risk
Define the budget of the Information Security Management System
Define Information Security Policy

Answer(s): D

Reveal Solution Next Question

QUESTION: 67 Exam Topic: 1, Governance, Risk, Compliance

You have recently drafted a revised information security policy. From whom should you seek endorsement in order to have the GREATEST chance for adoption and implementation throughout the entire organization?

Chief Information Security Officer
Chief Executive Officer
Chief Information Officer
Chief Legal Counsel

Answer(s): B

Reveal Solution Next Question

QUESTION: 68 Exam Topic: 1, Governance, Risk, Compliance

The success of the Chief Information Security Officer is MOST dependent upon:

favorable audit findings
following the recommendations of consultants and contractors
development of relationships with organization executives
raising awareness of security issues with end users

Answer(s): C

Reveal Solution Next Question

Free 512-50 Exam Braindumps (page: 18)

QUESTION: 65 Exam Topic: 1, Governance, Risk, Compliance

QUESTION: 66 Exam Topic: 1, Governance, Risk, Compliance

QUESTION: 67 Exam Topic: 1, Governance, Risk, Compliance

QUESTION: 68 Exam Topic: 1, Governance, Risk, Compliance

512-50 Discussions & Posts