CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. EC-Council
  5. 512-50

Free 512-50 Exam Braindumps (page: 32)

Page 31 of 102
PDF with 404 Questions

As the new CISO at the company you are reviewing the audit reporting process and notice that it includes only detailed technical diagrams.
What else should be in the reporting process?

  1. Executive summary
  2. Penetration test agreement
  3. Names and phone numbers of those who conducted the audit
  4. Business charter

Answer(s): A



As a new CISO at a large healthcare company you are told that everyone has to badge in to get in the building. Below your office window you notice a door that is normally propped open during the day for groups of people to take breaks outside. Upon looking closer you see there is no badge reader.
What should you do?

  1. Nothing, this falls outside your area of influence.
  2. Close and chain the door shut and send a company-wide memo banning the practice.
  3. Have a risk assessment performed.
  4. Post a guard at the door to maintain physical security

Answer(s): C



Assigning the role and responsibility of Information Assurance to a dedicated and independent security group is an example of:

  1. Detective Controls
  2. Proactive Controls
  3. Preemptive Controls
  4. Organizational Controls

Answer(s): D



The CIO of an organization has decided to assign the responsibility of internal IT audit to the IT team.
This is consider a bad practice MAINLY because

  1. The IT team is not familiar in IT audit practices
  2. This represents a bad implementation of the Least Privilege principle
  3. This represents a conflict of interest
  4. The IT team is not certified to perform audits

Answer(s): C






Post your Comments and Discuss EC-Council 512-50 exam with other Community members:

512-50 Discussions & Posts