CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. EC-Council
  5. 512-50

Free 512-50 Exam Braindumps (page: 34)

Page 33 of 102
PDF with 404 Questions

A recent audit has identified a few control exceptions and is recommending the implementation of technology and processes to address the finding.
Which of the following is the MOST likely reason for the organization to reject the implementation of the recommended technology and processes?

  1. The auditors have not followed proper auditing processes
  2. The CIO of the organization disagrees with the finding
  3. The risk tolerance of the organization permits this risk
  4. The organization has purchased cyber insurance

Answer(s): C



The remediation of a specific audit finding is deemed too expensive and will not be implemented.
Which of the following is a TRUE statement?

  1. The asset is more expensive than the remediation
  2. The audit finding is incorrect
  3. The asset being protected is less valuable than the remediation costs
  4. The remediation costs are irrelevant; it must be implemented regardless of cost.

Answer(s): C



A missing/ineffective security control is identified.
Which of the following should be the NEXT step?

  1. Perform an audit to measure the control formally
  2. Escalate the issue to the IT organization
  3. Perform a risk assessment to measure risk
  4. Establish Key Risk Indicators

Answer(s): C



The risk found after a control has been fully implemented is called:

  1. Residual Risk
  2. Total Risk
  3. Post implementation risk
  4. Transferred risk

Answer(s): A






Post your Comments and Discuss EC-Council 512-50 exam with other Community members:

512-50 Discussions & Posts