CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. EC-Council
  5. 512-50

Free 512-50 Exam Braindumps (page: 55)

Page 54 of 102
PDF with 404 Questions

What oversight should the information security team have in the change management process for application security?

  1. Information security should be informed of changes to applications only
  2. Development team should tell the information security team about any application security flaws
  3. Information security should be aware of any significant application security changes and work with developer to test for vulnerabilities before changes are deployed in production
  4. Information security should be aware of all application changes and work with developers before changes are deployed in production

Answer(s): C



In order for a CISO to have true situational awareness there is a need to deploy technology that can give a real-time view of security events across the enterprise.
Which tool selection represents the BEST choice to achieve situational awareness?

  1. Vmware, router, switch, firewall, syslog, vulnerability management system (VMS)
  2. Intrusion Detection System (IDS), firewall, switch, syslog
  3. Security Incident Event Management (SIEM), IDS, router, syslog
  4. SIEM, IDS, firewall, VMS

Answer(s): D



You manage a newly created Security Operations Center (SOC), your team is being inundated with security alerts and don't know what to do.
What is the BEST approach to handle this situation?

  1. Tell the team to do their best and respond to each alert
  2. Tune the sensors to help reduce false positives so the team can react better
  3. Request additional resources to handle the workload
  4. Tell the team to only respond to the critical and high alerts

Answer(s): B



An example of professional unethical behavior is:

  1. Gaining access to an affiliated employee's work email account as part of an officially sanctioned internal investigation
  2. Sharing copyrighted material with other members of a professional organization where all members have legitimate access to the material
  3. Copying documents from an employer's server which you assert that you have an intellectual property claim to possess, but the company disputes
  4. Storing client lists and other sensitive corporate internal documents on a removable thumb drive

Answer(s): C






Post your Comments and Discuss EC-Council 512-50 exam with other Community members:

512-50 Exam Discussions & Posts