Get Full Version of the Exam
http://www.EnsurePass.com/712-50.html
Question No.191
Which one of the following BEST describes which member of the management team is accountable for the day-to-day operation of the information security program?
-
Security administrators
-
Security mangers
-
Security technicians
-
Security analysts
Correct Answer: B
Question No.192
An example of professional unethical behavior is:
-
Gaining access to an affiliated employee#39;s work email account as part of an officially sanctioned internal investigation
-
Sharing copyrighted material with other members of a professional organization where all members have legitimate access to the material
-
Copying documents from an employer#39;s server which you assert that you have an intellectual property claim to possess, but the company disputes
-
Storing client lists and other sensitive corporate internal documents on a removable thumb drive
Correct Answer: C
Question No.193
The Security Operations Center (SOC) just purchased a new intrusion prevention system (IPS) that needs to be deployed in-line for best defense. The IT group is concerned about putting the new IPS in-line because it might negatively impact network availability. What would be the BEST approach for the CISO to reassure the IT group?
-
Work with the IT group and tell them to put IPS in-line and say it won#39;t cause any network impact
-
Explain to the IT group that the IPS won#39;t cause any network impact because it will fail open
-
Explain to the IT group that this is a business need and the IPS will fail open however, if there is a network failure the CISO will accept responsibility
-
Explain to the IT group that the IPS will fail open once in-line however it will be deployed in
monitor mode for a set period of time to ensure that it doesn#39;t block any legitimate traffic
Correct Answer: D
Question No.194
Which of the following is the MOST important component of any change management process?
-
Scheduling
-
Back-out procedures
-
Outage planning
-
Management approval
Correct Answer: D
Question No.195
A CISO implements smart cards for credential management, and as a result has reduced costs associated with help desk operations supporting password resets. This demonstrates which of the following principles?
-
Security alignment to business goals
-
Regulatory compliance effectiveness
-
Increased security program presence
-
Proper organizational policy enforcement
Correct Answer: A
Question No.196
Which of the following is the BEST indicator of a successful project?
-
it is completed on time or early as compared to the baseline project plan
-
it meets most of the specifications as outlined in the approved project definition
-
it comes in at or below the expenditures planned for in the baseline budget
-
the deliverables are accepted by the key stakeholders
Correct Answer: D
Question No.197
In effort to save your company money which of the following methods of training results in the lowest cost for the organization?
-
Distance learning/Web seminars
-
Formal Class
-
One-One Training
-
Self-Study (noncomputerized)
Correct Answer: D
Question No.198
Which of the following functions evaluates patches used to close software vulnerabilities of new systems to assure compliance with policy when implementing an information security program?
-
System testing
-
Risk assessment
-
Incident response
-
Planning
Correct Answer: A
Question No.199
Which of the following can the company implement in order to avoid this type of security issue in the future?
-
Network based intrusion detection systems
-
A security training program for developers
-
A risk management process
-
A audit management process
Correct Answer: B
Question No.200
A system was hardened at the Operating System level and placed into the production environment. Months later an audit was performed and it identified insecure configuration different from the original hardened state. Which of the following security issues is the MOST likely reason leading to the audit findings?
-
Lack of asset management processes
-
Lack of change management processes
-
Lack of hardening standards
-
Lack of proper access controls
Correct Answer: B
Get Full Version of the Exam
712-50 Dumps
712-50 VCE and PDF