512-50 Practice Exam Questions with Answers EC-Council Information Security Manager (E|ISM) Certification

4, 2, 5, 3, 1

2, 5, 3, 1, 4

4, 5, 2, 3, 1

4, 3, 5, 2, 1

Your public key

The recipient's private key

The recipient's public key

Certificate authority key

Covert government networks

War driving maps

Government networks in Tora

Virtual network tunnels

Cold site

Hot site

Warm site

Mobile backup site

Segmentation controls.

Shadow applications.

Deception technology.

Vulnerability management.

The number of unique communication links is large

The volume of data being transmitted is small

The speed of the encryption / deciphering process is essential

The distance to the end node is farthest away

Data is more portable due to the increased use of smartphones and tablets

The move from centralized computing to decentralized computing

Camera systems have become more economical and expanded in their use

The internet of Things allows easy compromise of cloud-based systems

By adding all capital and operational costs from the prior budgetary cycle, and determining potential

financial shortages

By reviewing last year’s program-level costs and adding a percentage of expected additional portfolio costs

By adding the cost of all known individual tasks and projects that are planned for the next budgetary cycle

By adding all planned operational expenses per quarter then summarizing them in a budget request

Identification

Authorization

Authentication

Accountability

Inability to export the private certificate/key

It can double as physical identification at the DMV

It has the user's photograph to help ID them

It can be used as a secure flash drive

Message alteration

Message copying

Message theft

Unauthorized reading

Information security theory

Roles and responsibilities

Incident response contacts

Desktop configuration standards

There is integration between IT security and business staffing.

There is a clear definition of the IT security mission and vision.

There is an auditing methodology in place.

The plan requires return on investment for all security projects.

System scanning trends and results as they pertain to insider and external threat sources

The capabilities of a security program in terms of staffing support

Significant risks and security incidents that have been discovered since the last assembly of the

membership

The numbers and types of cyberattacks experienced by the organization since the last assembly of the

membership

A high threat environment

A low risk tolerance environment

I low vulnerability environment

A high risk tolerance environment

Implement redundancy

move operations to another region

purchase breach insurance

Alignment with business operations

Date and time of the event

Failure of the event

Originating IP-Address

Authentication type

Information Technology Infrastructure Library (ITIL)

International Organization for Standardization (ISO) standards

Payment Card Industry Data Security Standards (PCI-DSS)

National Institute for Standards and Technology (NIST) standard

Moderate investment

Passive monitoring

Integrated security controls

Dynamic deception

National Institute for Standards and Technology 800-50 (NIST 800-50)

International Organization for Standardizations – 27005 (ISO-27005)

Payment Card Industry Data Security Standards (PCI-DSS)

International Organization for Standardizations – 27004 (ISO-27004)

That all information in an organization must be protected equally.

The information required to be protected by regulatory mandate does not have to be identified in the organizations data classification policy.

That the protection of some information such as National ID information is mandated by regulation and other information such as trade secrets are protected based on business need.

There is no relationship between the two.

Contacting the Internet Service Provider for an IP scope

Getting authority to operate the system from executive management

Changing the default passwords

Conducting a final scan of the live system and mitigating all high and medium level vulnerabilities

Escalation

Recovery

Eradication

Containment

So that they will accept ownership for security within the organization.

So that employees will follow the policy directives.

So that external bodies will recognize the organizations commitment to security.

So that they can be held legally accountable.

Risk = Probability x Impact

Risk = Threat x Probability

Risk = Financial Impact x Probability

Risk = Impact x Threat

Validate the business units’ suggestions as to what should be included in the scoping process

Work with a Qualified Security Assessor (QSA) to determine the scope of the PCI environment

Ensure internal scope validation is completed and that an assessment has been done to discover all credit card data

Complete the self-assessment questionnaire and work with an Approved Scanning Vendor (ASV) to determine scope

Determine the risk tolerance

Perform an asset classification

Create an architecture gap analysis

Analyze existing controls on systems

Confidentiality, Availability, Integrity

Compliance, Effectiveness, Efficiency

Communication, Reliability, Cost

Confidentiality, Compliance, Cost

At the end of the day once the employee is off site

During the monthly review cycle

Immediately so the employee account(s) can be disabled

Before an audit

IT Management

Internal Audit

IT Security

BOD Audit Committee

Servers, routers, switches, modem

Firewall, exchange, web server, intrusion detection system (IDS)

Firewall, anti-virus console, IDS, syslog

IDS, syslog, router, switches

All vulnerabilities found on servers and desktops

Only critical and high vulnerabilities on servers and desktops

Only critical and high vulnerabilities that impact important production servers

All vulnerabilities that impact important production servers

Vendor’s client list of reputable organizations currently using their solution

Vendor provided attestation of the detailed security controls from a reputable accounting firm

Vendor provided reference from an existing reputable client detailing their implementation

Vendor provided internal risk assessment and security control documentation

In-line hardware keyloggers don’t require physical access

In-line hardware keyloggers don’t comply to industry regulations

In-line hardware keyloggers are undetectable by software

In-line hardware keyloggers are relatively inexpensive

chain of custody.

electronic discovery.

evidence tampering.

electronic review.

The IT support team.

A forensic analysis.

Incident response

Physical security team.

3DES

MD5

ECC

RSA

Third-party emergency repair contract

Pre-built servers and routers

Permanent alternative routing

Full off-site backup of every server

Risk Management and Operations

Corporate Culture and Job Expectations

Operations and Regulations

Technology and Vendor Management

The IT team is not familiar in IT audit practices

This represents a bad implementation of the Least Privilege principle

This represents a conflict of interest

The IT team is not certified to perform audits

Perform an audit to measure the control formally

Escalate the issue to the IT organization

Perform a risk assessment to measure risk

Establish Key Risk Indicators

Security Administrators

Internal/External Audit

Risk Management

Security Operations

Senior Executives

Office of the Auditor

Office of the General Counsel

All employees and users

Risk metrics

Management metrics

Operational metrics

Compliance metrics

Nonlinearities in physical security performance metrics

Defense in depth cost enumerated costs

System hardening and patching requirements

Anti-virus for mobile devices

it is completed on time or early as compared to the baseline project plan

it meets most of the specifications as outlined in the approved project definition

it comes in at or below the expenditures planned for in the baseline budget

the deliverables are accepted by the key stakeholders

Quarterly

Semi-annually

Bi-annually

Annually

Network based intrusion detection systems

A security training program for developers

A risk management process

A audit management process

Knowing who all the stakeholders are.

Knowing the people on the data center team.

Knowing the threats to the organization.

Knowing the milestones and timelines of deliverables.

Tell the team to do their best and respond to each alert

Tune the sensors to help reduce false positives so the team can react better

Request additional resources to handle the workload

Tell the team to only respond to the critical and high alerts

At the time the security services are being performed and the vendor needs access to the network

Once the agreement has been signed and the security vendor states that they will need access to the network

Once the vendor is on premise and before they perform security services

Prior to signing the agreement and before any security services are being performed

Increase stock value

Complete security

Support business requirements

Implement information security policies

Allow the business units to decide which controls apply to their systems, such as the encryption of sensitive data

Create separate controls for the business units based on the types of business and functions they perform

Ensure business units are involved in the creation of controls and defining conditions under which they must be applied

Provide the business units with control mandates and schedules of audits for compliance validation

Risk averse

Risk tolerant

Risk conditional

Risk minimal

Terms and Conditions

Service Level Agreements (SLA)

Statement of Work

Key Performance Indicators (KPI)