ExamGecko
Search Search Login
Home Home / ECCouncil / 712-50

ECCouncil 712-50 Practice Test - Questions Answers, Page 30

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

What is an approach to estimating the strengths and weaknesses of alternatives used to determine options, which provide the BEST approach to achieving benefits while preserving savings called?
When measuring the effectiveness of an Information Security Management System which one of the following would be MOST LIKELY used as a metric framework?
The Security Operations Center (SOC) just purchased a new intrusion prevention system (IPS) that needs to be deployed in-line for best defense. The IT group is concerned about putting the new IPS in-line because it might negatively impact network availability. What would be the BEST approach for the CISO to reassure the IT group?
A Security Operations Manager is finding it difficult to maintain adequate staff levels to monitor security operations during off-hours. To reduce the impact of staff shortages and increase coverage during off-hours, the SecOps manager is considering outsourcing off-hour coverage. What Security Operations Center (SOC) model does this BEST describe?
To make sure that the actions of all employees, applications, and systems follow the organization's rules and regulations can BEST be described as which of the following?
As the CISO, you are the project sponsor for a highly visible log management project. The objective of the project is to centralize all the enterprise logs into a security information and event management (SIEM) system. You requested the results of the performance quality audits activity. The performance quality audit activity is done in what project management process group?
You have been hired as the Information System Security Officer (ISSO) for a US federal government agency. Your role is to ensure the security posture of the system is maintained. One of your tasks is to develop and maintain the system security plan (SSP) and supporting documentation. Which of the following is NOT documented in the SSP?
An organization licenses and uses personal information for business operations, and a server containing that information has been compromised. What kind of law would require notifying the owner or licensee of this incident?
When managing the security architecture for your company you must consider:
A company wants to fill a Chief Information Security Officer position. Which of the following qualifications and experience would be MOST desirable in a candidate?

Question 291

Report
Export
Collapse

When updating the security strategic planning document what two items must be included?

A.
Alignment with the business goals and the vision of the CIO
A.
Alignment with the business goals and the vision of the CIO
Answers
B.
The risk tolerance of the company and the company mission statement
B.
The risk tolerance of the company and the company mission statement
Answers
C.
The executive summary and vision of the board of directors
C.
The executive summary and vision of the board of directors
Answers
D.
The alignment with the business goals and the risk tolerance
D.
The alignment with the business goals and the risk tolerance
Answers
Suggested answer: D

Question 292

Report
Export
Collapse

Acceptable levels of information security risk tolerance in an organization should be determined by?

A.
Corporate legal counsel
A.
Corporate legal counsel
Answers
B.
CISO with reference to the company goals
B.
CISO with reference to the company goals
Answers
C.
CEO and board of director
C.
CEO and board of director
Answers
D.
Corporate compliance committee
D.
Corporate compliance committee
Answers
Suggested answer: C

Question 293

Report
Export
Collapse

The formal certification and accreditation process has four primary steps, what are they?

A.
Evaluating, describing, testing and authorizing
A.
Evaluating, describing, testing and authorizing
Answers
B.
Evaluating, purchasing, testing, authorizing
B.
Evaluating, purchasing, testing, authorizing
Answers
C.
Auditing, documenting, verifying, certifying
C.
Auditing, documenting, verifying, certifying
Answers
D.
Discovery, testing, authorizing, certifying
D.
Discovery, testing, authorizing, certifying
Answers
Suggested answer: A

Question 294

Report
Export
Collapse

Human resource planning for security professionals in your organization is a:

A.
Simple and easy task because the threats are getting easier to find and correct.
A.
Simple and easy task because the threats are getting easier to find and correct.
Answers
B.
Training requirement that is met through once every year user training.
B.
Training requirement that is met through once every year user training.
Answers
C.
Training requirement that is on-going and always changing.
C.
Training requirement that is on-going and always changing.
Answers
D.
Not needed because automation and anti-virus software has eliminated the threats.
D.
Not needed because automation and anti-virus software has eliminated the threats.
Answers
Suggested answer: C

Question 295

Report
Export
Collapse

What are the primary reasons for the development of a business case for a security project?

A.
To estimate risk and negate liability to the company
A.
To estimate risk and negate liability to the company
Answers
B.
To understand the attack vectors and attack sources
B.
To understand the attack vectors and attack sources
Answers
C.
To communicate risk and forecast resource needs
C.
To communicate risk and forecast resource needs
Answers
D.
To forecast usage and cost per software licensing
D.
To forecast usage and cost per software licensing
Answers
Suggested answer: C

Question 296

Report
Export
Collapse

When analyzing and forecasting a capital expense budget what are not included?

A.
Network connectivity costs
A.
Network connectivity costs
Answers
B.
New datacenter to operate from
B.
New datacenter to operate from
Answers
C.
Upgrade of mainframe
C.
Upgrade of mainframe
Answers
D.
Purchase of new mobile devices to improve operations
D.
Purchase of new mobile devices to improve operations
Answers
Suggested answer: A

Question 297

Report
Export
Collapse

When analyzing and forecasting an operating expense budget what are not included?

A.
Software and hardware license fees
A.
Software and hardware license fees
Answers
B.
Utilities and power costs
B.
Utilities and power costs
Answers
C.
Network connectivity costs
C.
Network connectivity costs
Answers
D.
New datacenter to operate from
D.
New datacenter to operate from
Answers
Suggested answer: D

Question 298

Report
Export
Collapse

What is the primary reason for performing a return on investment analysis?

A.
To decide between multiple vendors
A.
To decide between multiple vendors
Answers
B.
To decide is the solution costs less than the risk it is mitigating
B.
To decide is the solution costs less than the risk it is mitigating
Answers
C.
To determine the current present value of a project
C.
To determine the current present value of a project
Answers
D.
To determine the annual rate of loss
D.
To determine the annual rate of loss
Answers
Suggested answer: B

Question 299

Report
Export
Collapse

What is the primary reason for performing vendor management?

A.
To understand the risk coverage that are being mitigated by the vendor
A.
To understand the risk coverage that are being mitigated by the vendor
Answers
B.
To establish a vendor selection process
B.
To establish a vendor selection process
Answers
C.
To document the relationship between the company and the vendor
C.
To document the relationship between the company and the vendor
Answers
D.
To define the partnership for long-term success
D.
To define the partnership for long-term success
Answers
Suggested answer: A

Question 300

Report
Export
Collapse

What is the BEST reason for having a formal request for proposal process?

A.
Creates a timeline for purchasing and budgeting
A.
Creates a timeline for purchasing and budgeting
Answers
B.
Allows small companies to compete with larger companies
B.
Allows small companies to compete with larger companies
Answers
C.
Clearly identifies risks and benefits before funding is spent
C.
Clearly identifies risks and benefits before funding is spent
Answers
D.
Informs suppliers a company is going to make a purchase
D.
Informs suppliers a company is going to make a purchase
Answers
Suggested answer: C
Total 460 questions
Go to page: of 46
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms