ExamGecko
Search Search Login
Home Home / ECCouncil / 712-50

ECCouncil 712-50 Practice Test - Questions Answers, Page 36

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

What is an approach to estimating the strengths and weaknesses of alternatives used to determine options, which provide the BEST approach to achieving benefits while preserving savings called?
When measuring the effectiveness of an Information Security Management System which one of the following would be MOST LIKELY used as a metric framework?
The Security Operations Center (SOC) just purchased a new intrusion prevention system (IPS) that needs to be deployed in-line for best defense. The IT group is concerned about putting the new IPS in-line because it might negatively impact network availability. What would be the BEST approach for the CISO to reassure the IT group?
As the CISO, you are the project sponsor for a highly visible log management project. The objective of the project is to centralize all the enterprise logs into a security information and event management (SIEM) system. You requested the results of the performance quality audits activity. The performance quality audit activity is done in what project management process group?
You have been hired as the Information System Security Officer (ISSO) for a US federal government agency. Your role is to ensure the security posture of the system is maintained. One of your tasks is to develop and maintain the system security plan (SSP) and supporting documentation. Which of the following is NOT documented in the SSP?
To make sure that the actions of all employees, applications, and systems follow the organization's rules and regulations can BEST be described as which of the following?
An organization licenses and uses personal information for business operations, and a server containing that information has been compromised. What kind of law would require notifying the owner or licensee of this incident?
When managing the security architecture for your company you must consider:
A company wants to fill a Chief Information Security Officer position. Which of the following qualifications and experience would be MOST desirable in a candidate?
A Security Operations Manager is finding it difficult to maintain adequate staff levels to monitor security operations during off-hours. To reduce the impact of staff shortages and increase coverage during off-hours, the SecOps manager is considering outsourcing off-hour coverage. What Security Operations Center (SOC) model does this BEST describe?

Question 351

Report
Export
Collapse

A CISO decides to analyze the IT infrastructure to ensure security solutions adhere to the concepts of how hardware and software is implemented and managed within the organization. Which of the following principles does this best demonstrate?

A.
Effective use of existing technologies
A.
Effective use of existing technologies
Answers
B.
Create a comprehensive security awareness program and provide success metrics to business units
B.
Create a comprehensive security awareness program and provide success metrics to business units
Answers
C.
Proper budget management
C.
Proper budget management
Answers
D.
Leveraging existing implementations
D.
Leveraging existing implementations
Answers
Suggested answer: B

Question 352

Report
Export
Collapse

Scenario: An organization has recently appointed a CISO. This is a new role in the organization and it signals the increasing need to address security consistently at the enterprise level. This new CISO, while confident with skills and experience, is constantly on the defensive and is unable to advance the IT security centric agenda.

From an Information Security Leadership perspective, which of the following is a MAJOR concern about the CISO's approach to security?

A.
Compliance centric agenda
A.
Compliance centric agenda
Answers
B.
IT security centric agenda
B.
IT security centric agenda
Answers
C.
Lack of risk management process
C.
Lack of risk management process
Answers
D.
Lack of sponsorship from executive management
D.
Lack of sponsorship from executive management
Answers
Suggested answer: B

Question 353

Report
Export
Collapse

A CISO has implemented a risk management capability within the security portfolio. Which of the following terms best describes this functionality?

A.
Service
A.
Service
Answers
B.
Program
B.
Program
Answers
C.
Portfolio
C.
Portfolio
Answers
D.
Cost center
D.
Cost center
Answers
Suggested answer: B

Question 354

Report
Export
Collapse

Using the Transport Layer Security (TLS) protocol enables a client in a network to be:

A.
Provided with a digital signature
A.
Provided with a digital signature
Answers
B.
Assured of the server's identity
B.
Assured of the server's identity
Answers
C.
Identified by a network
C.
Identified by a network
Answers
D.
Registered by the server
D.
Registered by the server
Answers
Suggested answer: B

Explanation:

Reference: https://ukdiss.com/examples/tls.php

Question 355

Report
Export
Collapse

The network administrator wants to strengthen physical security in the organization. Specifically, to implement a solution stopping people from entering certain restricted zones without proper credentials. Which of following physical security measures should the administrator use?

A.
Video surveillance
A.
Video surveillance
Answers
B.
Mantrap
B.
Mantrap
Answers
C.
Bollards
C.
Bollards
Answers
D.
Fence
D.
Fence
Answers
Suggested answer: D

Question 356

Report
Export
Collapse

Which of the following is the MOST logical method of deploying security controls within an organization?

A.
Obtain funding for all desired controls and then create project plans for implementation
A.
Obtain funding for all desired controls and then create project plans for implementation
Answers
B.
Apply the simpler controls as quickly as possible and use a risk-based approach for the more difficult and costly controls
B.
Apply the simpler controls as quickly as possible and use a risk-based approach for the more difficult and costly controls
Answers
C.
Apply the least costly controls to demonstrate positive program activity
C.
Apply the least costly controls to demonstrate positive program activity
Answers
D.
Obtain business unit buy-in through close communication and coordination
D.
Obtain business unit buy-in through close communication and coordination
Answers
Suggested answer: B

Question 357

Report
Export
Collapse

Which of the following is a primary method of applying consistent configurations to IT systems?

A.
Audits
A.
Audits
Answers
B.
Administration
B.
Administration
Answers
C.
Patching
C.
Patching
Answers
D.
Templates
D.
Templates
Answers
Suggested answer: C

Question 358

Report
Export
Collapse

Where does bottom-up financial planning primarily gain information for creating budgets?

A.
By adding all capital and operational costs from the prior budgetary cycle, and determining potential financial shortages
A.
By adding all capital and operational costs from the prior budgetary cycle, and determining potential financial shortages
Answers
B.
By reviewing last year's program-level costs and adding a percentage of expected additional portfolio costs
B.
By reviewing last year's program-level costs and adding a percentage of expected additional portfolio costs
Answers
C.
By adding the cost of all known individual tasks and projects that are planned for the next budgetary cycle
C.
By adding the cost of all known individual tasks and projects that are planned for the next budgetary cycle
Answers
D.
By adding all planned operational expenses per quarter then summarizing them in a budget request
D.
By adding all planned operational expenses per quarter then summarizing them in a budget request
Answers
Suggested answer: D

Question 359

Report
Export
Collapse

Which of the following best describes revenue?

A.
Non-operating financial liabilities minus expenses
A.
Non-operating financial liabilities minus expenses
Answers
B.
The true profit-making potential of an organization
B.
The true profit-making potential of an organization
Answers
C.
The sum value of all assets and cash flow into the business
C.
The sum value of all assets and cash flow into the business
Answers
D.
The economic benefit derived by operating a business
D.
The economic benefit derived by operating a business
Answers
Suggested answer: D

Explanation:

Reference: https://www.investopedia.com/terms/r/revenue.asp

Question 360

Report
Export
Collapse

Which of the following is the MOST effective method for discovering common technical vulnerabilities within the IT environment?

A.
Reviewing system administrator logs
A.
Reviewing system administrator logs
Answers
B.
Auditing configuration templates
B.
Auditing configuration templates
Answers
C.
Checking vendor product releases
C.
Checking vendor product releases
Answers
D.
Performing system scans
D.
Performing system scans
Answers
Suggested answer: D
Total 460 questions
Go to page: of 46
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms