ExamGecko
Login
Home / ECCouncil / 712-50 / List of questions
Ask Question

ECCouncil 712-50 Practice Test - Questions Answers, Page 4

Add to Whishlist

List of questions

Question 31

Report Export Collapse

Which of the following intellectual Property components is focused on maintaining brand recognition?

Trademark
Trademark
Patent
Patent
Research Logs
Research Logs
Copyright
Copyright
Suggested answer: A
asked 18/09/2024
ivaylo Skechleiev
42 questions

Question 32

Report Export Collapse

The framework that helps to define a minimum standard of protection that business stakeholders must attempt to achieve is referred to as a standard of:

Due Protection
Due Protection
Due Care
Due Care
Due Compromise
Due Compromise
Due process
Due process
Suggested answer: B
asked 18/09/2024
Wai Kiat Wong
40 questions

Question 33

Report Export Collapse

When an organization claims it is secure because it is PCI-DSS certified, what is a good first question to ask towards assessing the effectiveness of their security program?

How many credit card records are stored?
How many credit card records are stored?
How many servers do you have?
How many servers do you have?
What is the scope of the certification?
What is the scope of the certification?
What is the value of the assets at risk?
What is the value of the assets at risk?
Suggested answer: C
asked 18/09/2024
lakshmi govindu
48 questions

Question 34

Report Export Collapse

What is a difference from the list below between quantitative and qualitative Risk Assessment?

Quantitative risk assessments result in an exact number (in monetary terms)
Quantitative risk assessments result in an exact number (in monetary terms)
Qualitative risk assessments result in a quantitative assessment (high, medium, low, red, yellow, green)
Qualitative risk assessments result in a quantitative assessment (high, medium, low, red, yellow, green)
Qualitative risk assessments map to business objectives
Qualitative risk assessments map to business objectives
Quantitative risk assessments result in a quantitative assessment (high, medium, low, red, yellow, green)
Quantitative risk assessments result in a quantitative assessment (high, medium, low, red, yellow, green)
Suggested answer: A
asked 18/09/2024
Elyse Martinez
45 questions

Question 35

Report Export Collapse

What is the definition of Risk in Information Security?

Risk = Probability x Impact
Risk = Probability x Impact
Risk = Threat x Probability
Risk = Threat x Probability
Risk = Financial Impact x Probability
Risk = Financial Impact x Probability
Risk = Impact x Threat
Risk = Impact x Threat
Suggested answer: A
asked 18/09/2024
Wellington Rodrigues da Costa
43 questions

Question 36

Report Export Collapse

Quantitative Risk Assessments have the following advantages over qualitative risk assessments:

They are objective and can express risk / cost in real numbers
They are objective and can express risk / cost in real numbers
They are subjective and can be completed more quickly
They are subjective and can be completed more quickly
They are objective and express risk / cost in approximates
They are objective and express risk / cost in approximates
They are subjective and can express risk /cost in real numbers
They are subjective and can express risk /cost in real numbers
Suggested answer: A
asked 18/09/2024
Martine Cornax
41 questions

Question 37

Report Export Collapse

Which of the following is MOST important when dealing with an Information Security Steering committee:

Include a mix of members from different departments and staff levels.
Include a mix of members from different departments and staff levels.
Ensure that security policies and procedures have been vetted and approved.
Ensure that security policies and procedures have been vetted and approved.
Review all past audit and compliance reports.
Review all past audit and compliance reports.
Be briefed about new trends and products at each meeting by a vendor.
Be briefed about new trends and products at each meeting by a vendor.
Suggested answer: C
asked 18/09/2024
shaoyu huang
32 questions

Question 38

Report Export Collapse

A business unit within your organization intends to deploy a new technology in a manner that places it in violation of existing information security standards. What immediate action should the information security manager take?

Enforce the existing security standards and do not allow the deployment of the new technology.
Enforce the existing security standards and do not allow the deployment of the new technology.
Amend the standard to permit the deployment.
Amend the standard to permit the deployment.
If the risks associated with that technology are not already identified, perform a risk analysis to quantify the risk, and allow the business unit to proceed based on the identified risk level.
If the risks associated with that technology are not already identified, perform a risk analysis to quantify the risk, and allow the business unit to proceed based on the identified risk level.
Permit a 90-day window to see if an issue occurs and then amend the standard if there are no issues.
Permit a 90-day window to see if an issue occurs and then amend the standard if there are no issues.
Suggested answer: C
asked 18/09/2024
Jaime GONCALVES
49 questions

Question 39

Report Export Collapse

The PRIMARY objective of security awareness is to:

Ensure that security policies are read.
Ensure that security policies are read.
Encourage security-conscious employee behavior.
Encourage security-conscious employee behavior.
Meet legal and regulatory requirements.
Meet legal and regulatory requirements.
Put employees on notice in case follow-up action for noncompliance is necessary
Put employees on notice in case follow-up action for noncompliance is necessary
Suggested answer: B
asked 18/09/2024
Alajauan Adams
40 questions

Question 40

Report Export Collapse

Which of the following is MOST likely to be discretionary?

Policies
Policies
Procedures
Procedures
Guidelines
Guidelines
Standards
Standards
Suggested answer: C
asked 18/09/2024
José Gonçalves
36 questions
Total 460 questions
Go to page: of 46
Open VPLUS File
Convert VPLUS to PDF

Related questions

To make sure that the actions of all employees, applications, and systems follow the organization's rules and regulations can BEST be described as which of the following?
You have a system with 2 identified risks. You determine the probability of one risk occurring is higher than the
Smith, the project manager for a larger multi-location firm, is leading a software project team that has 18 members, 5 of which are assigned to testing. Due to recent recommendations by an organizational quality audit team, the project manager is convinced to add a quality professional to lead to test team at additional cost to the project. The project manager is aware of the importance of communication for the success of the project and takes the step of introducing additional communication channels, making it more complex, in order to assure quality levels of the project. What will be the first project management document that Smith should change in order to accommodate additional communication channels?
When measuring the effectiveness of an Information Security Management System which one of the following would be MOST LIKELY used as a metric framework?
What is an approach to estimating the strengths and weaknesses of alternatives used to determine options, which provide the BEST approach to achieving benefits while preserving savings called?
The executive board has requested that the CISO of an organization define and Key Performance Indicators (KPI) to measure the effectiveness of the security awareness program provided to call center employees. Which of the following can be used as a KPI?
The alerting, monitoring, and lifecycle management of security-related events are typically managed by the:
A CISO must conduct risk assessments using a method where the Chief Financial Officer (CFO) receives impact data in financial terms to use as input to select the proper level of coverage in a new cybersecurity insurance policy. What is the MOST effective method of risk analysis to provide the CFO with the information required?
A Security Operations Manager is finding it difficult to maintain adequate staff levels to monitor security operations during off-hours. To reduce the impact of staff shortages and increase coverage during off-hours, the SecOps manager is considering outsourcing off-hour coverage. What Security Operations Center (SOC) model does this BEST describe?
A security professional has been promoted to be the CISO of an organization. The first task is to create a security policy for this organization. The CISO creates and publishes the security policy. This policy however, is ignored and not enforced consistently. Which of the following is the MOST likely reason for the policy shortcomings?