ExamGecko
Search Search Login
Home Home / ECCouncil / 712-50

ECCouncil 712-50 Practice Test - Questions Answers, Page 43

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

What is an approach to estimating the strengths and weaknesses of alternatives used to determine options, which provide the BEST approach to achieving benefits while preserving savings called?
The Security Operations Center (SOC) just purchased a new intrusion prevention system (IPS) that needs to be deployed in-line for best defense. The IT group is concerned about putting the new IPS in-line because it might negatively impact network availability. What would be the BEST approach for the CISO to reassure the IT group?
When measuring the effectiveness of an Information Security Management System which one of the following would be MOST LIKELY used as a metric framework?
As the CISO, you are the project sponsor for a highly visible log management project. The objective of the project is to centralize all the enterprise logs into a security information and event management (SIEM) system. You requested the results of the performance quality audits activity. The performance quality audit activity is done in what project management process group?
To make sure that the actions of all employees, applications, and systems follow the organization's rules and regulations can BEST be described as which of the following?
You have been hired as the Information System Security Officer (ISSO) for a US federal government agency. Your role is to ensure the security posture of the system is maintained. One of your tasks is to develop and maintain the system security plan (SSP) and supporting documentation. Which of the following is NOT documented in the SSP?
An organization licenses and uses personal information for business operations, and a server containing that information has been compromised. What kind of law would require notifying the owner or licensee of this incident?
When managing the security architecture for your company you must consider:
A company wants to fill a Chief Information Security Officer position. Which of the following qualifications and experience would be MOST desirable in a candidate?
A Security Operations Manager is finding it difficult to maintain adequate staff levels to monitor security operations during off-hours. To reduce the impact of staff shortages and increase coverage during off-hours, the SecOps manager is considering outsourcing off-hour coverage. What Security Operations Center (SOC) model does this BEST describe?

Question 421

Report
Export
Collapse

When evaluating a Managed Security Services Provider (MSSP), which service(s) is/are most important:

A.
Patch management
A.
Patch management
Answers
B.
Network monitoring
B.
Network monitoring
Answers
C.
Ability to provide security services tailored to the business' needs
C.
Ability to provide security services tailored to the business' needs
Answers
D.
24/7 tollfree number
D.
24/7 tollfree number
Answers
Suggested answer: C

Explanation:

Reference: https://digitalguardian.com/blog/how-hire-evaluate-managed-security-serviceproviders-mssps

Question 422

Report
Export
Collapse

Which of the following strategies provides the BEST response to a ransomware attack?

A.
Real-time off-site replication
A.
Real-time off-site replication
Answers
B.
Daily incremental backup
B.
Daily incremental backup
Answers
C.
Daily full backup
C.
Daily full backup
Answers
D.
Daily differential backup
D.
Daily differential backup
Answers
Suggested answer: B

Question 423

Report
Export
Collapse

What is the MOST critical output of the incident response process?

A.
A complete document of all involved team members and the support they provided
A.
A complete document of all involved team members and the support they provided
Answers
B.
Recovery of all data from affected systems
B.
Recovery of all data from affected systems
Answers
C.
Lessons learned from the incident, so they can be incorporated into the incident response processes
C.
Lessons learned from the incident, so they can be incorporated into the incident response processes
Answers
D.
Clearly defined documents detailing standard evidence collection and preservation processes
D.
Clearly defined documents detailing standard evidence collection and preservation processes
Answers
Suggested answer: C

Explanation:

Reference: https://www.eccouncil.org/incident-response-plan-phases/

Question 424

Report
Export
Collapse

Who is responsible for verifying that audit directives are implemented?

A.
IT Management
A.
IT Management
Answers
B.
Internal Audit
B.
Internal Audit
Answers
C.
IT Security
C.
IT Security
Answers
D.
BOD Audit Committee
D.
BOD Audit Committee
Answers
Suggested answer: B

Explanation:

Reference: https://www.eccouncil.org/information-security-management/

Question 425

Report
Export
Collapse

XYZ is a publicly-traded software development company.

Who is ultimately accountable to the shareholders in the event of a cybersecurity breach?

A.
Chief Financial Officer (CFO)
A.
Chief Financial Officer (CFO)
Answers
B.
Chief Software Architect (CIO)
B.
Chief Software Architect (CIO)
Answers
C.
CISO
C.
CISO
Answers
D.
Chief Executive Officer (CEO)
D.
Chief Executive Officer (CEO)
Answers
Suggested answer: C

Explanation:

Reference: https://www.eccouncil.org/information-security-management/

Question 426

Report
Export
Collapse

What organizational structure combines the functional and project structures to create a hybrid of the two?

A.
Traditional
A.
Traditional
Answers
B.
Composite
B.
Composite
Answers
C.
Project
C.
Project
Answers
D.
Matrix
D.
Matrix
Answers
Suggested answer: D

Explanation:

Reference: https://www.knowledgehut.com/tutorials/project-management/organization-structures

Question 427

Report
Export
Collapse

The primary responsibility for assigning entitlements to a network share lies with which role?

A.
CISO
A.
CISO
Answers
B.
Data owner
B.
Data owner
Answers
C.
Chief Information Officer (CIO)
C.
Chief Information Officer (CIO)
Answers
D.
Security system administrator
D.
Security system administrator
Answers
Suggested answer: B

Explanation:

Reference: https://resources.infosecinstitute.com/certification/data-and-system-ownership/

Question 428

Report
Export
Collapse

What does RACI stand for?

A.
Reasonable, Actionable, Controlled, and Implemented
A.
Reasonable, Actionable, Controlled, and Implemented
Answers
B.
Responsible, Actors, Consult, and Instigate
B.
Responsible, Actors, Consult, and Instigate
Answers
C.
Responsible, Accountable, Consulted, and Informed
C.
Responsible, Accountable, Consulted, and Informed
Answers
D.
Review, Act, Communicate, and Inform
D.
Review, Act, Communicate, and Inform
Answers
Suggested answer: C

Explanation:

Reference:

https://www.google.com/search?q=What+does+RACI+stand+for&oq=What+does+RACI+stand+for&aqs=edge..69i57.220j0j4&sourceid=chrome&ie=UTF-8

Question 429

Report
Export
Collapse

What key technology can mitigate ransomware threats?

A.
Use immutable data storage
A.
Use immutable data storage
Answers
B.
Phishing exercises
B.
Phishing exercises
Answers
C.
Application of multiple end point anti-malware solutions
C.
Application of multiple end point anti-malware solutions
Answers
D.
Blocking use of wireless networks
D.
Blocking use of wireless networks
Answers
Suggested answer: A

Explanation:

Reference: https://cloud.google.com/blog/products/identity-security/5-pillars-of-protection-toprevent-ransomware-attacks

Question 430

Report
Export
Collapse

Which of the following are the triple constraints of project management?

A.
Time, quality, and scope
A.
Time, quality, and scope
Answers
B.
Cost, quality, and time
B.
Cost, quality, and time
Answers
C.
Scope, time, and cost
C.
Scope, time, and cost
Answers
D.
Quality, scope, and cost
D.
Quality, scope, and cost
Answers
Suggested answer: C

Explanation:

Reference: https://www.teamgantt.com/blog/triple-constraint-projectmanagement#:~:text=Each%20side%20or%20point%20of,scope%2C%20time%2C%20and%20cost

Total 460 questions
Go to page: of 46
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms