ExamGecko
Search Search Login
Home Home / ECCouncil / 712-50

ECCouncil 712-50 Practice Test - Questions Answers, Page 46

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

What is an approach to estimating the strengths and weaknesses of alternatives used to determine options, which provide the BEST approach to achieving benefits while preserving savings called?
The Security Operations Center (SOC) just purchased a new intrusion prevention system (IPS) that needs to be deployed in-line for best defense. The IT group is concerned about putting the new IPS in-line because it might negatively impact network availability. What would be the BEST approach for the CISO to reassure the IT group?
When measuring the effectiveness of an Information Security Management System which one of the following would be MOST LIKELY used as a metric framework?
As the CISO, you are the project sponsor for a highly visible log management project. The objective of the project is to centralize all the enterprise logs into a security information and event management (SIEM) system. You requested the results of the performance quality audits activity. The performance quality audit activity is done in what project management process group?
To make sure that the actions of all employees, applications, and systems follow the organization's rules and regulations can BEST be described as which of the following?
An organization licenses and uses personal information for business operations, and a server containing that information has been compromised. What kind of law would require notifying the owner or licensee of this incident?
When managing the security architecture for your company you must consider:
A Security Operations Manager is finding it difficult to maintain adequate staff levels to monitor security operations during off-hours. To reduce the impact of staff shortages and increase coverage during off-hours, the SecOps manager is considering outsourcing off-hour coverage. What Security Operations Center (SOC) model does this BEST describe?
You have been hired as the Information System Security Officer (ISSO) for a US federal government agency. Your role is to ensure the security posture of the system is maintained. One of your tasks is to develop and maintain the system security plan (SSP) and supporting documentation. Which of the following is NOT documented in the SSP?
A security professional has been promoted to be the CISO of an organization. The first task is to create a security policy for this organization. The CISO creates and publishes the security policy. This policy however, is ignored and not enforced consistently. Which of the following is the MOST likely reason for the policy shortcomings?

Question 451

Report
Export
Collapse

A company wants to fill a Chief Information Security Officer position. Which of the following qualifications and experience would be MOST desirable in a candidate?

A.
Multiple certifications, strong technical capabilities and lengthy resume
A.
Multiple certifications, strong technical capabilities and lengthy resume
Answers
B.
Industry certifications, technical knowledge and program management skills
B.
Industry certifications, technical knowledge and program management skills
Answers
C.
College degree, audit capabilities and complex project management
C.
College degree, audit capabilities and complex project management
Answers
D.
Multiple references, strong background check and industry certifications
D.
Multiple references, strong background check and industry certifications
Answers
Suggested answer: B

Question 452

Report
Export
Collapse

What is the THIRD state of the Tuckman Stages of Group Development?

A.
Performing
A.
Performing
Answers
B.
Norming
B.
Norming
Answers
C.
Storming
C.
Storming
Answers
D.
Forming
D.
Forming
Answers
Suggested answer: B

Question 453

Report
Export
Collapse

A CISO decides to analyze the IT infrastructure to ensure security solutions adhere to organizational implementation and management requirements. Which of the following principles does this BEST demonstrate?

A.
Proper budget management
A.
Proper budget management
Answers
B.
Leveraging existing implementations
B.
Leveraging existing implementations
Answers
C.
Alignment with the business
C.
Alignment with the business
Answers
D.
Effective use of existing technologies
D.
Effective use of existing technologies
Answers
Suggested answer: C

Question 454

Report
Export
Collapse

Which of the following is the MOST important to share with an Information Security Steering Committee:

A.
Include a mix of members from different departments and staff levels
A.
Include a mix of members from different departments and staff levels
Answers
B.
Review audit and compliance reports
B.
Review audit and compliance reports
Answers
C.
Ensure that security policies and procedures have been vetted and approved
C.
Ensure that security policies and procedures have been vetted and approved
Answers
D.
Be briefed about new trends and products at each meeting by a vendor
D.
Be briefed about new trends and products at each meeting by a vendor
Answers
Suggested answer: B

Question 455

Report
Export
Collapse

You have been promoted to the CISO of a retail store. Which of the following compliance standards is the MOST important to the organization?

A.
Payment Card Industry (PCI) Data Security Standard (DSS)
A.
Payment Card Industry (PCI) Data Security Standard (DSS)
Answers
B.
ISO 27002
B.
ISO 27002
Answers
C.
NIST Cybersecurity Framework
C.
NIST Cybersecurity Framework
Answers
D.
The Federal Risk and Authorization Management Program (FedRAMP)
D.
The Federal Risk and Authorization Management Program (FedRAMP)
Answers
Suggested answer: A

Question 456

Report
Export
Collapse

Which of the following provides the BEST approach to achieving positive outcomes while preserving savings?

A.
Business Impact Analysis
A.
Business Impact Analysis
Answers
B.
Cost-benefit analysis
B.
Cost-benefit analysis
Answers
C.
Economic impact analysis
C.
Economic impact analysis
Answers
D.
Return on Investment
D.
Return on Investment
Answers
Suggested answer: B

Question 457

Report
Export
Collapse

The alerting, monitoring, and lifecycle management of security-related events are typically managed by the:

A.
Security controls group
A.
Security controls group
Answers
B.
Governance, risk, and compliance tools
B.
Governance, risk, and compliance tools
Answers
C.
Security Threat and vulnerability management process
C.
Security Threat and vulnerability management process
Answers
D.
Risk assessment process
D.
Risk assessment process
Answers
Suggested answer: C

Question 458

Report
Export
Collapse

Many successful cyber-attacks currently include:

A.
Phishing Attacks
A.
Phishing Attacks
Answers
B.
Misconfigurations
B.
Misconfigurations
Answers
C.
All of these
C.
All of these
Answers
D.
Social engineering
D.
Social engineering
Answers
Suggested answer: C

Question 459

Report
Export
Collapse

What is the purpose of the statement of retained earnings of an organization?

A.
It represents the sum of all capital expenditures
A.
It represents the sum of all capital expenditures
Answers
B.
It represents the percentage of earnings that could in part be used to finance future security controls
B.
It represents the percentage of earnings that could in part be used to finance future security controls
Answers
C.
It represents the savings generated by the proper acquisition and implementation of security controls
C.
It represents the savings generated by the proper acquisition and implementation of security controls
Answers
D.
It has a direct correlation with the CISO's budget
D.
It has a direct correlation with the CISO's budget
Answers
Suggested answer: B

Question 460

Report
Export
Collapse

Which of the following is considered the MOST effective tool against social engineering?

A.
Anti-phishing tools
A.
Anti-phishing tools
Answers
B.
Effective Security awareness program
B.
Effective Security awareness program
Answers
C.
Anti-malware tools
C.
Anti-malware tools
Answers
D.
Effective Security Vulnerability Management Program
D.
Effective Security Vulnerability Management Program
Answers
Suggested answer: B
Total 460 questions
Go to page: of 46
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms