EXIN Information Security Foundation based on ISO/IEC 27002 - EX0-105 FREE EXAM DUMPS QUESTIONS & ANSWERS]

Question 1

What do employees need to know to report a security incident?

A. How to report an incident and to whom. B. Who is responsible for the incident and whether it was intentional. C. Whether the incident has occurred before and what was the resulting damage. D. The measures that should have been taken to prevent the incident in the first place.

Discussion 0

Correct Answer: A Vote an answer

Question 2

You work in the office of a large company. You receive a call from a person claiming to be from the Helpdesk. He asks you for your password. What kind of threat is this?

A. Social Engineering B. Organizational threat C. Natural threat

Discussion 0

Correct Answer: A Vote an answer

Question 3

A hacker gains access to a webserver and deletes a file on the server containing credit card numbers.
Which of the Confidentiality, Integrity, Availability (CIA) principles of the credit card file are violated?

A. Availability B. Integrity C. Confidentiality

Discussion 0

Correct Answer: A Vote an answer

Question 4

There was a fire in a branch of the company Midwest Insurance. The fire department quickly arrived at the scene and could extinguish the fire before it spread and burned down the entire premises. The server, however, was destroyed in the fire. The backup tapes kept in another room had melted and many other documents were lost for good. What is an example of the indirect damage caused by this fire?

A. Water damage due to the fire extinguishers B. Burned computer systems C. Melted backup tapes D. Burned documents

Discussion 0

Correct Answer: A Vote an answer

Question 5

An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry date of a contract with one of the clients is earlier than the start date. What type of measure could prevent this error?

A. Technical measure B. Availability measure C. Integrity measure D. Organizational measure

Discussion 0

Correct Answer: A Vote an answer

Question 6

You own a small company in a remote industrial area. Lately, the alarm regularly goes off in the middle of the night. It takes quite a bit of time to respond to it and it seems to be a false alarm every time. You decide to set up a hidden camera. What is such a measure called?

A. Repressive measure B. Detective measure C. Preventive measure

Discussion 0

Correct Answer: B Vote an answer

Question 7

A Dutch company is processing information from Dutch civilians; this implies applicability of some Dutch regulations regarding the privacy of these civilians. The company is mandated to implement security measures.
Which measure helps the company best in proving compliance with applicable regulations?

A. Handing over the Non disclosure agreements (NDAs) that are signed by all employees. B. Installing a firewall to limit the access to the server. C. Handing over the results of a security audit. D. The execution of a penetration test on the server processing the sensitive information.

Discussion 0

Correct Answer: C Vote an answer

Question 8

During a risk analysis a system administrator mentions that due to the lack of communication between Human recourses management (HRM) and system administrators, employees can still access the company server from home even if they are no longer employed by the company.
Which characteristic of a risk is missing here?

A. Business impact B. Security control C. Threat agent D. Vulnerability

Discussion 0

Correct Answer: A Vote an answer