ISO-ISMS-LA試験無料問題集（99題）「GAQM ISO 27001 : 2013 ISMS

出題：1

-------------------------is an asset like other important business assets has value to an organization and consequently needs to be protected.

A. Information

B. Data

C. Security

D. Infrastructure

正解：A 解答を投票する

出題：2

A property of Information that has the ability to prove occurrence of a claimed event.

A. Integrity

B. Accessibility

C. Electronic chain letters

D. Availability

正解：A 解答を投票する

出題：3

A scenario wherein the city or location where the building(s) reside is / are not accessible.

A. Facility

B. Component

C. City

D. Country

正解：C 解答を投票する

出題：4

Which threat could occur if no physical measures are taken?

A. Hackers entering the corporate network

B. A server shutting down because of overheating

C. Confidential prints being left on the printer

D. Unauthorised persons viewing sensitive files

正解：B 解答を投票する

出題：5

What is a definition of compliance?

A. Laws, considered collectively or the process of making or enacting laws

B. The state or fact of according with or meeting rules or standards

C. A rule or directive made and maintained by an authority.

D. An official or authoritative instruction

正解：B 解答を投票する

出題：6

As a new member of the IT department you have noticed that confidential information has been leaked several times. This may damage the reputation of the company. You have been asked to propose an organisational measure to protect laptop computers. What is the first step in a structured approach to come up with this measure?

A. Set up an access control procedure

B. Appoint security staff

C. Encrypt all sensitive information

D. Formulate a policy

正解：D 解答を投票する

出題：7

Which of the following is not a type of Information Security attack?

A. Vehicular Incidents

B. Technical Vulnerabilities

C. Legal Incidents

D. Privacy Incidents

正解：A 解答を投票する

出題：8

You have a hard copy of a customer design document that you want to dispose off. What would you do

A. Give it to the office boy to reuse it for other purposes

B. Throw it in any dustbin

C. Be environment friendly and reuse it for writing

D. Shred it using a shredder

正解：D 解答を投票する

出題：9

You receive an E-mail from some unknown person claiming to be representative of your bank and asking for your account number and password so that they can fix your account. Such an attempt of social engineering is called

A. Spoofing

B. Mountaineering

C. Shoulder Surfing

D. Phishing

正解：D 解答を投票する

出題：10

What is a reason for the classification of information?

A. To provide clear identification tags

B. To structure the information according to its sensitivity

C. Creating a manual describing the BYOD policy

正解：B 解答を投票する

ISO-ISMS-LA試験無料問題集「GAQM ISO 27001 : 2013 ISMS - Certified Lead Auditor 認定」