Advance Your Career by Using Online 712-50 Dumps

Category:

Comments:

0 Comments

Post Date:

March 11, 2025

Obtaining the CCISO Certification 712-50 certification can help you demonstrate your expertise in EC-Council solutions and advance your career in related industry. Using 712-50 dumps as part of your study plan can help you identify knowledge gaps, improve your exam-taking skills, provide immediate feedback, and increase your chances of passing the 712-50 exam. EC-Council 712-50 exam free dumps questions are available below.

Page 1 of 12

1. What is one key difference between Capital expenditures and Operating expenditures?

Operating expense cannot be written off while Capital expense can

Operating expenses can be depreciated over time and Capital expenses cannot

Capital expenses cannot include salaries and Operating expenses can

Capital expenditures allow for the cost to be depreciated over time and Operating does not

2. The patching and monitoring of systems on a consistent schedule is required by?

Local privacy laws

Industry best practices

Risk Management frameworks

Audit best practices

3. SCENARIO: Critical servers show signs of erratic behavior within your organization’s intranet. Initial information indicates the systems are under attack from an outside entity. As the Chief Information Security Officer (CISO), you decide to deploy the Incident Response Team (IRT) to determine the details of this incident and take action according to the information available to the team.

What phase of the response provides measures to reduce the likelihood of an incident from recurring?

Response

Investigation

Recovery

Follow-up

4. Which of the following is the MOST important reason to measure the effectiveness of an Information Security Management System (ISMS)?

Meet regulatory compliance requirements

Better understand the threats and vulnerabilities affecting the environment

Better understand strengths and weaknesses of the program

Meet legal requirements

5. Control Objectives for Information and Related Technology (COBIT) is which of the following?

An Information Security audit standard

An audit guideline for certifying secure systems and controls

A framework for Information Technology management and governance

A set of international regulations for Information Technology governance

6. Which of the following best describes the purpose of the International Organization for Standardization (ISO) 27002 standard?

To give information security management recommendations to those who are responsible for initiating, implementing, or maintaining security in their organization.

To provide a common basis for developing organizational security standards

To provide effective security management practice and to provide confidence in inter-organizational dealings

To established guidelines and general principles for initiating, implementing, maintaining, and improving information security management within an organization

7. A stakeholder is a person or group:

Vested in the success and/or failure of a project or initiative regardless of budget implications.

Vested in the success and/or failure of a project or initiative and is tied to the project budget.

That has budget authority.

That will ultimately use the system.

8. A digital signature addresses which of the following concerns?

Message alteration

Message copying

Message theft

Unauthorized reading

9. Scenario: An organization has made a decision to address Information Security formally and consistently by adopting established best practices and industry standards. The organization is a small retail merchant but it is expected to grow to a global customer base of many millions of customers in just a few years.

Which of the following would be the FIRST step when addressing Information Security formally and consistently in this organization?

Contract a third party to perform a security risk assessment

Define formal roles and responsibilities for Internal audit functions

Define formal roles and responsibilities for Information Security

Create an executive security steering committee

10. Scenario: The new CISO was informed of all the Information Security projects that the section has in progress. Two projects are over a year behind schedule and way over budget.

Which of the following will be most helpful for getting an Information Security project that is behind schedule back on schedule?

Upper management support

More frequent project milestone meetings

More training of staff members

Involve internal audit

Page 2 of 12

11. Which of the following is MOST likely to be discretionary?

Policies

Procedures

Guidelines

Standards

12. The implementation of anti-malware and anti-phishing controls on centralized email servers is an example of what type of security control?

Organization control

Procedural control

Management control

Technical control

13. SCENARIO: A CISO has several two-factor authentication systems under review and selects the one that is most sufficient and least costly. The implementation project planning is completed and the teams are ready to implement the solution. The CISO then discovers that the product it is not as scalable as originally thought and will not fit the organization’s needs.

The CISO is unsure of the information provided and orders a vendor proof of concept to validate the system’s scalability.

This demonstrates which of the following?

An approach that allows for minimum budget impact if the solution is unsuitable

A methodology-based approach to ensure authentication mechanism functions

An approach providing minimum time impact to the implementation schedules

A risk-based approach to determine if the solution is suitable for investment

14. Knowing the potential financial loss an organization is willing to suffer if a system fails is a determination of which of the following?

Cost benefit

Risk appetite

Business continuity

Likelihood of impact

15. An organization has a stated requirement to block certain traffic on networks. The implementation of controls will disrupt a manufacturing process and cause unacceptable delays, resulting in sever revenue disruptions.

Which of the following is MOST likely to be responsible for accepting the risk until mitigating controls can be implemented?

The CISO

Audit and Compliance

The CFO

The business owner

16. A CISO has implemented a risk management capability within the security portfolio.

Which of the following terms best describes this functionality?

Service

Program

Portfolio

Cost center

17. The Security Operations Center (SOC) just purchased a new intrusion prevention system (IPS) that needs to be deployed in-line for best defense. The IT group is concerned about putting the new IPS in-line because it might negatively impact network availability.

What would be the BEST approach for the CISO to reassure the IT group?

Work with the IT group and tell them to put IPS in-line and say it won’t cause any network impact

Explain to the IT group that the IPS won’t cause any network impact because it will fail open

Explain to the IT group that this is a business need and the IPS will fail open however, if there is a network failure the CISO will accept responsibility

Explain to the IT group that the IPS will fail open once in-line however it will be deployed in monitor mode for a set period of time to ensure that it doesn’t block any legitimate traffic

18. In accordance with best practices and international standards, how often is security awareness training provided to employees of an organization?

High risk environments 6 months, low risk environments 12 months

Every 12 months

Every 18 months

Every six months

19. When analyzing and forecasting an operating expense budget what are not included?

Software and hardware license fees

Utilities and power costs

Network connectivity costs

New datacenter to operate from

20. After a risk assessment is performed, a particular risk is considered to have the potential of costing the organization 1.2 Million USD.

This is an example of

Risk Tolerance

Qualitative risk analysis

Risk Appetite

Quantitative risk analysis

Page 3 of 12

21. From an information security perspective, information that no longer supports the main purpose of the business should be:

assessed by a business impact analysis.

protected under the information classification policy.

analyzed under the data ownership policy.

analyzed under the retention policy

22. SCENARIO: A CISO has several two-factor authentication systems under review and selects the one that is most sufficient and least costly. The implementation project planning is completed and the teams are ready to implement the solution. The CISO then discovers that the product it is not as scalable as originally thought and will not fit the organization’s needs.

The CISO discovers the scalability issue will only impact a small number of network segments.

What is the next logical step to ensure the proper application of risk management methodology within the two-facto implementation project?

Create new use cases for operational use of the solution

Determine if sufficient mitigating controls can be applied

Decide to accept the risk on behalf of the impacted business units

Report the deficiency to the audit team and create process exceptions

23. Which of the following terms is used to describe countermeasures implemented to minimize risks to physical property, information, and computing systems?

Security frameworks

Security policies

Security awareness

Security controls

24. Scenario: You are the newly hired Chief Information Security Officer for a company that has not previously had a senior level security practitioner. The company lacks a defined security policy and framework for their Information Security Program. Your new boss, the Chief Financial Officer, has asked you to draft an outline of a security policy and recommend an industry/sector neutral information security control framework for implementation.

Which of the following industry / sector neutral information security control frameworks should you recommend for implementation?

National Institute of Standards and Technology (NIST) Special Publication 800-53

Payment Card Industry Digital Security Standard (PCI DSS)

International Organization for Standardization C ISO 27001/2

British Standard 7799 (BS7799)

25. You work as a project manager for TYU project. You are planning for risk mitigation. You need to quickly identify high-level risks that will need a more in-depth analysis.

Which of the following activities will help you in this?

Qualitative analysis

Quantitative analysis

Risk mitigation

Estimate activity duration

26. When deploying an Intrusion Prevention System (IPS) the BEST way to get maximum protection from the system is to deploy it

In promiscuous mode and only detect malicious traffic.

In-line and turn on blocking mode to stop malicious traffic.

In promiscuous mode and block malicious traffic.

In-line and turn on alert mode to stop malicious traffic.

27. Which of the following is MOST important when tuning an Intrusion Detection System (IDS)?

Trusted and untrusted networks

Type of authentication

Storage encryption

Log retention

28. You have recently drafted a revised information security policy.

From whom should you seek endorsement in order to have the GREATEST chance for adoption and implementation throughout the entire organization?

Chief Information Security Officer

Chief Executive Officer

Chief Information Officer

Chief Legal Counsel

29. Scenario: You are the newly hired Chief Information Security Officer for a company that has not previously had a senior level security practitioner. The company lacks a defined security policy and framework for their Information Security Program. Your new boss, the Chief Financial Officer, has asked you to draft an outline of a security policy and recommend an industry/sector neutral information security control framework for implementation.

Your Corporate Information Security Policy should include which of the following?

Information security theory

Roles and responsibilities

Incident response contacts

Desktop configuration standards

30. The ultimate goal of an IT security projects is:

Increase stock value

Complete security

Support business requirements

Implement information security policies

Page 4 of 12

31. An organization has defined a set of standard security controls. This organization has also defined the circumstances and conditions in which they must be applied.

What is the NEXT logical step in applying the controls in the organization?

Determine the risk tolerance

Perform an asset classification

Create an architecture gap analysis

Analyze existing controls on systems

32. Scenario: Most industries require compliance with multiple government regulations and/or industry standards to meet data protection and privacy mandates.

What is one proven method to account for common elements found within separate regulations and/or standards?

Hire a GRC expert

Use the Find function of your word processor

Design your program to meet the strictest government standards

Develop a crosswalk

33. In MOST organizations which group periodically reviews network intrusion detection system logs for all systems as part of their daily tasks?

Internal Audit

Database Administration

Information Security

Compliance

34. The success of the Chief Information Security Officer is MOST dependent upon:

favorable audit findings

following the recommendations of consultants and contractors

development of relationships with organization executives

raising awareness of security issues with end users

35. An example of professional unethical behavior is:

Gaining access to an affiliated employee’s work email account as part of an officially sanctioned internal investigation

Sharing copyrighted material with other members of a professional organization where all members have legitimate access to the material

Copying documents from an employer’s server which you assert that you have an intellectual property claim to possess, but the company disputes

Storing client lists and other sensitive corporate internal documents on a removable thumb drive

36. Which of the following set of processes is considered to be one of the cornerstone cycles of the International Organization for Standardization (ISO) 27001 standard?

Plan-Check-Do-Act

Plan-Do-Check-Act

Plan-Select-Implement-Evaluate

SCORE (Security Consensus Operational Readiness Evaluation)

37. Which of the following is a primary method of applying consistent configurations to IT systems?

Audits

Administration

Patching

Templates

38. Information Security is often considered an excessive, after-the-fact cost when a project or initiative is completed.

What can be done to ensure that security is addressed cost effectively?

User awareness training for all employees

Installation of new firewalls and intrusion detection systems

Launch an internal awareness campaign

Integrate security requirements into project inception

39. Your incident handling manager detects a virus attack in the network of your company. You develop a signature based on the characteristics of the detected virus.

Which of the following phases in the incident handling process will utilize the signature to resolve this incident?

Containment

Recovery

Identification

Eradication

40. Which of the following international standards can be BEST used to define a Risk Management process in an organization?

National Institute for Standards and Technology 800-50 (NIST 800-50)

International Organization for Standardizations C 27005 (ISO-27005)

Payment Card Industry Data Security Standards (PCI-DSS)

International Organization for Standardizations C 27004 (ISO-27004)

Page 5 of 12

41. An application vulnerability assessment has identified a security flaw in an application. This is a flaw that was previously identified and remediated on a prior release of the application.

Which of the following is MOST likely the reason for this recurring issue?

Ineffective configuration management controls

Lack of change management controls

Lack of version/source controls

High turnover in the application development department

42. Involvement of senior management is MOST important in the development of:

IT security implementation plans.

Standards and guidelines.

IT security policies.

IT security procedures.

43. Scenario: Your corporate systems have been under constant probing and attack from foreign IP addresses for more than a week. Your security team and security infrastructure have performed well under the stress. You are confident that your defenses have held up under the test, but rumors are spreading that sensitive customer data has been stolen and is now being sold on the Internet by criminal elements. During your investigation of the rumored compromise you discover that data has been breached and you have discovered the repository of stolen data on a server located in a foreign country. Your team now has full access to the data on the foreign server.

Your defenses did not hold up to the test as originally thought. As you investigate how the data was compromised through log analysis you discover that a hardworking, but misguided business intelligence analyst posted the data to an obfuscated URL on a popular cloud storage service so they could work on it from home during their off-time.

Which technology or solution could you deploy to prevent employees from removing corporate data from your network? Choose the BEST answer.

Security Guards posted outside the Data Center

Data Loss Prevention (DLP)

Rigorous syslog reviews

Intrusion Detection Systems (IDS)

44. An employee successfully avoids becoming a victim of a sophisticated spear phishing attack due to knowledge gained through the corporate information security awareness program.

What type of control has been effectively utilized?

Management Control

Technical Control

Training Control

Operational Control

45. An information security department is required to remediate system vulnerabilities when they are discovered. Please select the three primary remediation methods that can be used on an affected system.

Install software patch, Operate system, Maintain system

Discover software, Remove affected software, Apply software patch

Install software patch, configuration adjustment, Software Removal

Software removal, install software patch, maintain system

46. When entering into a third party vendor agreement for security services, at what point in the process is it BEST to understand and validate the security posture and compliance level of the vendor?

At the time the security services are being performed and the vendor needs access to the network

Once the agreement has been signed and the security vendor states that they will need access to the network

Once the vendor is on premise and before they perform security services

Prior to signing the agreement and before any security services are being performed

47. A person in your security team calls you at night and informs you that one of your web applications is potentially under attack from a cross-site scripting vulnerability.

What do you do?

tell him to shut down the server

tell him to call the police

tell him to invoke the incident response process

tell him to analyze the problem, preserve the evidence and provide a full analysis and report

48. The executive board has requested that the CISO of an organization define and Key Performance Indicators (KPI) to measure the effectiveness of the security awareness program provided to call center employees.

Which of the following can be used as a KPI?

Number of callers who report security issues.

Number of callers who report a lack of customer service from the call center

Number of successful social engineering attempts on the call center

Number of callers who abandon the call before speaking with a representative

49. Scenario: Your company has many encrypted telecommunications links for their world-wide operations. Physically distributing symmetric keys to all locations has proven to be administratively burdensome, but symmetric keys are preferred to other alternatives.

Symmetric encryption in general is preferable to asymmetric encryption when:

The number of unique communication links is large

The volume of data being transmitted is small

The speed of the encryption / deciphering process is essential

The distance to the end node is farthest away

50. The effectiveness of an audit is measured by?

The number of actionable items in the recommendations

How it exposes the risk tolerance of the company

How the recommendations directly support the goals of the company

The number of security controls the company has in use

Page 6 of 12

51. Gaining Access

4, 2, 5, 3, 1

2, 5, 3, 1, 4

4, 5, 2, 3, 1

4, 3, 5, 2, 1

52. Providing oversight of a comprehensive information security program for the entire organization is the primary responsibility of which group under the InfoSec governance framework?

Senior Executives

Office of the Auditor

Office of the General Counsel

All employees and users

53. Your penetration testing team installs an in-line hardware key logger onto one of your network machines.

Which of the following is of major concern to the security organization?

In-line hardware keyloggers don’t require physical access

In-line hardware keyloggers don’t comply to industry regulations

In-line hardware keyloggers are undetectable by software

In-line hardware keyloggers are relatively inexpensive

54. A CISO sees abnormally high volumes of exceptions to security requirements and constant pressure from business units to change security processes.

Which of the following represents the MOST LIKELY cause of this situation?

Poor audit support for the security program

A lack of executive presence within the security program

Poor alignment of the security program to business needs

This is normal since business units typically resist security requirements

55. The company decides to release the application without remediating the high-risk vulnerabilities.

Which of the following is the MOST likely reason for the company to release the application?

The company lacks a risk management process

The company does not believe the security vulnerabilities to be real

The company has a high risk tolerance

The company lacks the tools to perform a vulnerability assessment

56. What two methods are used to assess risk impact?

Cost and annual rate of expectance

Subjective and Objective

Qualitative and percent of loss realized

Quantitative and qualitative

57. A newly-hired CISO needs to understand the organization’s financial management standards for business units and operations.

Which of the following would be the best source of this information?

The internal accounting department

The Chief Financial Officer (CFO)

The external financial audit service

The managers of the accounts payables and accounts receivables teams

58. When gathering security requirements for an automated business process improvement program, which of the following is MOST important?

Type of data contained in the process/system

Type of connection/protocol used to transfer the data

Type of encryption required for the data once it is at rest

Type of computer the data is processed on

59. Which of the following is MOST useful when developing a business case for security initiatives?

Budget forecasts

Request for proposals

Cost/benefit analysis

Vendor management

60. Which of the following is considered to be an IT governance framework and a supporting toolset that allows for managers to bridge the gap between control requirements, technical issues, and business risks?

Control Objective for Information Technology (COBIT)

Committee of Sponsoring Organizations (COSO)

Payment Card Industry (PCI)

Information Technology Infrastructure Library (ITIL)

Page 7 of 12

61. Which of the following are necessary to formulate responses to external audit findings?

Internal Audit, Management, and Technical Staff

Internal Audit, Budget Authority, Management

Technical Staff, Budget Authority, Management

Technical Staff, Internal Audit, Budget Authority

62. A newly appointed security officer finds data leakage software licenses that had never been used. The officer decides to implement a project to ensure it gets installed, but the project gets a great deal of resistance across the organization.

Which of the following represents the MOST likely reason for this situation?

The software license expiration is probably out of synchronization with other software licenses

The project was initiated without an effort to get support from impacted business units in the organization

The software is out of date and does not provide for a scalable solution across the enterprise

The security officer should allow time for the organization to get accustomed to her presence before initiating security projects

63. Who in the organization determines access to information?

Legal department

Compliance officer

Data Owner

Information security officer

64. Which of the following represents the BEST method for obtaining business unit acceptance of security controls within an organization?

Allow the business units to decide which controls apply to their systems, such as the encryption of sensitive data

Create separate controls for the business units based on the types of business and functions they perform

Ensure business units are involved in the creation of controls and defining conditions under which they must be applied

Provide the business units with control mandates and schedules of audits for compliance validation

65. How often should the Statements of Standards for Attestation Engagements-16 (SSAE16)/International Standard on Assurance Engagements 3402 (ISAE3402) report of your vendors be reviewed?

Quarterly

Semi-annually

Bi-annually

Annually

66. To get an Information Security project back on schedule, which of the following will provide the MOST help?

Upper management support

More frequent project milestone meetings

Stakeholder support

Extend work hours

67. Scenario: An organization has made a decision to address Information Security formally and consistently by adopting established best practices and industry standards. The organization is a small retail merchant but it is expected to grow to a global customer base of many millions of customers in just a few years.

Which of the following frameworks and standards will BEST fit the organization as a baseline for their security program?

NIST and Privacy Regulations

ISO 27000 and Payment Card Industry Data Security Standards

NIST and data breach notification laws

ISO 27000 and Human resources best practices

68. The PRIMARY objective of security awareness is to:

Ensure that security policies are read.

Encourage security-conscious employee behavior.

Meet legal and regulatory requirements.

Put employees on notice in case follow-up action for noncompliance is necessary

69. Regulatory requirements typically force organizations to implement

Mandatory controls

Discretionary controls

Optional controls

Financial controls

70. Which of the following activities results in change requests?

Preventive actions

Inspection

Defect repair

Corrective actions

Page 8 of 12

71. Which technology can provide a computing environment without requiring a dedicated hardware backend?

Mainframe server

Virtual Desktop

Thin client

Virtual Local Area Network

72. Scenario: Most industries require compliance with multiple government regulations and/or industry standards to meet data protection and privacy mandates.

When multiple regulations or standards apply to your industry you should set controls to meet the:

Easiest regulation or standard to implement

Stricter regulation or standard

Most complex standard to implement

Recommendations of your Legal Staff

73. The process for management approval of the security certification process which states the risks and mitigation of such risks of a given IT system is called

Security certification

Security system analysis

Security accreditation

Alignment with business practices and goals.

74. The PRIMARY objective for information security program development should be:

Reducing the impact of the risk to the business.

Establishing strategic alignment with bunsiness continuity requirements

Establishing incident response programs.

Identifying and implementing the best security solutions.

75. Bob waits near a secured door, holding a box. He waits until an employee walks up to the secured door and uses the special card in order to access the restricted area of the target company. Just as the employee opens the door, Bob walks up to the employee (still holding the box) and asks the employee to hold the door open so that he can enter.

What is the best way to undermine the social engineering activity of tailgating?

Post a sign that states, “no tailgating” next to the special card reader adjacent to the secure door

Issue special cards to access secure doors at the company and provide a one-time only brief description of use of the special card

Educate and enforce physical security policies of the company to all the employees on a regular basis

Setup a mock video camera next to the special card reader adjacent to the secure door

76. A recommended method to document the respective roles of groups and individuals for a given process is to:

Develop a detailed internal organization chart

Develop a telephone call tree for emergency response

Develop an isolinear response matrix with cost benefit analysis projections

Develop a Responsible, Accountable, Consulted, Informed (RACI) chart

77. Simon had all his systems administrators implement hardware and software firewalls to ensure network security. They implemented IDS/IPS systems throughout the network to check for and stop any unauthorized traffic that may attempt to enter. Although Simon and his administrators believed they were secure, a hacker group was able to get into the network and modify files hosted on the company's website. After searching through the firewall and server logs, no one could find how the attackers were able to get in. He decides that the entire network needs to be monitored for critical and essential file changes. This monitoring tool alerts administrators when a critical file is altered.

What tool could Simon and his administrators implement to

accomplish this?

They need to use Nessus.

They can implement Wireshark.

Snort is the best tool for their situation.

They could use Tripwire.

78. When a critical vulnerability has been discovered on production systems and needs to be fixed immediately, what is the BEST approach for a CISO to mitigate the vulnerability under tight budget constraints?

Transfer financial resources from other critical programs

Take the system off line until the budget is available

Deploy countermeasures and compensating controls until the budget is available

Schedule an emergency meeting and request the funding to fix the issue

79. Credit card information, medical data, and government records are all examples of:

Confidential/Protected Information

Bodily Information

Territorial Information

Communications Information

80. Your company has limited resources to spend on security initiatives. The Chief Financial Officer asks you to prioritize the protection of information resources based on their value to the company. It is essential that you be able to communicate in language that your fellow executives will understand.

You should:

Create timelines for mitigation

Develop a cost-benefit analysis

Calculate annual loss expectancy

Create a detailed technical executive summary

Page 9 of 12

81. Which of the following best summarizes the primary goal of a security program?

Provide security reporting to all levels of an organization

Create effective security awareness to employees

Manage risk within the organization

Assure regulatory compliance

82. You have implemented a new security control.

Which of the following risk strategy options have you engaged in?

Risk Avoidance

Risk Acceptance

Risk Transfer

Risk Mitigation

83. The MOST common method to get an unbiased measurement of the effectiveness of an Information Security Management System (ISMS) is to

assign the responsibility to the information security team.

assign the responsibility to the team responsible for the management of the controls.

create operational reports on the effectiveness of the controls.

perform an independent audit of the security controls.

84. In order for a CISO to have true situational awareness there is a need to deploy technology that can give a real-time view of security events across the enterprise.

Which tool selection represents the BEST choice to achieve situational awareness?

Vmware, router, switch, firewall, syslog, vulnerability management system (VMS)

Intrusion Detection System (IDS), firewall, switch, syslog

Security Incident Event Management (SIEM), IDS, router, syslog

SIEM, IDS, firewall, VMS

85. You manage a newly created Security Operations Center (SOC), your team is being inundated with security alerts and don’t know what to do.

What is the BEST approach to handle this situation?

Tell the team to do their best and respond to each alert

Tune the sensors to help reduce false positives so the team can react better

Request additional resources to handle the workload

Tell the team to only respond to the critical and high alerts

86. Which of the following activities must be completed BEFORE you can calculate risk?

Determining the likelihood that vulnerable systems will be attacked by specific threats

Calculating the risks to which assets are exposed in their current setting

Assigning a value to each information asset

Assessing the relative risk facing the organization’s information assets

87. Within an organization’s vulnerability management program, who has the responsibility to implement remediation actions?

Security officer

Data owner

Vulnerability engineer

System administrator

88. Risk that remains after risk mitigation is known as

Persistent risk

Residual risk

Accepted risk

Non-tolerated risk

89. What is the definition of Risk in Information Security?

Risk = Probability x Impact

Risk = Threat x Probability

Risk = Financial Impact x Probability

Risk = Impact x Threat

90. The formal certification and accreditation process has four primary steps, what are they?

Evaluating, describing, testing and authorizing

Evaluating, purchasing, testing, authorizing

Auditing, documenting, verifying, certifying

Discovery, testing, authorizing, certifying

Page 10 of 12

91. SCENARIO: A Chief Information Security Officer (CISO) recently had a third party conduct an audit of the security program. Internal policies and international standards were used as audit baselines. The audit report was presented to the CISO and a variety of high, medium and low rated gaps were identified.

After determining the audit findings are accurate, which of the following is the MOST logical next activity?

Begin initial gap remediation analyses

Review the security organization’s charter

Validate gaps with the Information Technology team

Create a briefing of the findings for executive management

92. Assigning the role and responsibility of Information Assurance to a dedicated and independent security group is an example of:

Detective Controls

Proactive Controls

Preemptive Controls

Organizational Controls

93. The security team has investigated the theft/loss of several unencrypted laptop computers containing sensitive corporate information. To prevent the loss of any additional corporate data it is unilaterally decided by the CISO that all existing and future laptop computers will be encrypted. Soon, the help desk is flooded with complaints about the slow performance of the laptops and users are upset.

What did the CISO do wrong? (choose the BEST answer):

Failed to identify all stakeholders and their needs

Deployed the encryption solution in an inadequate manner

Used 1024 bit encryption when 256 bit would have sufficed

Used hardware encryption instead of software encryption

94. The CIO of an organization has decided to assign the responsibility of internal IT audit to the IT team.

This is consider a bad practice MAINLY because

The IT team is not familiar in IT audit practices

This represents a bad implementation of the Least Privilege principle

This represents a conflict of interest

The IT team is not certified to perform audits

95. Which is the BEST solution to monitor, measure, and report changes to critical data in a system?

Application logs

File integrity monitoring

SNMP traps

Syslog

96. Which of the following is considered the MOST effective tool against social engineering?

Anti-phishing tools

Anti-malware tools

Effective Security Vulnerability Management Program

Effective Security awareness program

97. Which of the following functions MUST your Information Security Governance program include for formal organizational reporting?

Audit and Legal

Budget and Compliance

Human Resources and Budget

Legal and Human Resources

98. A method to transfer risk is to:

Implement redundancy

move operations to another region

purchase breach insurance

Alignment with business operations

99. Which business stakeholder is accountable for the integrity of a new information system?

CISO

Compliance Officer

Project manager

Board of directors

100. Scenario: An organization has made a decision to address Information Security formally and consistently by adopting established best practices and industry standards. The organization is a small retail merchant but it is expected to grow to a global customer base of many millions of customers in just a few years.

This global retail company is expected to accept credit card payments.

Which of the following is of MOST concern when defining a security program for this organization?

International encryption restrictions

Compliance to Payment Card Industry (PCI) data security standards

Compliance with local government privacy laws

Adherence to local data breach notification laws

Page 11 of 12

101. A CISO decides to analyze the IT infrastructure to ensure security solutions adhere to the concepts of how hardware and software is implemented and managed within the organization.

Which of the following principles does this best demonstrate?

Alignment with the business

Effective use of existing technologies

Leveraging existing implementations

Proper budget management

102. Which of the following provides an audit framework?

Control Objectives for IT (COBIT)

Payment Card Industry-Data Security Standard (PCI-DSS)

International Organization Standard (ISO) 27002

National Institute of Standards and Technology (NIST) SP 800-30

103. Which of the following is the MOST important reason for performing assessments of the security portfolio?

To assure that the portfolio is aligned to the needs of the broader organization

To create executive support of the portfolio

To discover new technologies and processes for implementation within the portfolio

To provide independent 3rd party reviews of security effectiveness

104. When dealing with a risk management process, asset classification is important because it will impact the overall:

Threat identification

Risk monitoring

Risk treatment

Risk tolerance

105. Which of the following functions evaluates patches used to close software vulnerabilities of new systems to assure compliance with policy when implementing an information security program?

System testing

Risk assessment

Incident response

Planning

106. What oversight should the information security team have in the change management process for application security?

Information security should be informed of changes to applications only

Development team should tell the information security team about any application security flaws

Information security should be aware of any significant application security changes and work with developer to test for vulnerabilities before changes are deployed in production

Information security should be aware of all application changes and work with developers before changes are deployed in production

107. Which of the following most commonly falls within the scope of an information security governance steering committee?

Approving access to critical financial systems

Developing content for security awareness programs

Interviewing candidates for information security specialist positions

Vetting information security policies

108. Scenario: Your company has many encrypted telecommunications links for their world-wide operations. Physically distributing symmetric keys to all locations has proven to be administratively burdensome, but symmetric keys are preferred to other alternatives.

How can you reduce the administrative burden of distributing symmetric keys for your employer?

Use asymmetric encryption for the automated distribution of the symmetric key

Use a self-generated key on both ends to eliminate the need for distribution

Use certificate authority to distribute private keys

Symmetrically encrypt the key and then use asymmetric encryption to unencrypt it

109. What is meant by password aging?

An expiration date set for passwords

A Single Sign-On requirement

Time in seconds a user is allocated to change a password

The amount of time it takes for a password to activate

110. The Annualized Loss Expectancy (Before) minus Annualized Loss Expectancy (After) minus Annual Safeguard Cost is the formula for determining:

Safeguard Value

Cost Benefit Analysis

Single Loss Expectancy

Life Cycle Loss Expectancy

Page 12 of 12

111. The single most important consideration to make when developing your security program, policies, and processes is:

Budgeting for unforeseen data compromises

Streamlining for efficiency

Alignment with the business

Establishing your authority as the Security Executive

112. An organization information security policy serves to

establish budgetary input in order to meet compliance requirements

establish acceptable systems and user behavior

define security configurations for systems

define relationships with external law enforcement agencies

113. A Security Operations Centre (SOC) manager is informed that a database containing highly sensitive corporate strategy information is under attack. Information has been stolen and the database server was disconnected.

Who must be informed of this incident?

Internal audit

The data owner

All executive staff

Government regulators

114. SCENARIO: Critical servers show signs of erratic behavior within your organization’s intranet. Initial information indicates the systems are under attack from an outside entity. As the Chief Information Security Officer (CISO), you decide to deploy the Incident Response Team (IRT) to determine the details of this incident and take action according to the information available to the team.

During initial investigation, the team suspects criminal activity but cannot initially prove or disprove illegal actions.

What is the MOST critical aspect of the team’s activities?

Regular communication of incident status to executives

Eradication of malware and system restoration

Determination of the attack source

Preservation of information

115. The general ledger setup function in an enterprise resource package allows for setting accounting periods. Access to this function has been permitted to users in finance, the shipping department, and production scheduling.

What is the most likely reason for such broad access?

The need to change accounting periods on a regular basis.

The requirement to post entries for a closed accounting period.

The need to create and modify the chart of accounts and its allocations.

The lack of policies and procedures for the proper segregation of duties.

116. How often should an environment be monitored for cyber threats, risks, and exposures?

Weekly

Monthly

Quarterly

Daily

117. When a CISO considers delaying or not remediating system vulnerabilities which of the following are MOST important to take into account?

Threat Level, Risk of Compromise, and Consequences of Compromise

Risk Avoidance, Threat Level, and Consequences of Compromise

Risk Transfer, Reputational Impact, and Consequences of Compromise

Reputational Impact, Financial Impact, and Risk of Compromise

118. A CISO wants to change the defense strategy to ward off attackers.

To accomplish this the CISO is looking to a strategy where attackers are lured into a zone of a safe network where attackers can be monitored, controlled, quarantined, or eradicated.

Moderate investment

Passive monitoring

Integrated security controls

Dynamic deception

119. When should IT security project management be outsourced?

When organizational resources are limited

When the benefits of outsourcing outweigh the inherent risks of outsourcing

On new, enterprise-wide security initiatives

On projects not forecasted in the yearly budget

TAGS:

712-50, 712-50 exam dumps

Notify of

Label

Name*

Email*

Website

Label

Name*

Email*

Website

0 Comments

Oldest

Newest Most Voted

Inline Feedbacks

View all comments

Get 712-50 Dumps Full Version

Q&As: 460
Versions: PDF and Software Download Now

About Dumpsinfo

Dumpsinfo is a good platform providing the latest exam information and dumps questions for all IT certification exams. You can study all the latest exam dumps questions online.

[email protected]

Mon - Sat 9:00am - 6:00pm

Advance Your Career by Using Online 712-50 Dumps

Related

Posts

2024 EC-Council Scripting and Programming Foundations Exam Dumps Questions

Prepare 112-12 Exam with Using 112-12 Dump Questions

Get Certified Easily with Online 312-50v13 Dumps

Advance Your Career by Using Online 312-40 Dumps

About Us

EMAIL

Services

Opening Hours