Eccouncil 712-50 CCISO Exam Practice Test Instant Access

Question 1

An auditor is reviewing the security classifications for a group of assets and finds that many of the assets are not correctly classified.

What should the auditor's NEXT step be?

AImmediately notify the board of directors of the organization as to the finding

BCorrect the classifications immediately based on the auditor's knowledge of the proper classification

CDocument the missing classifications

DIdentify the owner of the asset and induce the owner to apply a proper classification

Answer : C

Question 2

What is a key policy that should be part of the information security plan?

AAccount management policy

BTraining policy

CAcceptable Use policy

DRemote Access policy

Answer : C

Question 3

When evaluating a Managed Security Services Provider (MSSP), which service(s) is/are most important:

APatch management

BNetwork monitoring

CAbility to provide security services tailored to the business' needs

D24/7 tollfree number

Answer : C

Question 4

Of the following types of SOCs (Security Operations Centers), which one would be MOST likely used if the CISO has decided to outsource the infrastructure and administration of it?

AVirtual

BDedicated

CFusion

DCommand

Answer : A

Question 5

Who should be involved in the development of an internal campaign to address email phishing?

ABusiness unit leaders, CIO, CEO

BBusiness Unite Leaders, CISO, CIO and CEO

CAll employees

DCFO, CEO, CIO

Answer : B

Question 6

You are the CISO for an investment banking firm. The firm is using artificial intelligence (AI) to assist in approving clients for loans.

Which control is MOST important to protect AI products?

AHash datasets

BSanitize datasets

CDelete datasets

DEncrypt datasets

Answer : D

Question 7

With a focus on the review and approval aspects of board responsibilities, the Data Governance Council recommends that the boards provide strategic oversight regarding information and information security, include these four things:

AMetrics tracking security milestones, understanding criticality of information and information security, visibility into the types of information and how it is used, endorsement by the board of directors

BAnnual security training for all employees, continual budget reviews, endorsement of the development and implementation of a security program, metrics to track the program

CUnderstanding criticality of information and information security, review investment in information security, endorse development and implementation of a security program, and require regular reports on adequacy and effectiveness

DEndorsement by the board of directors for security program, metrics of security program milestones, annual budget review, report on integration and acceptance of program

Answer : C

Eccouncil 712-50 EC-Council Certified CISO CCISO Exam Practice Test