GAQM ISO-IEC-LI Exam Practice Test Instant Access

Question 1

Which is a legislative or regulatory act related to information security that can be imposed upon all organizations?

AISO/IEC 27001:2005

BIntellectual Property Rights

CISO/IEC 27002:2005

DPersonal data protection legislation

Answer : D

Question 2

Midwest Insurance grades the monthly report of all claimed losses per insured as confidential. What is accomplished if all other reports from this insurance office are also assigned the appropriate grading?

AThe costs for automating are easier to charge to the responsible departments.

BA determination can be made as to which report should be printed first and which ones can wait a little longer.

CEveryone can easily see how sensitive the reports' contents are by consulting the grading label.

DReports can be developed more easily and with fewer errors.

Answer : C

Question 3

What sort of security does a Public Key Infrastructure (PKI) offer?

AIt provides digital certificates that can be used to digitally sign documents. Such signatures irrefutably determine from whom a document was sent.

BHaving a PKI shows customers that a web-based business is secure.

CBy providing agreements, procedures and an organization structure, a PKI defines which person or which system belongs to which specific public key.

DA PKI ensures that backups of company data are made on a regular basis.

Answer : D

Question 4

Select risk control activities for domain "10. Encryption" of ISO / 27002: 2013 (Choose two)

AWork in safe areas

BCryptographic Controls Use Policy

CPhysical security perimeter

DKey management

Answer : B, D

Question 5

What should be used to protect data on removable media if data confidentiality or integrity are important considerations?

Abackup on another removable medium

Bcryptographic techniques

Ca password

Dlogging

Answer : B

Question 6

Responsibilities for information security in projects should be defined and allocated to:

Athe project manager

Bspecified roles defined in the used project management method of the organization

Cthe InfoSec officer

Dthe owner of the involved asset

Answer : B

Question 7

In the context of contact with special interest groups, any information-sharing agreements should identify requirements for the protection of _________ information.

AAvailability

BConfidential

CAuthentic

DAuthorization

Answer : B

GAQM ISO-IEC-LI ISO / IEC 27002 - Lead Implementer Exam Practice Test