GAQM ISO27-13-001 Exam Practice Test Instant Access

Question 1

What is the difference between a restricted and confidential document?

ARestricted - to be shared among an authorized group
Confidential - to be shared among named individuals

BRestricted - to be shared among named individuals
Confidential - to be shared among an authorized group

CRestricted - to be shared among named individuals
Confidential - to be shared across the organization only

DRestricted - to be shared among named individuals
Confidential - to be shared with friends and family

Answer : B

Question 2

You receive an E-mail from some unknown person claiming to be representative of your bank and asking for your account number and password so that they can fix your account. Such an attempt of social engineering is called

AShoulder Surfing

BMountaineering

CPhishing

DSpoofing

Answer : C

Question 3

Availability means

AService should be accessible at the required time and usable by all

BService should be accessible at the required time and usable only by the authorized entity

CService should not be accessible when required

Answer : B

Question 4

What is social engineering?

AA group planning for a social activity in the organization

BCreating a situation wherein a third party gains confidential information from you

CThe organization planning an activity for welfare of the neighborhood

Answer : B

Question 5

A planning process that introduced the concept of planning as a cycle that forms the basis for continuous improvement is called:

Atime based planning.

Bplan, do, check, act.

Cplanning for continuous improvement.

DRACI Matrix

Answer : B

Question 6

How is the purpose of information security policy best described?

AAn information security policy documents the analysis of risks and the search for countermeasures.

BAn information security policy provides direction and support to the management regarding information security.

CAn information security policy makes the security plan concrete by providing it with the necessary details.

DAn information security policy provides insight into threats and the possible consequences.

Answer : B

Question 7

A member of staff denies sending a particular message.

Which reliability aspect of information is in danger here?

Aavailability

Bcorrectness

Cintegrity

Dconfidentiality

Answer : C

GAQM ISO27-13-001 ISO 27001 : 2013 - Certified Lead Auditor Exam Practice Test