Exin Information Security Foundation ISFS ISO/IEC Exam Practice Test

You have an office that designs corporate logos. You have been working on a draft for a large

client. Just as you are going to press the button, the screen goes blank. The hard disk is

damaged and cannot be repaired. You find an early version of the design in your mail folder and

you reproduce the draft for the customer. What is such a measure called?

What is the objective of classifying information?

An airline company employee notices that she has access to one of the company's applications

that she has not used before. Is this an information security incident?

There was a fire in a branch of the company Midwest Insurance. The fire department quickly

arrived at the scene and could extinguish the fire before it spread and burned down the entire

premises. The server, however, was destroyed in the fire. The backup tapes kept in another room

had melted and many other documents were lost for good. What is an example of the indirect

damage caused by this fire?

The company Midwest Insurance has taken many measures to protect its information. It uses an

Information Security Management System, the input and output of data in applications is validated, confidential documents are sent in encrypted form and staff use tokens to access information systems. Which of these is not a technical measure?

An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry

date of a contract with one of the clients is earlier than the start date. What type of measure could

prevent this error?

You are the owner of the courier company SpeeDelivery. On the basis of your risk analysis you

have decided to take a number of measures. You have daily backups made of the server, keep

the server room locked and install an intrusion alarm system and a sprinkler system. Which of

these measures is a detective measure?