Exin ISFS ISO/IEC Exam Questions Instant Access

Question 1

You are the owner of the courier company SpeeDelivery. You employ a few people who, while waiting to make a delivery, can carry out other tasks. You notice, however, that they use this time

to send and read their private mail and surf the Internet. In legal terms, in which way can the use

of the Internet and e-mail facilities be best regulated?

AInstalling an application that makes certain websites no longer accessible and that filters attachments in e-mails

BDrafting a code of conduct for the use of the Internet and e-mail in which the rights and obligations of both the employer and staff are set down

CImplementing privacy regulations

DInstalling a virus scanner

Answer : B

Question 2

You have just started working at a large organization. You have been asked to sign a code of

conduct as well as a contract. What does the organization wish to achieve with this?

AA code of conduct helps to prevent the misuse of IT facilities.

BA code of conduct is a legal obligation that organizations have to meet.

CA code of conduct prevents a virus outbreak.

DA code of conduct gives staff guidance on how to report suspected misuses of IT facilities.

Answer : A

Question 3

You apply for a position in another company and get the job. Along with your contract, you are

asked to sign a code of conduct. What is a code of conduct?

AA code of conduct specifies how employees are expected to conduct themselves and is the
same for all companies.

BA code of conduct is a standard part of a labor contract.

CA code of conduct differs from company to company and specifies, among other things, the
rules of behavior with regard to the usage of information systems.

Answer : C

Question 4

In most organizations, access to the computer or the network is granted only after the user has

entered a correct username and password. This process consists of 3 steps: identification,

authentication and authorization. What is the purpose of the second step, authentication?

AIn the second step, you make your identity known, which means you are given access to the
system.

BThe authentication step checks the username against a list of users who have access to the
system.

CThe system determines whether access may be granted by determining whether the token
used is authentic.

DDuring the authentication step, the system gives you the rights that you need, such as being
able to read the data in the system.

Answer : C

Question 5

You work for a flexible employer who doesnt mind if you work from home or on the road. You

regularly take copies of documents with you on a USB memory stick that is not secure. What are

the consequences for the reliability of the information if you leave your USB memory stick behind

on the train?

AThe integrity of the data on the USB memory stick is no longer guaranteed.

BThe availability of the data on the USB memory stick is no longer guaranteed.

CThe confidentiality of the data on the USB memory stick is no longer guaranteed.

Answer : C

Question 6

What is the relationship between data and information?

AData is structured information.

BInformation is the meaning and value assigned to a collection of data.

Answer : B

Question 7

What is an example of a security incident?

AThe lighting in the department no longer works.

BA member of staff loses a laptop.

CYou cannot set the correct fonts in your word processing software.

DA file is saved under an incorrect name.

Answer : B

Exin Information Security Foundation ISFS ISO/IEC Exam Questions