Exin Information Security Management Professional based on ISO/IEC 27001 Exam Practice Test

Page:    1 / 14   
Total 30 questions

Question 1

The ambition of the security manager is to certify the organization against ISO/IEC 27001.

What is an activity in the certification program?



Answer : D

Question 2

The information security manager is writing the Information Security Management System (ISMS) documentation. The controls that are to be implemented must be described in one of the phases of the Plan-Do-

Check-Act (PDCA) cycle of the ISMS.

In which phase should these controls be described?



Answer : A

Question 3

What needs to be decided prior to considering the treatment of risks?



Answer : A

Question 4

Security monitoring is an important control measure to make sure that the required security level is maintained. In order to realize 24/7 availability of the service, this service is outsourced to a partner in the cloud.

What should be an important control in the contract?



Answer : D

Question 5

What is the best way to start setting the information security controls?



Answer : C

Page:    1 / 14   
Total 30 questions