GAQM ISO-IEC-LI Exam Practice Test Instant Access

Question 1

Midwest Insurance grades the monthly report of all claimed losses per insured as confidential. What is accomplished if all other reports from this insurance office are also assigned the appropriate grading?

AThe costs for automating are easier to charge to the responsible departments.

BA determination can be made as to which report should be printed first and which ones can wait a little longer.

CEveryone can easily see how sensitive the reports' contents are by consulting the grading label.

DReports can be developed more easily and with fewer errors.

Answer : C

Question 2

What should be used to protect data on removable media if data confidentiality or integrity are important considerations?

Abackup on another removable medium

Bcryptographic techniques

Ca password

Dlogging

Answer : B

Question 3

A non-human threat for computer systems is a flood. In which situation is a flood always a relevant threat?

AIf the risk analysis has not been carried out.

BWhen computer systems are kept in a cellar below ground level.

CWhen the computer systems are not insured.

DWhen the organization is located near a river.

Answer : B

Question 4

What sort of security does a Public Key Infrastructure (PKI) offer?

AIt provides digital certificates that can be used to digitally sign documents. Such signatures irrefutably determine from whom a document was sent.

BHaving a PKI shows customers that a web-based business is secure.

CBy providing agreements, procedures and an organization structure, a PKI defines which person or which system belongs to which specific public key.

DA PKI ensures that backups of company data are made on a regular basis.

Answer : D

Question 5

Why is compliance important for the reliability of the information?

ACompliance is another word for reliability. So, if a company indicates that it is compliant, it means that the information is managed properly.

BBy meeting the legislative requirements and the regulations of both the government and internal management, an organization shows that it manages its information in a sound manner.

CWhen an organization employs a standard such as the ISO/IEC 27002 and uses it everywhere, it is compliant and therefore it guarantees the reliability of its information.

DWhen an organization is compliant, it meets the requirements of privacy legislation and, in doing so, protects the reliability of its information.

Answer : B

Question 6

Which of these control objectives are NOT in the domain "12. OPERATIONAL SAFETY"?

AProtection against malicious code

BRedundancies

CTest data

DTechnical vulnerability management

Answer : B

Question 7

Which of these reliability aspects is "completeness" a part of?

AAvailability

BExclusivity

CIntegrity

DConfidentiality

Answer : C

GAQM ISO / IEC 27002 - Lead Implementer ISO-IEC-LI Exam Practice Test