Try Before You Buy

Download a free sample of any of our exam questions and answers

  • 24/7 customer support, Secure shopping site
  • Free One year updates to match real exam scenarios
  • If you failed your exam after buying our products we will refund the full amount back to you.
Free Download
  • Home
  • Articles
  • [Jan-2022] ISO-IEC-27001-Lead-Implementer Exam Dumps, ISO-IEC-27001-Lead-Implementer Practice Test Questions [Q29-Q47]

[Jan-2022] ISO-IEC-27001-Lead-Implementer Exam Dumps, ISO-IEC-27001-Lead-Implementer Practice Test Questions [Q29-Q47]

Share

[Jan-2022] ISO-IEC-27001-Lead-Implementer Exam Dumps, ISO-IEC-27001-Lead-Implementer Practice Test Questions

Attested ISO-IEC-27001-Lead-Implementer Dumps PDF Resource [2022]

NEW QUESTION 29
The identified owner of an asset is always an individual

  • A. True
  • B. False

Answer: B

 

NEW QUESTION 30
Responsibilities for information security in projects should be defined and allocated to:

  • A. the owner of the involved asset
  • B. specified roles defined in the used project management method of the organization
  • C. the InfoSec officer
  • D. the project manager

Answer: B

 

NEW QUESTION 31
Physical labels and ________ are two common forms of labeling which are mentioned in ISO 27002.

  • A. bridge
  • B. metadata
  • C. teradata

Answer: B

 

NEW QUESTION 32
Midwest Insurance grades the monthly report of all claimed losses per insured as confidential. What is accomplished if all other reports from this insurance office are also assigned the appropriate grading?

  • A. Everyone can easily see how sensitive the reports' contents are by consulting the grading label.
  • B. A determination can be made as to which report should be printed firstand which ones can wait a little longer.
  • C. The costs for automating are easier to charge to the responsible departments.
  • D. Reports can be developed more easily and with fewer errors.

Answer: A

 

NEW QUESTION 33
Which of these control objectives are NOT in the domain "12.OPERATIONAL SAFETY"?

  • A. Redundancies
  • B. Test data
  • C. Protection against malicious code
  • D. Technical vulnerability management

Answer: A

 

NEW QUESTION 34
Logging in to a computer system is an access-granting process consisting of three steps: identification, authentication and authorization. What occurs during the first step of this process: identification?

  • A. Thefirst step consists of checking if the user is using the correct certificate.
  • B. The first step consists of granting access to the information to which the user is authorized.
  • C. The first step consists of comparing the password with the registered password.
  • D. The first step consists of checking if the user appears on the list of authorized users.

Answer: D

 

NEW QUESTION 35
A company moves into a new building. A few weeks after the move, a visitor appears unannounced in the office of the director. An investigation shows that visitors passes grant the same access as the passes of the company's staff. Which kind of security measure could have prevented this?

  • A. A technical security measure
  • B. physical security measure
  • C. An organizational security measure

Answer: B

 

NEW QUESTION 36
Who is authorized to change the classification of a document?

  • A. The administrator of the document
  • B. The author of the document
  • C. The owner of the document
  • D. The manager of the owner of the document

Answer: C

 

NEW QUESTION 37
What should be used to protect data on removable media ifdata confidentiality or integrity are important considerations?

  • A. backup on another removable medium
  • B. cryptographic techniques
  • C. logging
  • D. a password

Answer: B

 

NEW QUESTION 38
What sort of security does a Public Key Infrastructure (PKI) offer?

  • A. By providing agreements, procedures and an organization structure, a PKI defines which person or which system belongs to which specific public key.
  • B. A PKI ensures that backups of company data are made on a regular basis.
  • C. It provides digital certificates that can be used to digitally signdocuments. Such signatures irrefutably determine from whom a document was sent.
  • D. Having a PKI shows customers that a web-based business is secure.

Answer: B

 

NEW QUESTION 39
The company Midwest Insurance has taken many measures to protect its information. It uses an Information Security Management System, the input and output of data in applications is validated, confidential documents are sent in encrypted form and staff use tokens to access information systems. Which of these is not a technical measure?

  • A. Encryption ofinformation
  • B. Information Security Management System
  • C. Validation of input and output data in applications
  • D. The use of tokens to gain access to information systems

Answer: B

 

NEW QUESTION 40
What is the most important reason for applying the segregation of duties?

  • A. Segregation of duties makes it clear who is responsible for what.
  • B. Tasks and responsibilities must be separated in order to minimize the opportunities for business assets to be misused or changed, whether the change be unauthorized or unintentional.
  • C. Segregation of duties ensures that, when a person is absent, it can be investigated whether he or she has been committing fraud.
  • D. Segregation of duties makes it easier for a person who is readywith his or her part of the work to take time off or to take over the work of another person.

Answer: B

 

NEW QUESTION 41
What is the objective of classifying information?

  • A. Creating alabel that indicates how confidential the information is
  • B. Displaying on the document who is permitted access
  • C. Authorizing the use of an information system
  • D. Defining different levels of sensitivity into which information may be arranged

Answer: D

 

NEW QUESTION 42
Which of the following measures is a preventive measure?

  • A. Installing a logging system that enables changes in a system to be recognized
  • B. Putting sensitive information in a safe
  • C. Classifying a risk as acceptable because the cost of addressing the threat is higher than the value of the information at risk
  • D. Shutting down all internet traffic after a hacker has gained access to thecompany systems

Answer: B

 

NEW QUESTION 43
A non-human threat for computer systems is a flood. In which situation is a flood always a relevant threat?

  • A. When the organization is located near a river.
  • B. When computer systems are kept in a cellar below ground level.
  • C. When the computer systems are not insured.
  • D. If the riskanalysis has not been carried out.

Answer: B

 

NEW QUESTION 44
An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry date of a contract with one of theclients is earlier than the start date. What type of measure could prevent this error?

  • A. Organizational measure
  • B. Integrity measure
  • C. Technical measure
  • D. Availability measure

Answer: C

 

NEW QUESTION 45
Who is accountable to classify information assets?

  • A. the Information Security Team
  • B. the CEO
  • C. theasset owner
  • D. the CISO

Answer: C

 

NEW QUESTION 46
Of the following, which is the best organization or set of organizations to contribute to compliance?

  • A. IT and legal
  • B. IT,business management, HR and legal
  • C. IT and management
  • D. IT only

Answer: B

 

NEW QUESTION 47
......

Latest ISO-IEC-27001-Lead-Implementer Actual Free Exam Questions Updated 50 Questions: https://www.validexam.com/ISO-IEC-27001-Lead-Implementer-latest-dumps.html

Free ISO-IEC-27001-Lead-Implementer Exam Braindumps certification guide Q&A: https://drive.google.com/open?id=18EsLvrsPa7jvstX2YQ8lXaPZ2xhvDNmy

Related Articles

more
PECB ISO-IEC-27001-Lead-Implementer Certification Practice Exam

Our website will provide you with latest exam dumps based on the real exams to make sure you pass valid test in a short time.

Latest Pass Braindumps Exam

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 ValidExam NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy