achieve a balance between risk and organizational goals.
The BEST strategy for risk management is to:A. achieve a balance between risk and organizational goals.
The MAIN reason why asset classification is important t…
The MAIN reason why asset classification is important to a successful information security program is because
classification determines:
When performing a risk assessment, the MOST important c…
When performing a risk assessment, the MOST important consideration is that:
Which program element should be implemented FIRST in as…
Which program element should be implemented FIRST in asset classification and control?
The criticality and sensitivity of information assets i…
The criticality and sensitivity of information assets is determined on the basis of:
The information security manager should encourage the b…
After a risk assessment study, a bank with global operations decided to continue doing business in certain
regions of the world where identity theft is rampant. The information security manager should encourage the
business to:
An information security manager should:
Because of its importance to the business, an organization wants to quickly implement a technical solution
which deviates from the company’s policies. An information security manager should:
Which of the following measures would be MOST effective…
Which of the following measures would be MOST effective against insider threats to confidential information?
What process should the information security manager de…
A company’s mail server allows anonymous file transfer protocol (FTP) access which could be exploited. What
process should the information security manager deploy to determine the necessity for remedial action?
What is the BEST technique to determine which security …
What is the BEST technique to determine which security controls to implement with a limited budget?