The BEST course of action is to:
An organization has been experiencing a number of network-based security attacks that all appear
to originate internally. The BEST course of action is to:
Which of the following should be the immediate action of the information security manager?
A serious vulnerability is reported in the firewall software used by an organization. Which of the
following should be the immediate action of the information security manager?
To ensure that the tapes are properly maintained and usable during a system crash, the MOST appropriate measur
An organization keeps backup tapes of its servers at a warm site. To ensure that the tapes are
properly maintained and usable during a system crash, the MOST appropriate measure the
organization should perform is to:
Which of the following processes is critical for deciding prioritization of actions in a business continuity p
Which of the following processes is critical for deciding prioritization of actions in a business
continuity plan?
which of the following is the MOST important to store offsite in the event of a disaster?
In addition to backup data, which of the following is the MOST important to store offsite in the
event of a disaster?
The FIRST thing the information security manager should do is:
An organization has learned of a security breach at another company that utilizes similar
technology. The FIRST thing the information security manager should do is:
Which of the following is the MOST important consideration for an organization interacting with the media duri
Which of the following is the MOST important consideration for an organization interacting with the
media during a disaster?
As a FIRST step, the security manager should:
During the security review of organizational servers it was found that a file server containing
confidential human resources (HR) data was accessible to all user IDs. As a FIRST step, the
security manager should:
If an organization considers taking legal action on a security incident, the information security manager shou
If an organization considers taking legal action on a security incident, the information security
manager should focus PRIMARILY on:
Which of the following has the highest priority when defining an emergency response plan?
Which of the following has the highest priority when defining an emergency response plan?