According to best practice, which of the following groups is the MOST effective in performing an
information security compliance audit?

When is security personnel involvement in the Systems Development Life Cycle (SDLC) process
MOST beneficial?

A large bank deploys hardware tokens to all customers that use their online banking system. The
token generates and displays a six digit numeric password every 60 seconds. The customers must log
into their bank accounts using this numeric password. This is an example of

Which of the following is the BEST reason to review audit logs periodically?

What is the PRIMARY reason for ethics awareness and related policy implementation?

Which of the following is critical for establishing an initial baseline for software components in the
operation and maintenance of applications?

Which of the following actions MUST be taken if a vulnerability is discovered during the maintenance
stage in a System Development Life Cycle (SDLC)?

Which of the following provides effective management assurance for a Wireless Local Area Network
(WLAN)?

From a security perspective, which of the following is a best practice to configure a Domain Name
Service (DNS) system?

Which of the following is the MOST beneficial to review when performing an IT audit?