712-50 Free Practice Test

- (Exam Topic 1)
The PRIMARY objective of security awareness is to:

1. A. Ensure that security policies are read.
2. B. Encourage security-conscious employee behavior.
3. C. Meet legal and regulatory requirements.
4. D. Put employees on notice in case follow-up action for noncompliance is necessary

Correct Answer: B

- (Exam Topic 1)
Which of the following is the MOST important benefit of an effective security governance process?

1. A. Reduction of liability and overall risk to the organization
2. B. Better vendor management
3. C. Reduction of security breaches
4. D. Senior management participation in the incident response process

Correct Answer: A

- (Exam Topic 2)
When working in the Payment Card Industry (PCI), how often should security logs be review to comply with the standards?

1. A. Daily
2. B. Hourly
3. C. Weekly
4. D. Monthly

Correct Answer: A

- (Exam Topic 2)
Which of the following is the MOST important reason to measure the effectiveness of an Information Security Management System (ISMS)?

1. A. Meet regulatory compliance requirements
2. B. Better understand the threats and vulnerabilities affecting the environment
3. C. Better understand strengths and weaknesses of the program
4. D. Meet legal requirements

Correct Answer: C

- (Exam Topic 3)
Which of the following represents the BEST method of ensuring security program alignment to business needs?

1. A. Create a comprehensive security awareness program and provide success metrics to business units
2. B. Create security consortiums, such as strategic security planning groups, that include business unit participation
3. C. Ensure security implementations include business unit testing and functional validation prior to production rollout
4. D. Ensure the organization has strong executive-level security representation through clear sponsorship or the creation of a CISO role

Correct Answer: B