712-50 Free Practice Test

- (Topic 1)
Which of the following is MOST likely to be discretionary?

1. A. Policies
2. B. Procedures
3. C. Guidelines
4. D. Standards

Correct Answer: C

- (Topic 1)
An organization is looking for a framework to measure the efficiency and effectiveness of their Information Security Management System. Which of the following international standards can BEST assist this organization?

1. A. International Organization for Standardizations – 27004 (ISO-27004)
2. B. Payment Card Industry Data Security Standards (PCI-DSS)
3. C. Control Objectives for Information Technology (COBIT)
4. D. International Organization for Standardizations – 27005 (ISO-27005)

Correct Answer: A

- (Topic 1)
What two methods are used to assess risk impact?

1. A. Cost and annual rate of expectance
2. B. Subjective and Objective
3. C. Qualitative and percent of loss realized
4. D. Quantitative and qualitative

Correct Answer: D

- (Topic 1)
Which of the following is the MOST important for a CISO to understand when identifying threats?

1. A. How vulnerabilities can potentially be exploited in systems that impact the organization
2. B. How the security operations team will behave to reported incidents
3. C. How the firewall and other security devices are configured to prevent attacks
4. D. How the incident management team prepares to handle an attack

Correct Answer: A

- (Topic 3)
In effort to save your company money which of the following methods of training results in the lowest cost for the organization?

1. A. Distance learning/Web seminars
2. B. Formal Class
3. C. One-One Training
4. D. Self –Study (noncomputerized)

Correct Answer: D