Copiar y Editar

ISO 27002 quiz part 1

Descripción

This is the first quiz about 27002
Diederik Merkens
Test por Diederik Merkens, actualizado hace más de 1 año
Diederik Merkens
Creado por Diederik Merkens hace más de 4 años
3624
0
0

Resumen del Recurso

Pregunta 1

Pregunta
What does the Information Security Policy describe?
Respuesta
  • which InfoSec-controls have been selected and taken
  • how the InfoSec-objectives will be reached
  • what the implementation-planning of the information security management system is
  • which Information Security-procedures are selected

Pregunta 2

Pregunta
In the context of contact with special interest groups, any information sharing agreements should identify requirements for the protection of [blank_start]confidential[blank_end] information.
Respuesta
  • topic-specific
  • public
  • confidential

Pregunta 3

Pregunta
Responsibilities for information security in projects should be defined and allocated to:
Respuesta
  • the project manager
  • specified roles defined in the used project management method of the organization
  • the InfoSec officer
  • the owner of the involved asset
  • the manager of the business domain in which the project is carried out

Pregunta 4

Pregunta
Organizations allowing teleworking activities, the physical security of the building and the local environment of the teleworking site should be considered
Respuesta
  • True
  • False

Pregunta 5

Pregunta
Prior to employment, [blank_start]screening[blank_end] as well as terms & conditions of employment are included as controls in ISO 27002 to ensure that employees and contractors understand their responsibilities and are suitable for the roles for which they are considered.
Respuesta
  • screening
  • awareness training
  • trial period

Pregunta 6

Pregunta
It is allowed that employees and contractors are provided with an anonymous reporting channel to report violations of information security policies or procedures (“whistle blowing”)
Respuesta
  • True
  • False

Pregunta 7

Pregunta
The identified owner of an asset is always an individual
Respuesta
  • True
  • False

Pregunta 8

Pregunta
Who is accountable to classify information assets?
Respuesta
  • the CEO
  • the CISO
  • the asset owner
  • the Information Security team

Pregunta 9

Pregunta
Physical labels and [blank_start]metadata[blank_end] are two common forms of labelling which are mentioned in ISO 27002.
Respuesta
  • data encryption
  • metadata
  • digital folders

Pregunta 10

Pregunta
What should be used to protect data on removable media if data confidentiality or integrity are important considerations?
Respuesta
  • backup on another removable medium
  • a password
  • logging
  • cryptographic techniques
Mostrar resumen completo Ocultar resumen completo

¿Quieres crear tus propios Tests gratis con GoConqr? Más información.

Similar

Fechas Importantes Constitucion
milagrosalopez
Matemáticasen la VidaCotidiana
Diego Santos
Prepara la Selectividad
Diego Santos
Fracciones y porcentajes
Esperanza Gesteira
Derivadas
erendira.aviles
Diferencias entre la Química y Física
maya velasquez
El Cerebro Humano
Ximena Olivera
ECOLOGÍA
chinaa25
PLASTICIDAD CEREBRAL
Kareen Gatica
Mapa mental “Caracterizar los procesos pedagógicos en Ambientes Virtuales de Aprendizaje”.
CHRISTIAN DAVID BARRIOS CARRERA
HISTORIA DE LA COMPUTADORA
SERGYO DAVID CALDERON QUINTERO
Explorar la Librería