Selected 512-50 EISM Questions Answers

Page: 9 / 14

Question 36

A system was hardened at the Operating System level and placed into the production environment. Months later an audit was performed and it identified insecure configuration different from the original hardened state. Which of the following security issues is the MOST likely reason leading to the audit findings?

Options:

Lack of asset management processes

Lack of change management processes

Lack of hardening standards

Lack of proper access controls

Question 37

Which of the following has the GREATEST impact on the implementation of an information security governance model?

Options:

Organizational budget

Distance between physical locations

Number of employees

Complexity of organizational structure

Question 38

Which of the following is the MOST important for a CISO to understand when identifying threats?

Options:

How vulnerabilities can potentially be exploited in systems that impact the organization

How the security operations team will behave to reported incidents

How the firewall and other security devices are configured to prevent attacks

How the incident management team prepares to handle an attack

Question 39

You have recently drafted a revised information security policy. From whom should you seek endorsement in order to have the GREATEST chance for adoption and implementation throughout the entire organization?