ISO-ISMS-LA by GAQM Actual Free Exam Questions And Answers

Question 1

All are prohibited in acceptable use of information assets, except:

A. Company-wide e-mails with supervisor/TL permission.

B. E-mail copies to non-essential readers

C. Electronic chain letters

D. Messages with very large attachments or to a large number ofrecipients.

Discussion 0

Correct Answer: A Vote an answer

Question 2

Who are allowed to access highly confidential files?

A. Non-employees designated with approved access and have signed NDA

B. Employees with signed NDA have a business need-to-know

C. Contractors with a business need-to-know

D. Employees with a business need-to-know

Discussion 0

Correct Answer: B Vote an answer

Question 3

Changes to the information processing facilities shall be done in controlled manner.

A. False

B. True

Discussion 0

Correct Answer: B Vote an answer

Question 4

What is the relationship between data and information?

A. Data is structured information.

B. Information is the meaning and value assigned to a collection of data.

Discussion 0

Correct Answer: B Vote an answer

Question 5

As a new member of the IT department you have noticed that confidential information has been leaked several times. This may damage the reputation of the company. You have been asked to propose an organisational measure to protect laptop computers. What is the first step in a structured approach to come up with this measure?

A. Formulate a policy

B. Appoint security staff

C. Encrypt all sensitive information

D. Set up an access control procedure

Discussion 0

Correct Answer: A Vote an answer

Question 6

Availability means

A. Service should be accessible at the required time and usable by all

B. Service should be accessible at the required time and usable only by the authorized entity

C. Service should not be accessible when required

Discussion 0

Correct Answer: B Vote an answer

Question 7

Which of the following does a lack of adequate security controls represent?

A. Impact

B. Vulnerability

C. Asset

D. Threat

Discussion 0

Correct Answer: B Vote an answer

Question 8

Changes on project-managed applications or database should undergo the change control process as documented.

A. False

B. True

Discussion 0

Correct Answer: B Vote an answer

Question 9

You see a blue color sticker on certain physical assets. What does this signify?

A. The asset with blue stickers should be kept air conditioned at all times

B. The asset is critical and the impact is restricted to an employee only

C. The asset is high critical and its failure will affect a group/s/project's work in the organization

D. The asset is very high critical and its failure affects the entire organization

Discussion 0

Correct Answer: C Vote an answer

Question 10

The following are the guidelines to protect your password, except:

A. Do not share passwords with anyone

B. For easy recall, use the same password for company and personal accounts

C. Don't use the same password for various company system security access

D. Change a temporary password on first log-on

Discussion 0

Correct Answer: A,B Vote an answer

GAQM ISO 27001 : 2013 ISMS - Certified Lead Auditor - ISO-ISMS-LA Exam Practice Test

Contact Us

Useful Links

Latest Updated