Your company is in the news as a result of an unfortunate action by one of your employees. The phones are ringing off the hook with customers wanting to cancel their contracts. What do we call this type of damage?
A. Direct damage
B. Indirect damage
正解:B
質問 2:
Midwest Insurance controls access to its offices with a passkey system. What kind of security measure is this?
A. Repressive
B. Corrective
C. Detective
D. Preventive
正解:D
質問 3:
You work for a flexible employer who doesn't mind if you work from home or on the road. You regularly take copies of documents with you on a USB memory stick that is not secure. What are the consequences for the reliability of the information if you leave your USB memory stick behind on the train?
A. The confidentiality of the data on the USB memory stick is no longer guaranteed.
B. The integrity of the data on the USB memory stick is no longer guaranteed.
C. The availability of the data on the USB memory stick is no longer guaranteed.
正解:A
質問 4:
Under which condition is an employer permitted to check if Internet and email services in the workplace are being used for private purposes?
A. The employer is permitted to check this if a firewall is also installed.
B. The employer is permitted to check this if the employees are aware that this could happen.
C. The employer is in no way permitted to check the use of IT services by employees.
D. The employer is permitted to check this if the employee is informed after each instance of checking.
正解:B
質問 5:
What is not a criteria in the review process where it is determined whether segregation of duties is applicable for an employee?
A. In which decision making processes the person in question is involved.
B. In which control processes the person in question is involved.
C. At which locations the person in question is active.
正解:C
質問 6:
A Dutch company requests to be listed on the American Stock Exchange. Which legislation within the scope of information security is relevant in this case?
A. Security regulations for the Dutch government
B. Dutch Tax Law
C. Public Records Act
D. Sarbanes-Oxley Act
正解:D
質問 7:
After a thorough risk analysis and the identification of appropriate security controls, the management team decides that for one specific threat the impact should be covered by insurance.
Which kind of risk treatment control is described here?
A. Reduce
B. Avoid
C. Accept
D. Transfer
正解:D
質問 8:
Some security measures are optional. Other security measures must always be implemented.
Which measure(s) must always be implemented?
A. Physical security measures
B. Clear Desk Policy
C. Logical access security measures
D. Measures required by laws and regulations
正解:D
質問 9:
What is a repressive measure in the case of a fire?
A. Putting out a fire after it has been detected by a fire detector
B. Taking out fire insurance
C. Repairing damage caused by the fire
正解:A
黒沢** -
EX0-105模試が2回分あるためほとんどの出題範囲をカバーしている。至れり尽くせりのEX0-105一冊だなって思いました。