You are the owner of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large risks but not for the small risks. What is this risk strategy called?
A. Risk bearing
B. Risk neutral
C. Risk avoiding
正解:B
質問 2:
My user profile specifies which network drives I can read and write to. What is the name of the type of logical access management wherein my access and rights are determined centrally?
A. Mandatory Access Control (MAC)
B. Discretionary Access Control (DAC)
C. Public Key Infrastructure (PKI)
正解:A
質問 3:
What is an example of a non-human threat to the physical environment?
A. Corrupted file
B. Virus
C. Storm
D. Fraudulent transaction
正解:C
質問 4:
What is the goal of an organization's security policy?
A. To define all threats to and measures for ensuring information security
B. To provide direction and support to information security
C. To document all procedures required to maintain information security
D. To document all incidents that threaten the reliability of information
正解:B
質問 5:
There was a fire in a branch of the company Midwest Insurance. The fire department quickly arrived at the scene and could extinguish the fire before it spread and burned down the entire premises. The server, however, was destroyed in the fire. The backup tapes kept in another room had melted and many other documents were lost for good. What is an example of the indirect damage caused by this fire?
A. Burned computer systems
B. Burned documents
C. Water damage due to the fire extinguishers
D. Melted backup tapes
正解:C
Nishikata -
ISFS試験では、テキストの問題と全く同じ問題もけっこう出ていました。EXINさすがです。これからも宜しくお願いします。