Which of the following is MOST likely to drive an update to the information security strategy?

A. A recent penetration test has uncovered a control weakness.
B. A major business application has been upgraded.
C. Management has decided to implement an emerging technology.
D. A new chief technology officer has been hired.

A risk analysis for a new system is being performed. For which of the following is business knowledge MORE important than IT knowledge?

A. Vulnerability analysis
B. Balanced scorecard
C. Cost-benefit analysis
D. Impact analysis

Which of the following is the MOST effective way to identify changes in an information security environment?

A. Continuous monitoring
B. Security baselining
C. Annual risk assessments
D. Business impact analysis

An organization is MOST at risk from a new worm being introduced through the intranet when:

A. desktop virus definition files are not up to date.
B. system software does not undergo integrity checks.
C. hosts have static IP addresses.
D. executable code is run from inside the firewall.

Which of the following is the GREATEST benefit of integrating a security information and event management (SIEM) solution with traditional security tools such as IDS, anti-malware, and email screening solutions?

A. The elimination of false positive detections
B. A reduction in operational costs
C. An increase in visibility into patterns of potential threats
D. The consolidation of tools into a single console

Due to budget constraints, an internal IT application does not include the necessary controls to meet a client service level agreement (SLA).
Which of the following is the information security manager’s BEST course of action?

A. Inform the legal department of the deficiency.
B. Analyze and report the issue to senior management.
C. Require the application owner to implement the controls.
D. Assess and present the risks to the application owner.

In a large organization requesting outsourced services, which of the following contract clauses is MOST important to the information security manager?

A. Compliance with security requirements
B. Frequency of status reporting
C. Nondisclosure clause
D. Intellectual property (IP)

For a user of commercial software downloaded from the Internet, which of the following is the MOST effective means of ensuring authenticity?

A. Digital signatures
B. Digital certificates
C. Digital code signing
D. Steganography

Which of the following devices, when placed in a demilitarized zone (DMZ), would be considered a significant exposure?

A. Authentication server
B. Web server
C. Proxy server
D. Intrusion detection server

Which of the following is the MOST important outcome from vulnerability scanning?

A. Prioritization of risks
B. Information about steps necessary to hack the system
C. Identification of back doors
D. Verification that systems are properly configured