Which of the following is the MOST important reason to measure the effectiveness of an Information Security Management System (ISMS)?

• A.Meet regulatory compliance requirements
• B.Meet legal requirements
• C.Better understand the threats and vulnerabilities affecting the environment
• D.Better understand strengths and weakness of the program

Comment: *

Name: *

Email: *

Verification: *

An access point (AP) is discovered using Wireless Equivalent Protocol (WEP). The cipher text sent by the AP is encrypted with the same key and cipher used by its stations.
What authentication method is being used?

• A.Open
• B.Asynchronous
• C.None
• D.Shared key

Comment: *

Name: *

Email: *

Verification: *

Developing effective security controls is a balance between:

• A.Operations and Regulations
• B.Corporate Culture and Job Expectations
• C.Technology and Vendor Management
• D.Risk Management and Operations

Comment: *

Name: *

Email: *

Verification: *

When choosing a risk mitigation method what is the MOST important factor?

• A.Metrics of mitigation method success
• B.Cost of the mitigation is less than a risk
• C.Approval from the board of directors
• D.Mitigation method complies with PCI regulations

Comment: *

Name: *

Email: *

Verification: *

When dealing with risk, the information security practitioner may choose to:

• A.acknowledge
• B.defer
• C.assign
• D.transfer

Comment: *

Name: *

Email: *

Verification: *