Scenario: Your program is developed around minimizing risk to information by focusing on people, technology, and operations.
You have decided to deal with risk to information from people first. How can you minimize risk to your most sensitive information before granting access?

• A.Monitor employee browsing and surfing habits
• B.Set your firewall permissions aggressively and monitor logs regularly.
• C.Develop an Information Security Awareness program
• D.Conduct background checks on individuals before hiring them

Comment: *

Name: *

Email: *

Verification: *

Which of the following provides an independent assessment of a vendor's internal security controls and overall posture?

• A.Alignment with business goals
• B.ISO27000 accreditation
• C.PCI attestation of compliance
• D.Financial statements

Comment: *

Name: *

Email: *

Verification: *

When managing the security architecture for your company you must consider:

• A.Budget
• B.Company Values
• C.All of the above
• D.Security and IT Staff size

Comment: *

Name: *

Email: *

Verification: *

Which of the following is a strong post designed to stop a car?

• A.Fence
• B.Bollard
• C.Reinforced rebar
• D.Gate

Comment: *

Name: *

Email: *

Verification: *

Acceptable levels of information security risk tolerance in an organization should be determined by?

• A.Corporate legal counsel
• B.Corporate compliance committee
• C.CEO and board of director
• D.CISO with reference to the company goals

Comment: *

Name: *

Email: *

Verification: *