Which of the following presents the GREATEST challenge to the recovery of critical systems and data following a ransomware incident?

• A.Lack of encryption for backup data in transit
• B.Undefined or undocumented backup retention policies
• C.Ineffective alert configurations for backup operations
• D.Unavailable or corrupt data backups

Comment: *

Name: *

Email: *

Verification: *

Which of the following clauses would represent the MOST significant potential exposure tf included in a contract with a third-party service provider?

• A.Provider liability for loss of data limited to cost of physical media
• B.Audit rights limited to customer data and supporting infrastructure
• C.Access to escrowed software restricted to specific conditions
• D.Provider responsibility in a disaster limited to best reasonable efforts

Comment: *

Name: *

Email: *

Verification: *

When implementing a security policy for an organization handling personally identifiable information (Pll); the MOST important objective should be:

• A.strong encryption
• B.regulatory compliance.
• C.data availability.
• D.security awareness training

Comment: *

Name: *

Email: *

Verification: *

An organization's intrusion prevention system (IPS) detected and blocked an unusually large number of external intrusion attempts within a 24-hour period. Which of the following should be the information security manager's FIRST course of action?

• A.Identify the source and nature of the attempts.
• B.Review the server and firewall audit logs.
• C.Perform security assessments on Internet-facing systems.
• D.Report the issue to senior management.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST important management signoff for migrating an order processing system from a test environment to a production environment?

• A.User
• B.Security
• C.Operations
• D.Database

Comment: *

Name: *

Email: *

Verification: *