Which of the following is the BEST way to increase the visibility of information security within an organization's culture?

• A.Implementing user awareness campaigns for the entire company
• B.Establishing security policies based on industry standards
• C.Requiring cross-functional information security training
• D.Publishing an acceptable use policy

Comment: *

Name: *

Email: *

Verification: *

Which of the following is MOST important to include in an incident response plan to ensure incidents are responded to by the appropriate individuals?

• A.Service level agreements (SLAs)
• B.Skills required for the incident response team
• C.A detailed incident notification process
• D.A list of external resources to assist with incidents

Comment: *

Name: *

Email: *

Verification: *

A customer credit card database has been breached by hackers. The FIRST step in dealing with this attack should be to:

• A.confirm the incident.
• B.notify senior management.
• C.start containment.
• D.notify law enforcement.

Comment: *

Name: *

Email: *

Verification: *

The recovery point objective (RPO) is required in which of the following?

• A.Business continuity plan
• B.Information security plan
• C.Disaster recovery plan
• D.Incident response plan

Comment: *

Name: *

Email: *

Verification: *

An information security manager believes that a network file server was compromised by a hacker. Which of the following should be the FIRST action taken?

• A.Unsure that critical data on the server are backed up.
• B.Shut down the compromised server.
• C.Initiate the incident response process.
• D.Shut down the network.

Comment: *

Name: *

Email: *

Verification: *