[Q37-Q58] まもなく無料セール終了!リアルISFSのPDF解答で合格せよ [2024年04月20日]

Share

まもなく無料セール終了!リアルISFSのPDF解答で合格せよ [2024年04月20日]

最新の2024年04月試験ISFS問題集合格できる認証試験合格させます

質問 # 37
Which of the following measures is a preventive measure?

  • A. Shutting down all internet traffic after a hacker has gained access to the company systems
  • B. Putting sensitive information in a safe
  • C. Classifying a risk as acceptable because the cost of addressing the threat is higher than the value of the information at risk
  • D. Installing a logging system that enables changes in a system to be recognized

正解:B


質問 # 38
Your organization has an office with space for 25 workstations. These workstations are all fully equipped and in use. Due to a reorganization 10 extra workstations are added, 5 of which are used for a call centre 24 hours per day. Five workstations must always be available. What physical security measures must be taken in order to ensure this?

  • A. Obtain an extra office and connect all 10 new workstations to an emergency power supply and UPS (Uninterruptible Power Supply). Adjust the access control system to the working hours of the new staff.
    Inform the building security personnel that work will also be carried out in the evenings and at night.
  • B. Obtain an extra office and set up 10 workstations. Ensure that there are security personnel both in the evenings and at night, so that staff can work there safely and securely.
  • C. Obtain an extra office and provide a UPS (Uninterruptible Power Supply) for the five most important workstations.
  • D. Obtain an extra office and set up 10 workstations. You would therefore have spare equipment that can be used to replace any non-functioning equipment.

正解:A


質問 # 39
In most organizations, access to the computer or the network is granted only after the user has entered a correct username and password. This process consists of 3 steps: identification, authentication and authorization. What is the purpose of the second step, authentication?

  • A. The authentication step checks the username against a list of users who have access to the system.
  • B. In the second step, you make your identity known, which means you are given access to the system.
  • C. During the authentication step, the system gives you the rights that you need, such as being able to read the data in the system.
  • D. The system determines whether access may be granted by determining whether the token used is authentic.

正解:D


質問 # 40
You are the owner of a growing company, SpeeDelivery, which provides courier services. You decide that it is time to draw up a risk analysis for your information system. This includes an inventory of the threats and risks. What is the relation between a threat, risk and risk analysis?

  • A. A risk analysis is used to remove the risk of a threat.
  • B. A risk analysis is used to clarify which threats are relevant and what risks they involve.
  • C. A risk analysis identifies threats from the known risks.
  • D. Risk analyses help to find a balance between threats and risks.

正解:B


質問 # 41
Which of the following measures is a corrective measure?

  • A. Restoring a backup of the correct database after a corrupt copy of the database was written over the original
  • B. Making a backup of the data that has been created or altered that day
  • C. Installing a virus scanner in an information system
  • D. Incorporating an Intrusion Detection System (IDS) in the design of a computer centre

正解:A


質問 # 42
What do employees need to know to report a security incident?

  • A. Whether the incident has occurred before and what was the resulting damage.
  • B. The measures that should have been taken to prevent the incident in the first place.
  • C. Who is responsible for the incident and whether it was intentional.
  • D. How to report an incident and to whom.

正解:D


質問 # 43
Midwest Insurance controls access to its offices with a passkey system. We call this a preventive measure.
What are some other measures?

  • A. Repressive, adaptive and corrective measures
  • B. Partial, adaptive and corrective measures
  • C. Detective, repressive and corrective measures

正解:C


質問 # 44
What is an example of a physical security measure?

  • A. An access control policy with passes that have to be worn visibly
  • B. The encryption of confidential information
  • C. Special fire extinguishers with inert gas, such as Argon
  • D. A code of conduct that requires staff to adhere to the clear desk policy, ensuring that confidential information is not left visibly on the desk at the end of the work day

正解:C


質問 # 45
You are the owner of the courier company SpeeDelivery. On the basis of your risk analysis you have decided to take a number of measures. You have daily backups made of the server, keep the server room locked and install an intrusion alarm system and a sprinkler system. Which of these measures is a detective measure?

  • A. Intrusion alarm
  • B. Access restriction to special rooms
  • C. Backup tape
  • D. Sprinkler installation

正解:A


質問 # 46
Three characteristics determine the reliability of information. Which characteristics are these?

  • A. Availability, Nonrepudiation and Confidentiality
  • B. Availability, Integrity and Correctness
  • C. Availability, Integrity and Confidentiality

正解:C


質問 # 47
Susan sends an email to Paul. Who determines the meaning and the value of information in this email?

  • A. Paul, the recipient of the information.
  • B. Paul and Susan, the sender and the recipient of the information.
  • C. Susan, the sender of the information.

正解:A


質問 # 48
What is a repressive measure in the case of a fire?

  • A. Repairing damage caused by the fire
  • B. Putting out a fire after it has been detected by a fire detector
  • C. Taking out fire insurance

正解:B


質問 # 49
Your organization has an office with space for 25 workstations. These workstations are all fully equipped and in use. Due to a reorganization 10 extra workstations are added, 5 of which are used for a call centre 24 hours per day. Five workstations must always be available. What physical security measures must be taken in order to ensure this?

  • A. Obtain an extra office and set up 10 workstations. Ensure that there are security personnel both in the evenings and at night, so that staff can work there safely and securely.
  • B. Obtain an extra office and provide a UPS (Uninterruptible Power Supply) for the five most important workstations.
  • C. Obtain an extra office and set up 10 workstations. You would therefore have spare equipment that can be used to replace any non-functioning equipment.
  • D. Obtain an extra office and connect all 10 new workstations to an emergency power supply and UPS (Uninterruptible Power Supply). Adjust the access control system to the working hours of the new staff. Inform the building security personnel that work will also be carried out in the evenings and at night.

正解:D


質問 # 50
You own a small company in a remote industrial areA. Lately, the alarm regularly goes off in the middle of the night. It takes quite a bit of time to respond to it and it seems to be a false alarm every time. You decide to set up a hidden camerA. What is such a measure called?

  • A. Preventive measure
  • B. Detective measure
  • C. Repressive measure

正解:B

解説:
Explanation/Reference:


質問 # 51
There is a network printer in the hallway of the company where you work. Many employees dont pick up their printouts immediately and leave them in the printer. What are the consequences of this to the reliability of the information?

  • A. The availability of the information is no longer guaranteed.
  • B. The integrity of the information is no longer guaranteed.
  • C. The confidentiality of the information is no longer guaranteed.

正解:C


質問 # 52
You own a small company in a remote industrial areA. Lately, the alarm regularly goes off in the middle of the night. It takes quite a bit of time to respond to it and it seems to be a false alarm every time. You decide to set up a hidden camerA. What is such a measure called?

  • A. Preventive measure
  • B. Detective measure
  • C. Repressive measure

正解:B


質問 # 53
What sort of security does a Public Key Infrastructure (PKI) offer?

  • A. It provides digital certificates which can be used to digitally sign documents. Such signatures irrefutably determine from whom a document was sent.
  • B. By providing agreements, procedures and an organization structure, a PKI defines which person or which system belongs to which specific public key.
  • C. A PKI ensures that backups of company data are made on a regular basis.
  • D. Having a PKI shows customers that a web-based business is secure.

正解:B


質問 # 54
What is the definition of the Annual Loss Expectancy?

  • A. The Annual Loss Expectancy is the average damage calculated by insurance companies for businesses in a country.
  • B. The Annual Loss Expectancy is the minimum amount for which an organization must insure itself.
  • C. The Annual Loss Expectancy is the size of the damage claims resulting from not having carried out risk analyses effectively.
  • D. The Annual Loss Expectancy is the amount of damage that can occur as a result of an incident during the year.

正解:D


質問 # 55
You work for a flexible employer who doesnt mind if you work from home or on the road. You regularly take copies of documents with you on a USB memory stick that is not secure. What are the consequences for the reliability of the information if you leave your USB memory stick behind on the train?

  • A. The confidentiality of the data on the USB memory stick is no longer guaranteed.
  • B. The integrity of the data on the USB memory stick is no longer guaranteed.
  • C. The availability of the data on the USB memory stick is no longer guaranteed.

正解:A


質問 # 56
Why is air-conditioning placed in the server room?

  • A. Backup tapes are made from thin plastic which cannot withstand high temperatures. Therefore, if it gets too hot in a server room, they may get damaged.
  • B. When a company wishes to cool its offices, the server room is the best place. This way, no office space needs to be sacrificed for such a large piece of equipment.
  • C. In the server room the air has to be cooled and the heat produced by the equipment has to be extracted.
    The air in the room is also dehumidified and filtered.
  • D. It is not pleasant for the maintenance staff to have to work in a server room that is too warm.

正解:C


質問 # 57
An airline company employee notices that she has access to one of the company's applications that she has not used before. Is this an information security incident?

  • A. Yes
  • B. No

正解:B


質問 # 58
......


Exin ISFS認定試験は、60分以内に完了する必要がある40の複数選択質問で構成されています。この試験は複数の言語で利用でき、オンラインまたは認定テストセンターで撮影できます。この試験では、ISO/IEC 27001標準に基づいた情報セキュリティの原則と概念に関する候補者の知識と理解を評価します。認定試験に合格すると、候補者は3年間有効なExin ISFS認定を授与されます。この認定は、情報セキュリティに関する候補者の専門知識を実証し、雇用市場の競争力を提供します。 Exin ISFS認定はグローバルに認識されており、情報セキュリティを優先する組織から高く評価されています。

 

ISFS問題集が合格させる、一日でExin Certification試験合格:https://jp.fast2test.com/ISFS-premium-file.html

最新でリアルなEXIN ISFS試験問題集解答:https://drive.google.com/open?id=1LDE4tmm2HiCoKUD3XeO-Pe5_xx64LL7W


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어