ISO27-13-001無料問題集「GAQM ISO 27001 : 2013

質問 1

What is an example of a human threat?

（A）fire

（B）phishing

（C）thunderstrom

（D）a lightning strike

正解：B 解答を投票する

質問 2

There was a fire in a branch of the company Midwest Insurance. The fire department quickly arrived at the scene and could extinguish the fire before it spread and burned down the entire premises. The server, however, was destroyed in the fire. The backup tapes kept in another room had melted and many other documents were lost for good.
What is an example of the indirect damage caused by this fire?

（A）Water damage due to the fire extinguishers

（B）Burned documents

（C）Burned computer systems

（D）Melted backup tapes

正解：A 解答を投票する

質問 3

Which of the following is a possible event that can have a disruptive effect on the reliability of information?

（A）Threat

（B）Risk

（C）Dependency

（D）Vulnerability

正解：A 解答を投票する

質問 4

Four types of Data Classification (Choose two)

（A）Restricted Data, Confidential Data

（B）Project Data, Highly Confidential Data

（C）Financial Data, Highly Confidential Data

（D）Unrestricted Data, Highly Confidential Data

正解：A、D 解答を投票する

質問 5

What is a reason for the classification of information?

（A）To structure the information according to its sensitivity

（B）Creating a manual describing the BYOD policy

（C）To provide clear identification tags

正解：A 解答を投票する

質問 6

A couple of years ago you started your company which has now grown from 1 to 20 employees. Your company's information is worth more and more and gone are the days when you could keep control yourself.
You are aware that you have to take measures, but what should they be? You hire a consultant who advises you to start with a qualitative risk analysis.
What is a qualitative risk analysis?

（A）This analysis follows a precise statistical probability calculation in order to calculate exact loss caused by damage.

（B）This analysis is based on scenarios and situations and produces a subjective view of the possible threats.

正解：B 解答を投票する

質問 7

In acceptable use of Information Assets, which is the best practice?

（A）Playing any computer games during office hours

（B）Access to information and communication systems are provided for business purpose only

（C）Accessing phone or network transmissions, including wireless or wifi transmissions

（D）Interfering with or denying service to any user other than the employee's host

正解：B 解答を投票する

質問 8

You have a hard copy of a customer design document that you want to dispose off. What would you do

（A）Be environment friendly and reuse it for writing

（B）Give it to the office boy to reuse it for other purposes

（C）Throw it in any dustbin

（D）Shred it using a shredder

正解：D 解答を投票する

質問 9

A hacker gains access to a web server and reads the credit card numbers stored on that server. Which security principle is violated?

（A）Availability

（B）Confidentiality

（C）Integrity

（D）Authenticity

正解：B 解答を投票する

質問 10

Which is the glue that ties the triad together

（A）People

（B）Process

（C）Collaboration

（D）Technology

正解：B 解答を投票する

ISO27-13-001 無料問題集「GAQM ISO 27001 : 2013 - Certified Lead Auditor」

弊社を連絡する

関連リンク

トップ試験