Which of the following is the MOST important consideration when developing an approach to effectively contain security incidents?
An organization plans to leverage popular social network platforms to promote its products and services. Which of the following is the BEST course of action for the information security manager to support this initiative?
When designing a disaster recovery plan (DRP), which of the following MUST be available in order to prioritize system restoration?
Which of the following should be the FIRST step when performing triage of a malware incident?
An organization permits the storage and use of its critical and sensitive information on employee-owned smartphones. Which of the following is the BEST security control?
An organization has recently purchased cybersecurity insurance after the board voiced concern about the potential for a security breach. With this response to the perceived risk, the organization:
Which of the following is the BEST method to protect against emerging advanced persistent threat (APT) actors?
Which of the following is the PRIMARY reason to perform a business impact analysis (BIA)?
When a critical system incident is reported, the FIRST step of the incident handler should be to:
Meeting which of the following security objectives BEST ensures that information is protected against unauthorized disclosure?
During which phase of an incident response plan is the root cause determined?
A startup company deployed several new applications with vulnerabilities into production because security reviews were not conducted. What will BEST help to ensure effective application risk management going forward?
Which of the following has the GREATEST influence on an organization ' s information security strategy?
Which of the following is MOST helpful in the development of a cost-effective information security strategy that is aligned with business requirements?
Which of the following provides an information security manager with the MOST accurate indication of the organization ' s ability to respond to a cyber attack?
When collecting admissible evidence, which of the following is the MOST important requirement?
Which of the following is the GREATEST benefit of including incident classification criteria within an incident response plan?
Which of the following would be MOST useful to help senior management understand the status of information security compliance?
Which of the following should be the PRIMARY focus of a lessons learned exercise following a successful response to a cybersecurity incident?
Embedding security responsibilities into job descriptions is important PRIMARILY because it: