All 512-50 Test Inside ECCouncil Questions

Page: 11 / 14

Question 44

The PRIMARY objective of security awareness is to:

Options:

Ensure that security policies are read.

Encourage security-conscious employee behavior.

Meet legal and regulatory requirements.

Put employees on notice in case follow-up action for noncompliance is necessary

Question 45

Risk that remains after risk mitigation is known as

Options:

Persistent risk

Residual risk

Accepted risk

Non-tolerated risk

Question 46

A company wants to fill a Chief Information Security Officer position in the organization. They need to define and implement a more holistic security program. Which of the following qualifications and experience would be MOST desirable to find in a candidate?

Options:

Multiple certifications, strong technical capabilities and lengthy resume

Industry certifications, technical knowledge and program management skills

College degree, audit capabilities and complex project management

Multiple references, strong background check and industry certifications

Question 47

Which of the following is the MAIN reason to follow a formal risk management process in an organization that hosts and uses privately identifiable information (PII) as part of their business models and processes?