To have accurate and effective information security policies how often should the CISO review the organization policies?
A. Every 6 monthsThe purpose of NIST SP 800-53 as part of the NIST System Certification and Accreditation Project is to establish a set of standardized, minimum security controls for IT systems addressing low, moderate, and high levels of concern for
A. Confidentiality, Integrity and AvailabilityWhich of the following is the MOST important reason for performing assessments of the security portfolio?
A. To assure that the portfolio is aligned to the needs of the broader organizationThe Information Security Management program MUST protect:
A. all organizational assetsWhich type of physical security control scan a person's external features through a digital video camera before granting access to a restricted area?
A. Iris scanAs the CISO you need to write the IT security strategic plan. Which of the following is the MOST important to review before you start writing the plan?
A. The existing IT environment.Which International Organization for Standardization (ISO) below BEST describes the performance of risk management, and includes a five-stage risk management methodology.
A. ISO 27001What process defines the framework of rules and practices by which a board of directors ensure accountability, fairness and transparency in an organization's relationship with its shareholders?
A. Internal AuditScenario: An organization has recently appointed a CISO. This is a new role in the organization and it signals the increasing need to address security consistently at the enterprise level. This new CISO, while confident with skills and experience, is constantly on the defensive and is unable to advance the IT security centric agenda.
The CISO has been able to implement a number of technical controls and is able to influence the Information Technology teams but has not been able to influence the rest of the organization. From an organizational perspective, which of the following is the LIKELY reason for this?
A. The CISO does not report directly to the CEO of the organizationWhich of the following is of MOST importance when security leaders of an organization are required to align security to influence the culture of an organization?
A. Poses a strong technical backgroundNowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 512-50 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.