1. Home
  2. EC-COUNCIL
  3. 512-50

EC-COUNCIL 512-50 Online Practice Questions and Exam Preparation

512-50 Exam Details

  • Exam Code
    :512-50
  • Exam Name
    :EC-Council Information Security Manager (E|ISM)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :404 Q&As
  • Last Updated
    :May 25, 2026

EC-COUNCIL 512-50 Online Questions & Answers

  • Question 241:

    Which of the following is a common technology for visual monitoring?

    A. Closed circuit television
    B. Open circuit television
    C. Blocked video
    D. Local video

  • Question 242:

    The mean time to patch, number of virus outbreaks prevented, and number of vulnerabilities mitigated are examples of what type of performance metrics?

    A. Risk metrics
    B. Management metrics
    C. Operational metrics
    D. Compliance metrics

  • Question 243:

    What is the BEST way to achieve on-going compliance monitoring in an organization?

    A. Only check compliance right before the auditors are scheduled to arrive onsite.
    B. Outsource compliance to a 3rd party vendor and let them manage the program.
    C. Have Compliance and Information Security partner to correct issues as they arise.
    D. Have Compliance direct Information Security to fix issues after the auditors report.

  • Question 244:

    Which of the following represents the BEST reason for an organization to use the Control Objectives for Information and Related Technology (COBIT) as an Information Technology (IT) framework?

    A. It allows executives to more effectively monitor IT implementation costs
    B. Implementation of it eases an organization's auditing and compliance burden
    C. Information Security (IS) procedures often require augmentation with other standards
    D. It provides for a consistent and repeatable staffing model for technology organizations

  • Question 245:

    Quantitative Risk Assessments have the following advantages over qualitative risk assessments:

    A. They are objective and can express risk / cost in real numbers
    B. They are subjective and can be completed more quickly
    C. They are objective and express risk / cost in approximates
    D. They are subjective and can express risk /cost in real numbers

  • Question 246:

    A CISO decides to analyze the IT infrastructure to ensure security solutions adhere to the concepts of how hardware and software is implemented and managed within the organization. Which of the following principles does this best demonstrate?

    A. Effective use of existing technologies
    B. Create a comprehensive security awareness program and provide success metrics to business units
    C. Proper budget management
    D. Leveraging existing implementations

  • Question 247:

    You are just hired as the new CISO and are being briefed on all the Information Security projects that your section has on going. You discover that most projects are behind schedule and over budget. Using the best business practices for project management you determine that the project correctly aligns with the company goals and the scope of the project is correct. What is the NEXT step?

    A. Review time schedules
    B. Verify budget
    C. Verify resources
    D. Verify constraints

  • Question 248:

    Which of the following best represents a calculation for Annual Loss Expectancy (ALE)?

    A. Single loss expectancy multiplied by the annual rate of occurrence
    B. Total loss expectancy multiplied by the total loss frequency
    C. Value of the asset multiplied by the loss expectancy
    D. Replacement cost multiplied by the single loss expectancy

  • Question 249:

    When a CISO considers delaying or not remediating system vulnerabilities which of the following are MOST important to take into account?

    A. Threat Level, Risk of Compromise, and Consequences of Compromise
    B. Risk Avoidance, Threat Level, and Consequences of Compromise
    C. Risk Transfer, Reputational Impact, and Consequences of Compromise
    D. Reputational Impact, Financial Impact, and Risk of Compromise

  • Question 250:

    Which of the following is used to establish and maintain a framework to provide assurance that information security strategies are aligned with organizational objectives?

    A. Awareness
    B. Compliance
    C. Governance
    D. Management

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 512-50 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.