1. Home
  2. EC-COUNCIL
  3. 512-50

EC-COUNCIL 512-50 Online Practice Questions and Exam Preparation

512-50 Exam Details

  • Exam Code
    :512-50
  • Exam Name
    :EC-Council Information Security Manager (E|ISM)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :404 Q&As
  • Last Updated
    :May 25, 2026

EC-COUNCIL 512-50 Online Questions & Answers

  • Question 291:

    Annual Loss Expectancy is derived from the function of which two factors?

    A. Annual Rate of Occurrence and Asset Value
    B. Single Loss Expectancy and Exposure Factor
    C. Safeguard Value and Annual Rate of Occurrence
    D. Annual Rate of Occurrence and Single Loss Expectancy

  • Question 292:

    Scenario: Your program is developed around minimizing risk to information by focusing on people, technology, and operations.

    You have decided to deal with risk to information from people first. How can you minimize risk to your most sensitive information before granting access?

    A. Conduct background checks on individuals before hiring them
    B. Develop an Information Security Awareness program
    C. Monitor employee browsing and surfing habits
    D. Set your firewall permissions aggressively and monitor logs regularly.

  • Question 293:

    At which point should the identity access management team be notified of the termination of an employee?

    A. At the end of the day once the employee is off site
    B. During the monthly review cycle
    C. Immediately so the employee account(s) can be disabled
    D. Before an audit

  • Question 294:

    The process of identifying and classifying assets is typically included in the

    A. Threat analysis process
    B. Asset configuration management process
    C. Business Impact Analysis
    D. Disaster Recovery plan

  • Question 295:

    The exposure factor of a threat to your organization is defined by?

    A. Asset value times exposure factor
    B. Annual rate of occurrence
    C. Annual loss expectancy minus current cost of controls
    D. Percentage of loss experienced due to a realized threat event

  • Question 296:

    What two methods are used to assess risk impact?

    A. Cost and annual rate of expectance
    B. Subjective and Objective
    C. Qualitative and percent of loss realized
    D. Quantitative and qualitative

  • Question 297:

    You are just hired as the new CISO and are being briefed on all the Information Security projects that your section has on going. You discover that most projects are behind schedule and over budget. Using the best business practices for project management you determine that the project correct aligns with the company goals. What needs to be verified FIRST?

    A. Scope of the project
    B. Training of the personnel on the project
    C. Timeline of the project milestones
    D. Vendor for the project

  • Question 298:

    A method to transfer risk is to:

    A. Implement redundancy
    B. move operations to another region
    C. purchase breach insurance
    D. Alignment with business operations

  • Question 299:

    Which of the following is a fundamental component of an audit record?

    A. Date and time of the event
    B. Failure of the event
    C. Originating IP-Address
    D. Authentication type

  • Question 300:

    Scenario: Your organization employs single sign-on (user name and password only) as a convenience to your employees to access organizational systems and data. Permission to individual systems and databases is vetted and approved through supervisors and data owners to ensure that only approved personnel can use particular applications or retrieve information. All employees have access to their own human resource information, including the ability to change their bank routing and account information and other personal details through the Employee Self-Service application. All employees have access to the organizational VPN.

    The organization wants a more permanent solution to the threat to user credential compromise through phishing.

    What technical solution would BEST address this issue?

    A. Professional user education on phishing conducted by a reputable vendor
    B. Multi-factor authentication employing hard tokens
    C. Forcing password changes every 90 days
    D. Decreasing the number of employees with administrator privileges

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 512-50 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.