Try Before You Buy

Download a free sample of any of our exam questions and answers

  • 24/7 customer support, Secure shopping site
  • Free One year updates to match real exam scenarios
  • If you failed your exam after buying our products we will refund the full amount back to you.
Free Download
  • Home
  • Articles
  • [Q20-Q37] Latest GAQM ISO-IEC-LI First Attempt, Exam real Dumps Updated [Sep-2021]

[Q20-Q37] Latest GAQM ISO-IEC-LI First Attempt, Exam real Dumps Updated [Sep-2021]

Share

Latest GAQM ISO-IEC-LI First Attempt, Exam real Dumps Updated [Sep-2021]

Get the superior quality ISO-IEC-LI Dumps Questions from VCE4Dumps. Nobody can stop you from getting to your dreams now. Your bright future is just a click away!

NEW QUESTION 20
What do employees need to know to report a security incident?

  • A. Whether the incident has occurred before and what was the resulting damage.
  • B. Who is responsible for the incident and whether it was intentional.
  • C. How to report an incident and to whom.
  • D. The measures that should have been taken to prevent the incident in the first place.

Answer: C

 

NEW QUESTION 21
The identified owner of an asset is always an individual

  • A. False
  • B. True

Answer: A

 

NEW QUESTION 22
Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the value of the information in the insurance terms and conditions document?

  • A. The person who drafted the insurance terms and conditions
  • B. The manager, Linda
  • C. The recipient, Rachel
  • D. The sender, Peter

Answer: C

 

NEW QUESTION 23
Responsibilities for information security in projects should be defined and allocated to:

  • A. the owner of the involved asset
  • B. the project manager
  • C. the InfoSec officer
  • D. specified roles defined in the used project management method of the organization

Answer: D

 

NEW QUESTION 24
Which of the following measures is a preventive measure?

  • A. Putting sensitive information in a safe
  • B. Installing a logging system that enables changes in a system to be recognized
  • C. Classifying a risk as acceptable because the cost of addressing the threat is higher than the value of the information at risk
  • D. Shutting down all internet traffic after a hacker has gained access to the company systems

Answer: A

 

NEW QUESTION 25
Susan sends an email to Paul. Who determines the meaning and the value of information in this email?

  • A. Susan, the sender of the information.
  • B. Paul and Susan, the sender and the recipient of the information.
  • C. Paul, the recipient of the information.

Answer: C

 

NEW QUESTION 26
Midwest Insurance grades the monthly report of all claimed losses per insured as confidential. What is accomplished if all other reports from this insurance office are also assigned the appropriate grading?

  • A. Everyone can easily see how sensitive the reports' contents are by consulting the grading label.
  • B. A determination can be made as to which report should be printed first and which ones can wait a little longer.
  • C. The costs for automating are easier to charge to the responsible departments.
  • D. Reports can be developed more easily and with fewer errors.

Answer: A

 

NEW QUESTION 27
It is allowed that employees and contractors are provided with an anonymous reporting channel to report violations of information security policies or procedures ("whistle blowing")

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 28
Which of these reliability aspects is "completeness" a part of?

  • A. Availability
  • B. Integrity
  • C. Exclusivity
  • D. Confidentiality

Answer: B

 

NEW QUESTION 29
Prior to employment, _________ as well as terms & conditions of employment are included as controls in ISO
27002 to ensure that employees and contractors understand their responsibilities and are suitable for the roles for which they are considered.

  • A. authorizing
  • B. screening
  • C. controlling
  • D. flexing

Answer: B

 

NEW QUESTION 30
Why is compliance important for the reliability of the information?

  • A. By meeting the legislative requirements and the regulations of both the government and internal management, an organization shows that it manages its information in a sound manner.
  • B. When an organization is compliant, it meets the requirements of privacy legislation and, in doing so, protects the reliability of its information.
  • C. Compliance is another word for reliability. So, if a company indicates that it is compliant, it means that the information is managed properly.
  • D. When an organization employs a standard such as the ISO/IEC 27002 and uses it everywhere, it is compliant and therefore it guarantees the reliability of its information.

Answer: A

 

NEW QUESTION 31
Logging in to a computer system is an access-granting process consisting of three steps: identification, authentication and authorization. What occurs during the first step of this process: identification?

  • A. The first step consists of granting access to the information to which the user is authorized.
  • B. The first step consists of checking if the user appears on the list of authorized users.
  • C. The first step consists of comparing the password with the registered password.
  • D. The first step consists of checking if the user is using the correct certificate.

Answer: B

 

NEW QUESTION 32
You are the owner of a growing company, SpeeDelivery, which provides courier services. You decide that it is time to draw up a risk analysis for your information system. This includes an inventory of threats and risks.
What is the relation between a threat, risk and risk analysis?

  • A. A risk analysis is used to clarify which threats are relevant and what risks they involve.
  • B. A risk analysis identifies threats from the known risks.
  • C. A risk analysis is used to remove the risk of a threat.
  • D. Risk analyses help to find a balance between threats and risks.

Answer: A

 

NEW QUESTION 33
What is the objective of classifying information?

  • A. Displaying on the document who is permitted access
  • B. Creating a label that indicates how confidential the information is
  • C. Defining different levels of sensitivity into which information may be arranged
  • D. Authorizing the use of an information system

Answer: C

 

NEW QUESTION 34
Which is a legislative or regulatory act related to information security that can be imposed upon all organizations?

  • A. ISO/IEC 27001:2005
  • B. ISO/IEC 27002:2005
  • C. Personal data protection legislation
  • D. Intellectual Property Rights

Answer: C

 

NEW QUESTION 35
ISO 27002 provides guidance in the following area

  • A. Detailed lists of required policies and procedures
  • B. Information handling recommendations
  • C. PCI environment scoping
  • D. Framework for an overall security and compliance program

Answer: D

 

NEW QUESTION 36
What is the greatest risk for an organization if no information security policy has been defined?

  • A. It is not possible for an organization to implement information security in a consistent manner.
  • B. Information security activities are carried out by only a few people.
  • C. Too many measures are implemented.
  • D. If everyone works with the same account, it is impossible to find out who worked on what.

Answer: A

 

NEW QUESTION 37
......

Guaranteed Success with Valid GAQM ISO-IEC-LI Dumps: https://www.vce4dumps.com/ISO-IEC-LI-valid-torrent.html

 

Related Articles

more
GAQM ISO-IEC-LI Certification Practice Exam

VCE4Dumps have latest exam dumps vce and valid certification dumps, with the help of vce dumps, you will get a high score in the test.

Latest VCE Dumps

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 VCE4Dumps NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy