Real EC-COUNCIL 512-50 Exam Dumps with Correct 402 Questions and Answers [Q203-Q220]

Rate this post

Real EC-COUNCIL 512-50 Exam Dumps with Correct 402 Questions and Answers

Valid 512-50 Test Answers & EC-COUNCIL 512-50 Exam PDF

Certification Path

There is no prerequisite for this exam.

Q203. A severe security threat has been detected on your corporate network. As CISO you quickly assemble key members of the Information Technology team and business operations to determine a modification to security controls in response to the threat. This is an example of:

Change management

Business continuity planning

Security Incident Response

Thought leadership

Q204. The Information Security Management program MUST protect:

all organizational assets

critical business processes and /or revenue streams

intellectual property released into the public domain

against distributed denial of service attacks

Q205. Which of the following can the company implement in order to avoid this type of security issue in the future?

Network based intrusion detection systems

A security training program for developers

A risk management process

A audit management process

Q206. While designing a secondary data center for your company what document needs to be analyzed to determine to how much should be spent on building the data center?

Enterprise Risk Assessment

Disaster recovery strategic plan

Business continuity plan

Application mapping document

Q207. Your IT auditor is reviewing significant events from the previous year and has identified some procedural oversights. Which of the following would be the MOST concerning?

Lack of notification to the public of disclosure of confidential information.

Lack of periodic examination of access rights

Failure to notify police of an attempted intrusion

Lack of reporting of a successful denial of service attack on the network.

Q208. SQL injection is a very popular and successful injection attack method. Identify the basic SQL injection text:

‘ o 1=1 – –

/../../../../

“DROPTABLE USERNAME”

NOPS

Q209. What is the MAIN reason for conflicts between Information Technology and Information Security programs?

Technology governance defines technology policies and standards while security governance does not.

Security governance defines technology best practices and Information Technology governance does not.

Technology Governance is focused on process risks whereas Security Governance is focused on business risk.

The effective implementation of security controls can be viewed as an inhibitor to rapid Information Technology implementations.

Q210. The Information Security Governance program MUST:

integrate with other organizational governance processes

support user choice for Bring Your Own Device (BYOD)

integrate with other organizational governance processes

show a return on investment for the organization

Q211. Risk is defined as:

Threat times vulnerability divided by control

Advisory plus capability plus vulnerability

Asset loss times likelihood of event

Quantitative plus qualitative impact

Q212. Which of the following international standards can be BEST used to define a Risk Management process in an organization?

National Institute for Standards and Technology 800-50 (NIST 800-50)

International Organization for Standardizations – 27005 (ISO-27005)

Payment Card Industry Data Security Standards (PCI-DSS)

International Organization for Standardizations – 27004 (ISO-27004)

Q213. Your incident handling manager detects a virus attack in the network of your company. You develop a signature based on the characteristics of the detected virus. Which of the following phases in the incident handling process will utilize the signature to resolve this incident?

Containment

Recovery

Identification

Eradication

Q214. According to the National Institute of Standards and Technology (NIST) SP 800-40, which of the following considerations are MOST important when creating a vulnerability management program?

Susceptibility to attack, mitigation response time, and cost

Attack vectors, controls cost, and investigation staffing needs

Vulnerability exploitation, attack recovery, and mean time to repair

Susceptibility to attack, expected duration of attack, and mitigation availability

Q215. Scenario: An organization has made a decision to address Information Security formally and consistently by adopting established best practices and industry standards. The organization is a small retail merchant but it is expected to grow to a global customer base of many millions of customers in just a few years.
Which of the following frameworks and standards will BEST fit the organization as a baseline for their security program?

NIST and Privacy Regulations

ISO 27000 and Payment Card Industry Data Security Standards

NIST and data breach notification laws

ISO 27000 and Human resources best practices

Q216. A missing/ineffective security control is identified. Which of the following should be the NEXT step?

Perform an audit to measure the control formally

Escalate the issue to the IT organization

Perform a risk assessment to measure risk

Establish Key Risk Indicators

Q217. Scenario: Your program is developed around minimizing risk to information by focusing on people, technology, and operations.
An effective way to evaluate the effectiveness of an information security awareness program for end users, especially senior executives, is to conduct periodic:

Controlled spear phishing campaigns

Password changes

Baselining of computer systems

Scanning for viruses

Q218. Scenario: You are the CISO and have just completed your first risk assessment for your organization. You find many risks with no security controls, and some risks with inadequate controls. You assign work to your staff to create or adjust existing security controls to ensure they are adequate for risk mitigation needs.
You have identified potential solutions for all of your risks that do not have security controls. What is the NEXT step?

Get approval from the board of directors

Screen potential vendor solutions

Verify that the cost of mitigation is less than the risk

Create a risk metrics for all unmitigated risks

Q219. The Annualized Loss Expectancy (Before) minus Annualized Loss Expectancy (After) minus Annual Safeguard Cost is the formula for determining:

Safeguard Value

Cost Benefit Analysis

Single Loss Expectancy

Life Cycle Loss Expectancy

Q220. Which of the following functions implements and oversees the use of controls to reduce risk when creating an information security program?

Risk Assessment

Incident Response

Risk Management

Network Security administration

Loading …