• Home
  • Articles
  • [Jan-2022] ISO-IEC-27001-Lead-Implementer Dumps Full Questions - ISO 27001 Exam Study Guide [Q18-Q39]

[Jan-2022] ISO-IEC-27001-Lead-Implementer Dumps Full Questions - ISO 27001 Exam Study Guide [Q18-Q39]

Share

[Jan-2022] ISO-IEC-27001-Lead-Implementer Dumps Full Questions - ISO 27001 Exam Study Guide

Exam Questions and Answers for  ISO-IEC-27001-Lead-Implementer Study Guide

NEW QUESTION 18
What is the greatest risk for an organization ifno information security policy has been defined?

  • A. If everyone works with the same account, it is impossible to find out who worked on what.
  • B. Information security activities are carried out by only a few people.
  • C. It is not possible for an organization to implement information security in a consistent manner.
  • D. Too many measures areimplemented.

Answer: C

 

NEW QUESTION 19
One of the ways Internet of Things (IoT) devices can communicate with each other (or 'the outside world') is using a so-called short-range radio protocol. Which kind of short-range radio protocol makes it possible to use your phone as a credit card?

  • A. Near Field Communication (NFC)
  • B. The 4G protocol
  • C. Bluetooth
  • D. Radio Frequency Identification (RFID)

Answer: A

 

NEW QUESTION 20
In the context ofcontact with special interest groups, any information-sharing agreements should identify requirements for the protection of _________ information.

  • A. Confidential
  • B. Availability
  • C. Authentic
  • D. Authorization

Answer: A

 

NEW QUESTION 21
The company Midwest Insurance has taken many measures to protect its information. It uses an Information Security Management System, the input and output of data in applications is validated, confidential documents are sent in encrypted form and staff use tokens to access information systems. Which of these is not a technical measure?

  • A. Information Security Management System
  • B. Encryption ofinformation
  • C. The use of tokens to gain access to information systems
  • D. Validation of input and output data in applications

Answer: A

 

NEW QUESTION 22
What sort of security does a Public Key Infrastructure (PKI) offer?

  • A. It provides digital certificates that can be used to digitally signdocuments. Such signatures irrefutably determine from whom a document was sent.
  • B. Having a PKI shows customers that a web-based business is secure.
  • C. By providing agreements, procedures and an organization structure, a PKI defines which person or which system belongs to which specific public key.
  • D. A PKI ensures that backups of company data are made on a regular basis.

Answer: D

 

NEW QUESTION 23
Which is a legislative or regulatory act related to information security that can be imposed upon all organizations?

  • A. Personal data protection legislation
  • B. Intellectual Property Rights
  • C. ISO/IEC 27002:2005
  • D. ISO/IEC 27001:2005

Answer: A

 

NEW QUESTION 24
What are the data protection principles set out in the GDPR?

  • A. Purpose limitation, proportionality, availability, data minimisation
  • B. Purpose limitation, pudicity, transparency, data minimisation
  • C. Purpose limitation, proportionality, data minimisation, transparency
  • D. Target group, proportionality, transparency, data minimisation

Answer: C

 

NEW QUESTION 25
What is an example of a good physical security measure?

  • A. Maintenance staff can be given quick and unimpeded access to the server area in the event of disaster.
  • B. Printers that are defective or have been replacedare immediately removed and given away as garbage for recycling.
  • C. All employees and visitors carry an access pass.

Answer: C

 

NEW QUESTION 26
How many domains does ISO / IEC 27002: 2013 have?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: C

 

NEW QUESTION 27
Select the controls that correspond to thedomain "9. ACCESS CONTROL" of ISO / 27002 (Choose three)

  • A. Restriction of access to information
  • B. Management of access rights with special privileges
  • C. Withdrawal or adaptation of access rights
  • D. Return of assets

Answer: A,C,D

 

NEW QUESTION 28
What is an example of a security incident?

  • A. A file is saved under an incorrect name.
  • B. You cannot set the correct fonts in your word processing software.
  • C. The lighting in the department no longer works.
  • D. A member of staff loses a laptop.

Answer: D

 

NEW QUESTION 29
Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the value of the information in the insurance terms and conditions document?

  • A. The recipient, Rachel
  • B. The person who drafted the insurance terms and conditions
  • C. The sender, Peter
  • D. The manager, Linda

Answer: A

 

NEW QUESTION 30
What is the ISO / IEC 27002 standard?

  • A. It is a guide for the development and use of applicable metrics and measurement techniques to determine the effectiveness of an ISMS and the controls or groups of controls implemented according to ISO / IEC 27001.
  • B. It is a guide that focuses on the critical aspects necessary for the successful design and implementation of an ISMS in accordance with ISO / IEC 27001
  • C. It is a guide of good practices that describes the controlobjectives and recommended controls regarding information security.

Answer: C

 

NEW QUESTION 31
You are the owner of a growing company, SpeeDelivery, which provides courier services. You decide that it is time to draw up a risk analysis for your information system. This includes an inventoryof threats and risks.
What is the relation between a threat, risk and risk analysis?

  • A. A riskanalysis is used to remove the risk of a threat.
  • B. A risk analysis identifies threats from the known risks.
  • C. A risk analysis is used to clarify which threats are relevant and what risks they involve.
  • D. Risk analyses help to find a balance between threats and risks.

Answer: C

 

NEW QUESTION 32
Midwest Insurance grades the monthly report of all claimed losses per insured as confidential. What is accomplished if all other reports from this insurance office are also assigned the appropriate grading?

  • A. Everyone can easily see how sensitive the reports' contents are by consulting the grading label.
  • B. The costs for automating are easier to charge to the responsible departments.
  • C. A determination can be made as to which report should be printed firstand which ones can wait a little longer.
  • D. Reports can be developed more easily and with fewer errors.

Answer: A

 

NEW QUESTION 33
An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry date of a contract with one of theclients is earlier than the start date. What type of measure could prevent this error?

  • A. Organizational measure
  • B. Availability measure
  • C. Integrity measure
  • D. Technical measure

Answer: D

 

NEW QUESTION 34
Of the following, which is the best organization or set of organizations to contribute to compliance?

  • A. IT and management
  • B. IT and legal
  • C. IT,business management, HR and legal
  • D. IT only

Answer: C

 

NEW QUESTION 35
Responsibilities for information security in projects should be defined and allocated to:

  • A. the InfoSec officer
  • B. specified roles defined in the used project management method of the organization
  • C. the owner of the involved asset
  • D. the project manager

Answer: B

 

NEW QUESTION 36
What is an example of a non-human threat to the physical environment?

  • A. Virus
  • B. Storm
  • C. Corrupted file
  • D. Fraudulent transaction

Answer: B

 

NEW QUESTION 37
Companies use 27002 for compliance for which of the following reasons:

  • A. A structured program that helps with security and compliance
  • B. Explicit requirements for all regulations
  • C. Compliance with ISO 27002 is sufficient to comply with all regulations

Answer: A

 

NEW QUESTION 38
......

PECB Certified ISO/IEC 27001 Lead Implementer exam Free Update With 100% Exam Passing Guarantee: https://www.vcedumps.com/ISO-IEC-27001-Lead-Implementer-examcollection.html

Real Exam Questions & Answers - PECB ISO-IEC-27001-Lead-Implementer Dump is Ready: https://drive.google.com/open?id=1DrzoRGRf0PC1bUp7NTPymA4qxjI4Vp4O

Related Articles

more
PECB ISO-IEC-27001-Lead-Implementer Certification Practice Exam

VCEDumps is a joint venture for provding vce files free and valid dumps pdf. We guarantee VCEDumps dumps pdf help you pass exam 100% for sure. Not Valid, Full Refund!

Latest VCE Dumps

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 VCEDumps NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy

Disclaimers:
VCEDumps material do not contain actual Business Architecture Guild Exam Questions or materials.
SAP, Microsoft, Google, Amazon, Certiport, Qualtrics are Registered Trade Mark.
VCEDumps website is not related to, affiliated with, endorsed or authorized by Amazon. Trademarks, certification & product names are used for reference only and belong to Amazon.
VCEDumps offers only Probable Questions and Answers. VCEDumps offer learning materials and practice tests created by subject matter experts to assist and help learner prepare for those exams.
All Certification Brands used on the website are owned by the respective brand owners. VCEDumps does not own or claim any ownership on any of the brands. The site www.vcedumps.com is in no way affiliated with SAP SE.