[Free] 2019(Nov) EnsurePass Exin ISFS Dumps with VCE and PDF 21-30

Get Full Version of the Exam

Question No.21

What is the objective of classifying information?

  1. Authorizing the use of an information system

  2. Creating a label that indicates how confidential the information is

  3. Defining different levels of sensitivity into which information may be arranged

  4. Displaying on the document who is permitted access

Correct Answer: C

Question No.22

What do employees need to know to report a security incident?

  1. How to report an incident and to whom.

  2. Whether the incident has occurred before and what was the resulting damage.

  3. The measures that should have been taken to prevent the incident in the first place.

  4. Who is responsible for the incident and whether it was intentional.

Correct Answer: A

Question No.23

You have just started working at a large organization. You have been asked to sign a code of conduct as well as a contract. What does the organization wish to achieve with this?

  1. A code of conduct helps to prevent the misuse of IT facilities.

  2. A code of conduct is a legal obligation that organizations have to meet.

  3. A code of conduct prevents a virus outbreak.

  4. A code of conduct gives staff guidance on how to report suspected misuses of IT facilities.

Correct Answer: A

Question No.24

Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the value of the information in the insurance terms and conditions document?

  1. The recipient, Rachel

  2. The person who drafted the insurance terms and conditions

  3. The manager, Linda

  4. The sender, Peter

Correct Answer: A

Question No.25

When we are at our desk, we want the information system and the necessary information to be available. We want to be able to work with the computer and access the network and our files.What is the correct definition of availability?

  1. The degree to which the system capacity is enough to allow all users to work with it

  2. The degree to which the continuity of an organization is guaranteed

  3. The degree to which an information system is available for the users

  4. The total amount of time that an information system is accessible to the users

Correct Answer: C

Question No.26

What is an example of a non-human threat to the physical environment?

  1. Fraudulent transaction

  2. Corrupted file

  3. Storm

  4. Virus

Correct Answer: C

Question No.27

In most organizations, access to the computer or the network is granted only after the user has entered a correct username and password. This process consists of 3 steps: identification, authentication and authorization. What is the purpose of the second step, authentication?

  1. In the second step, you make your identity known, which means you are given access to the system.

  2. The authentication step checks the username against a list of users who have access to the system.

  3. The system determines whether access may be granted by determining whether the token used is authentic.

  4. During the authentication step, the system gives you the rights that you need, such as being able to read the data in the system.

Correct Answer: C

Question No.28

Which of these is not malicious software?

  1. Phishing

  2. Spyware

  3. Virus

  4. Worm

Correct Answer: A

Question No.29

Some threats are caused directly by people, others have a natural cause. What is an example of an intentional human threat?

  1. Lightning strike

  2. Arson

  3. Flood

  4. Loss of a USB stick

Correct Answer: B

Question No.30

What is the definition of the Annual Loss Expectancy?

  1. The Annual Loss Expectancy is the amount of damage that can occur as a result of an incident during the year.

  2. The Annual Loss Expectancy is the size of the damage claims resulting from not having carried out risk analyses effectively.

  3. The Annual Loss Expectancy is the average damage calculated by insurance companies for businesses in a country.

  4. The Annual Loss Expectancy is the minimum amount for which an organization must insure itself.

Correct Answer: A

Get Full Version of the Exam
ISFS Dumps