Exercise - ISO27001 LEAD AUDITOR

Quiz

•

Social Studies

•

1st Grade

•

Medium

sudiyuwono wowo

Used 4+ times

FREE Resource

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which statement below best describes the relationship between information security aspects?

Threats exploit vulnerabilities to damage or destroy assets

Controls protect assets by reducing threats

Risk is a function of vulnerabilities that harm assets

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A data processing tool crashed when a user added more data in the buffer than its storage capacity allows.
The incident was caused by the tool's inability to bound check arrays. What kind of vulnerability is this?

Integrity and availability

Confidentiality and integrity

Confidentiality and availability

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which option below about the ISMS scope is correct?

ISMS scope should be available as documented information

ISMS scope should ensure continual improvement

ISMS scope should be compatible with the strategic orientation of the organization

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What factors should an auditor consider when evaluating the conformity of documented information?

Content and format

Dates and signatures

Alignment with policies

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A marketing agency has developed its own risk assessment approach as part of theISMS implementation. Is this acceptable?

Yes, any risk assessment methodology that provides accurate and reliable results is acceptable

Yes, only if the risk assessment methodology is aligned with recognized risk assessment methodologies

No, when implementing an ISMS, the risk assessment methodology provided by
ISO/IEC 27001 should be used

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of options below is a control to the management of personnel that aims to avoid the occurrence of incidents?

The organization regularly provides security awareness and training sessions for its employees

The organization always reviews the security policy after the integration of a new division to the organization

The organization conducts regular user access reviews to verify that only authorized employees have access to confidential information

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The auditor issued an unfavourable report for Company 1 by strictly examining the audit evidence. He was not intimidated when Company 1, the main client of his audit firm, threatened to terminate the contract if the audit report does not suit them. Which principle of auditing has the auditor followed?

Independence

Confidentiality

Fair presentation

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

or continue with

Microsoft

Apple

Others

By signing up, you agree to our Terms of Service & Privacy Policy

Already have an account?

Similar Resources on Wayground

20 questions

The union legislature-The Parliament

Quiz

•

KG - University

20 questions

Islam

Quiz

•

KG - Professional Dev...

20 questions

Political or Physical Map

Quiz

•

1st - 12th Grade

20 questions

UAS ETBIS (KODE ETIK AKUNTAN)

Quiz

•

1st - 3rd Grade

20 questions

Audit Investigasi

Quiz

•

1st Grade

15 questions

Regulasi Kehumasan

Quiz

•

1st Grade

20 questions

PENGAJIAN AM PENGGAL 1

Quiz

•

1st Grade

20 questions

Unit 4 Test US History 1

Quiz

•

KG - 11th Grade

Popular Resources on Wayground

25 questions

Equations of Circles

Quiz

•

10th - 11th Grade

30 questions

Week 5 Memory Builder 1 (Multiplication and Division Facts)

Quiz

•

9th Grade

33 questions

Unit 3 Summative - Summer School: Immune System

Quiz

•

10th Grade

10 questions

Writing and Identifying Ratios Practice

Quiz

•

5th - 6th Grade

36 questions

Prime and Composite Numbers

Quiz

•

5th Grade

14 questions

Exterior and Interior angles of Polygons

Quiz

•

8th Grade

37 questions

Camp Re-cap Week 1 (no regression)

Quiz

•

9th - 12th Grade

46 questions

Biology Semester 1 Review

Quiz

•

10th Grade