Free 712-50 Exam Braindumps

- (Topic 1)
A method to transfer risk is to:

1. A. Implement redundancy
2. B. move operations to another region
3. C. purchase breach insurance
4. D. Alignment with business operations

Correct Answer: C

- (Topic 5)
Scenario: An organization has recently appointed a CISO. This is a new role in the organization and it signals the increasing need to address security consistently at the enterprise level. This new CISO, while confident with skills and experience, is constantly on the defensive and is unable to advance the IT security centric agenda.
Which of the following is the reason the CISO has not been able to advance the security agenda in this organization?

1. A. Lack of identification of technology stake holders
2. B. Lack of business continuity process
3. C. Lack of influence with leaders outside IT
4. D. Lack of a security awareness program

Correct Answer: C

- (Topic 5)
Scenario: Most industries require compliance with multiple government regulations and/or industry standards to meet data protection and privacy mandates.
When multiple regulations or standards apply to your industry you should set controls to meet the:

1. A. Easiest regulation or standard to implement
2. B. Stricter regulation or standard
3. C. Most complex standard to implement
4. D. Recommendations of your Legal Staff

Correct Answer: A

- (Topic 3)
Which business stakeholder is accountable for the integrity of a new information system?

1. A. CISO
2. B. Compliance Officer
3. C. Project manager
4. D. Board of directors

Correct Answer: A

- (Topic 2)
With respect to the audit management process, management response serves what function?

1. A. placing underperforming units on notice for failing to meet standards
2. B. determining whether or not resources will be allocated to remediate a finding
3. C. adding controls to ensure that proper oversight is achieved by management
4. D. revealing the “root cause” of the process failure and mitigating for all internal and external units

Correct Answer: B