• Home
  • Articles
  • [UPDATED] PECB ISO-IEC-27001-Lead-Auditor Certification Exam Questions [Q50-Q71]

[UPDATED] PECB ISO-IEC-27001-Lead-Auditor Certification Exam Questions [Q50-Q71]

Share

[UPDATED] PECB ISO-IEC-27001-Lead-Auditor Certification Exam Questions

Quickly and Easily Pass PECB Exam with ISO-IEC-27001-Lead-Auditor real Dumps

NEW QUESTION 50
Information Security is a matter of building and maintaining ________ .

  • A. Protection
  • B. Confidentiality
  • C. Firewalls
  • D. Trust

Answer: D

 

NEW QUESTION 51
How is the purpose of information security policy best described?

  • A. An information security policy provides direction and support to the management regarding information security.
  • B. An information security policy provides insight into threats and the possible consequences.
  • C. An information security policy makes the security plan concrete by providing it with the necessary details.
  • D. An information security policy documents the analysis of risks and the search for countermeasures.

Answer: A

 

NEW QUESTION 52
The following are definitions of Information, except:

  • A. can lead to understanding and decrease in uncertainty
  • B. specific and organized data for a purpose
  • C. accurate and timely data
  • D. mature and measurable data

Answer: D

 

NEW QUESTION 53
Stages of Information

  • A. creation, use, disposition, maintenance, evolution
  • B. creation, distribution, use, maintenance, disposition
  • C. creation, evolution, maintenance, use, disposition
  • D. creation, distribution, maintenance, disposition, use

Answer: B

 

NEW QUESTION 54
A decent visitor is roaming around without visitor's ID. As an employee you should do the following, except:

  • A. Say "hi" and offer coffee
  • B. Escort him to his destination
  • C. Greet and ask him what is his business
  • D. Call the receptionist and inform about the visitor

Answer: A

 

NEW QUESTION 55
After a fire has occurred, what repressive measure can be taken?

  • A. Buying in a proper fire insurance policy
  • B. Extinguishing the fire after the fire alarm sounds
  • C. Repairing all systems after the fire

Answer: B

 

NEW QUESTION 56
Why do we need to test a disaster recovery plan regularly, and keep it up to date?

  • A. Otherwise the measures taken and the incident procedures planned may not be adequate
  • B. Otherwise it is no longer up to date with the registration of daily occurring faults
  • C. Otherwise remotely stored backups may no longer be available to the security team

Answer: A

 

NEW QUESTION 57
What is a definition of compliance?

  • A. The state or fact of according with or meeting rules or standards
  • B. A rule or directive made and maintained by an authority.
  • C. Laws, considered collectively or the process of making or enacting laws
  • D. An official or authoritative instruction

Answer: A

 

NEW QUESTION 58
In acceptable use of Information Assets, which is the best practice?

  • A. Interfering with or denying service to any user other than the employee's host
  • B. Access to information and communication systems are provided for business purpose only
  • C. Playing any computer games during office hours
  • D. Accessing phone or network transmissions, including wireless or wifi transmissions

Answer: B

 

NEW QUESTION 59
What is the standard definition of ISMS?

  • A. A project-based approach to achieve business objectives for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an organization's information security
  • B. Is an information security systematic approach to achieve business objectives for implementation, establishing, reviewing,operating and maintaining organization's reputation.
  • C. A systematic approach for establishing, implementing, operating,monitoring, reviewing, maintaining and improving an organization's information security to achieve business objectives.
  • D. A company wide business objectives to achieve information security awareness for establishing, implementing, operating, monitoring, reviewing, maintaining and improving

Answer: C

 

NEW QUESTION 60
Which of the following does an Asset Register contain? (Choose two)

  • A. Asset Owner
  • B. Asset Modifier
  • C. Process ID
  • D. Asset Type

Answer: A,D

 

NEW QUESTION 61
__________ is a software used or created by hackers to disrupt computer operation, gather sensitive information, or gain access to private computer systems.

  • A. Operating System
  • B. Trojan
  • C. Malware
  • D. Virus

Answer: C

 

NEW QUESTION 62
A planning process that introduced the concept of planning as a cycle that forms the basis for continuous improvement is called:

  • A. plan, do, check, act.
  • B. RACI Matrix
  • C. planning for continuous improvement.
  • D. time based planning.

Answer: A

 

NEW QUESTION 63
Which of the following is a preventive security measure?

  • A. Installing logging and monitoring software
  • B. Storing sensitive information in a data save
  • C. Shutting down the Internet connection after an attack

Answer: B

 

NEW QUESTION 64
Four types of Data Classification (Choose two)

  • A. Project Data, Highly Confidential Data
  • B. Financial Data, Highly Confidential Data
  • C. Unrestricted Data, Highly Confidential Data
  • D. Restricted Data, Confidential Data

Answer: C,D

 

NEW QUESTION 65
Backup media is kept in the same secure area as the servers. What risk may the organisation be exposed to?

  • A. After a fire, the information systems cannot be restored
  • B. Responsibility for the backups is not defined well
  • C. After a server crash, it will take extra time to bring it back up again
  • D. Unauthorised persons will have access to both the servers and backups

Answer: A

 

NEW QUESTION 66
Information or data that are classified as ______ do not require labeling.

  • A. Internal
  • B. Public
  • C. Highly Confidential
  • D. Confidential

Answer: B

 

NEW QUESTION 67
Changes to the information processing facilities shall be done in controlled manner.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 68
In what part of the process to grant access to a system does the user present a token?

  • A. Authorisation
  • B. Verification
  • C. Identification
  • D. Authentication

Answer: C

 

NEW QUESTION 69
Which of the following factors does NOT contribute to the value of data for an organisation?

  • A. The content of data
  • B. The correctness of data
  • C. The importance of data for processes
  • D. The indispensability of data

Answer: A

 

NEW QUESTION 70
Often, people do not pick up their prints from a shared printer. How can this affect the confidentiality of information?

  • A. Confidentiality cannot be guaranteed
  • B. Integrity cannot be guaranteed
  • C. Authenticity cannot be guaranteed
  • D. Availability cannot be guaranteed

Answer: A

 

NEW QUESTION 71
......


PECB ISO-IEC-27001-Lead-Auditor Exam Syllabus Topics:

TopicDetails
Topic 1
  • Managing an ISO
  • IEC 27001 audit program
  • Preparation, Conducting, Closing of an ISO
  • IEC 27001 audit
Topic 2
  • Plan, conduct, and close an ISO
  • IEC 27001 compliance audit
  • Manage an ISO
  • IEC 27001 audit program
Topic 3
  • Interpret the ISO
  • IEC 27001 requirements for an ISMS from the perspective of an auditor
  • Information Security Management System (ISMS)

 

Start your ISO-IEC-27001-Lead-Auditor Exam Questions Preparation: https://www.actualcollection.com/ISO-IEC-27001-Lead-Auditor-exam-questions.html

Realistic ISO-IEC-27001-Lead-Auditor Dumps Questions To Gain Brilliant Result: https://drive.google.com/open?id=19KQslJrU_Bupgyyo59h6IfMvoM-qh7fg

Related Articles

more
PECB ISO-IEC-27001-Lead-Auditor Certification Practice Exam

Copyright © 2026 ActualCollection NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy