• Home
  • Articles
  • The Best Practice Test Preparation for the ISFS Certification Exam [Q10-Q33]

The Best Practice Test Preparation for the ISFS Certification Exam [Q10-Q33]

Share

The Best Practice Test Preparation for the ISFS Certification Exam

ISFS Exam Dumps, Practice Test Questions BUNDLE PACK


EXIN ISFS (Information Security Foundation based on ISO/IEC 27001) Exam is a certification program designed for professionals and students who want to gain a comprehensive understanding of information security management systems. ISFS exam is based on the ISO/IEC 27001:2013 standard and covers a range of topics, including security policies, risk management, security controls, and the implementation of an information security management system.


The ISFS certification is ideal for individuals who are looking to pursue a career in information security or for those who are already working in the field but want to enhance their skills and knowledge. Information Security Foundation based on ISO/IEC 27001 certification provides a solid foundation for professionals to build upon and offers a competitive edge in the job market. It is also a valuable credential for organizations that want to demonstrate their commitment to information security to their customers and stakeholders.


How much ISFS Exam Cost

The price of the ISFS exam is $176 USD.

 

NEW QUESTION # 10
Some security measures are optional. Other security measures must always be implemented. Which measure(s) must always be implemented?

  • A. Physical security measures
  • B. Clear Desk Policy
  • C. Logical access security measures
  • D. Measures required by laws and regulations

Answer: D


NEW QUESTION # 11
Which type of malware builds a network of contaminated computers?

  • A. Virus
  • B. Trojan
  • C. Storm Worm or Botnet
  • D. Logic Bomb

Answer: C


NEW QUESTION # 12
You are the owner of the SpeeDelivery courier service. Last year you had a firewall installed. You now discover that no maintenance has been performed since the installation. What is the biggest risk because of this?

  • A. The risk that hackers can do as they wish on the network without detection
  • B. The risk of undesired e-mails
  • C. The risk of a virus outbreak
  • D. The risk that fire may break out in the server room

Answer: A


NEW QUESTION # 13
You work in the IT department of a medium-sized company. Confidential information has got into the wrong hands several times. This has hurt the image of the company. You have been asked to propose organizational security measures for laptops at your company. What is the first step that you should take?

  • A. Encrypt the hard drives of laptops and USB sticks
  • B. Formulate a policy regarding mobile media (PDAs, laptops, smartphones, USB sticks)
  • C. Appoint security personnel
  • D. Set up an access control policy

Answer: B


NEW QUESTION # 14
A couple of years ago you started your company which has now grown from 1 to 20 employees.
Your companys information is worth more and more and gone are the days when you could keep it all in hand yourself. You are aware that you have to take measures, but what should they be?
You hire a consultant who advises you to start with a qualitative risk analysis. What is a qualitative risk analysis?

  • A. This analysis follows a precise statistical probability calculation in order to calculate exact loss caused by damage.
  • B. This analysis is based on scenarios and situations and produces a subjective view of the possible threats.

Answer: B

Explanation:
Explanation


NEW QUESTION # 15
What is the objective of classifying information?

  • A. Authorizing the use of an information system
  • B. Displaying on the document who is permitted access
  • C. Defining different levels of sensitivity into which information may be arranged
  • D. Creating a label that indicates how confidential the information is

Answer: C


NEW QUESTION # 16
What is an example of a security incident?

  • A. A member of staff loses a laptop.
  • B. A file is saved under an incorrect name.
  • C. You cannot set the correct fonts in your word processing software.
  • D. The lighting in the department no longer works.

Answer: A


NEW QUESTION # 17
A company moves into a new building. A few weeks after the move, a visitor appears unannounced in the office of the director. An investigation shows that visitors passes grant the same access as the passes of the companys staff. Which kind of security measure could have prevented this?

  • A. An organizational security measure
  • B. A physical security measure
  • C. A technical security measure

Answer: B


NEW QUESTION # 18
What is a repressive measure in the case of a fire?

  • A. Repairing damage caused by the fire
  • B. Putting out a fire after it has been detected by a fire detector
  • C. Taking out fire insurance

Answer: B


NEW QUESTION # 19
What is an example of a physical security measure?

  • A. The encryption of confidential information
  • B. Special fire extinguishers with inert gas, such as Argon
  • C. A code of conduct that requires staff to adhere to the clear desk policy, ensuring that confidential information is not left visibly on the desk at the end of the work day
  • D. An access control policy with passes that have to be worn visibly

Answer: B


NEW QUESTION # 20
Your organization has an office with space for 25 workstations. These workstations are all fully equipped and in use. Due to a reorganization 10 extra workstations are added, 5 of which are used for a call centre 24 hours per day. Five workstations must always be available. What physical security measures must be taken in order to ensure this?

  • A. Obtain an extra office and connect all 10 new workstations to an emergency power supply and UPS (Uninterruptible Power Supply). Adjust the access control system to the working hours of the new staff. Inform the building security personnel that work will also be carried out in the evenings and at night.
  • B. Obtain an extra office and set up 10 workstations. Ensure that there are security personnel both in the evenings and at night, so that staff can work there safely and securely.
  • C. Obtain an extra office and set up 10 workstations. You would therefore have spare equipment that can be used to replace any non-functioning equipment.
  • D. Obtain an extra office and provide a UPS (Uninterruptible Power Supply) for the five most important workstations.

Answer: A


NEW QUESTION # 21
Which of the following measures is a corrective measure?

  • A. Making a backup of the data that has been created or altered that day
  • B. Incorporating an Intrusion Detection System (IDS) in the design of a computer centre
  • C. Installing a virus scanner in an information system
  • D. Restoring a backup of the correct database after a corrupt copy of the database was written over the original

Answer: D


NEW QUESTION # 22
You are the owner of the courier company SpeeDelivery. On the basis of your risk analysis you have decided to take a number of measures. You have daily backups made of the server, keep the server room locked and install an intrusion alarm system and a sprinkler system. Which of these measures is a detective measure?

  • A. Backup tape
  • B. Sprinkler installation
  • C. Access restriction to special rooms
  • D. Intrusion alarm

Answer: D


NEW QUESTION # 23
You are the owner of a growing company, SpeeDelivery, which provides courier services. You decide that it is time to draw up a risk analysis for your information system. This includes an inventory of the threats and risks.
What is the relation between a threat, risk and risk analysis?

  • A. A risk analysis identifies threats from the known risks.
  • B. Risk analyses help to find a balance between threats and risks.
  • C. A risk analysis is used to remove the risk of a threat.
  • D. A risk analysis is used to clarify which threats are relevant and what risks they involve.

Answer: D


NEW QUESTION # 24
What is the best description of a risk analysis?

  • A. A risk analysis calculates the exact financial consequences of damages.
  • B. A risk analysis is a method of mapping risks without looking at company processes.
  • C. A risk analysis helps to estimate the risks and develop the appropriate security measures.

Answer: C


NEW QUESTION # 25
A couple of years ago you started your company which has now grown from 1 to 20 employees. Your companys information is worth more and more and gone are the days when you could keep it all in hand yourself. You are aware that you have to take measures, but what should they be? You hire a consultant who advises you to start with a qualitative risk analysis. What is a qualitative risk analysis?

  • A. This analysis follows a precise statistical probability calculation in order to calculate exact loss caused by damage.
  • B. This analysis is based on scenarios and situations and produces a subjective view of the possible threats.

Answer: B


NEW QUESTION # 26
What is the most important reason for applying segregation of duties?

  • A. Segregation of duties ensures that, when a person is absent, it can be investigated whether he or she has been committing fraud.
  • B. Tasks and responsibilities must be separated in order to minimize the opportunities for business assets to be misused or changed, whether the change be unauthorized or unintentional.
  • C. Segregation of duties makes it easier for a person who is ready with his or her part of the work to take time off or to take over the work of another person.
  • D. Segregation of duties makes it clear who is responsible for what.

Answer: B


NEW QUESTION # 27
What action is an unintentional human threat?

  • A. Arson
  • B. Theft of a laptop
  • C. Incorrect use of fire extinguishing equipment
  • D. Social engineering

Answer: C

Explanation:
Explanation/Reference:


NEW QUESTION # 28
The act of taking organizational security measures is inextricably linked with all other measures that have to be taken. What is the name of the system that guarantees the coherence of information security in the organization?

  • A. Information Security Management System (ISMS)
  • B. Rootkit
  • C. Security regulations for special information for the government

Answer: A


NEW QUESTION # 29
Which of these is not malicious software?

  • A. Virus
  • B. Worm
  • C. Phishing
  • D. Spyware

Answer: C


NEW QUESTION # 30
You own a small company in a remote industrial areA. Lately, the alarm regularly goes off in the middle of the night. It takes quite a bit of time to respond to it and it seems to be a false alarm every time. You decide to set up a hidden camerA. What is such a measure called?

  • A. Preventive measure
  • B. Repressive measure
  • C. Detective measure

Answer: C


NEW QUESTION # 31
An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry date of a contract with one of the clients is earlier than the start date. What type of measure could prevent this error?

  • A. Technical measure
  • B. Organizational measure
  • C. Integrity measure
  • D. Availability measure

Answer: A

Explanation:
Explanation/Reference:


NEW QUESTION # 32
We can acquire and supply information in various ways. The value of the information depends on whether it is reliable. What are the reliability aspects of information?

  • A. Availability, Information Value and Confidentiality
  • B. Availability, Integrity and Confidentiality
  • C. Timeliness, Accuracy and Completeness
  • D. Availability, Integrity and Completeness

Answer: B


NEW QUESTION # 33
......

Prepare for the Actual Exin Certification ISFS Exam Practice Materials Collection: https://www.prepawaypdf.com/EXIN/ISFS-practice-exam-dumps.html

Exin Certification Certification ISFS Sample Questions Reliable: https://drive.google.com/open?id=1HFoeU2jtZrTW7MzeMt4DG8xpi_A6ESlI

Related Articles

more
EXIN ISFS Certification Practice Exam