EMT Practice Test

1. Question Content...


Question List

Question1: What is the goal of classification of information?

Question2: The following are purposes of Information Security, except:

Question3: An employee caught temporarily storing an MP3 file in his workstation will not receive an IR.

Question4: After a devastating office fire, all staff are moved to other branches of the company. At what moment in the incident management process is this measure effectuated?

Question5: What is a reason for the classification of information?

Question6: How are data and information related?

Question7: An administration office is going to determine the dangers to which it is exposed.
What do we call a possible event that can have a disruptive effect on the reliability of information?

Question8: In the event of an Information security incident, system users' roles and responsibilities are to be observed, except:

Question9: What is we do in ACT - From PDCA cycle

Question10: A property of Information that has the ability to prove occurrence of a claimed event.

Question11: After a fire has occurred, what repressive measure can be taken?

Question12: What is the worst possible action that an employee may receive for sharing his or her password or access with others?

Question13: What is social engineering?

Question14: The following are definitions of Information, except:

Question15: Often, people do not pick up their prints from a shared printer. How can this affect the confidentiality of information?

Question16: CEO sends a mail giving his views on the status of the company and the company's future strategy and the CEO's vision and the employee's part in it. The mail should be classified as

Question17: In acceptable use of Information Assets, which is the best practice?

Question18: __________ is a software used or created by hackers to disrupt computer operation, gather sensitive information, or gain access to private computer systems.

Question19: What controls can you do to protect sensitive data in your computer when you go out for lunch?

Question20: In order to take out a fire insurance policy, an administration office must determine the value of the data that it manages.
Which factor is [b]not[/b] important for determining the value of data for an organization?

Question21: Which of the following statements are correct for Clean Desk Policy?

Question22: CMM stands for?

Question23: You receive an E-mail from some unknown person claiming to be representative of your bank and asking for your account number and password so that they can fix your account. Such an attempt of social engineering is called

Question24: Changes on project-managed applications or database should undergo the change control process as documented.

Question25: What is a repressive measure in case of a fire?

Question26: What is a definition of compliance?

Question27: What is the security management term for establishing whether someone's identity is correct?

Question28: Which threat could occur if no physical measures are taken?

Question29: Which of the following factors does NOT contribute to the value of data for an organisation?

Question30: The computer room is protected by a pass reader. Only the System Management department has a pass.
What type of security measure is this?

Question31: Stages of Information

Question32: In what part of the process to grant access to a system does the user present a token?

Question33: Which measure is a preventive measure?

Question34: There was a fire in a branch of the company Midwest Insurance. The fire department quickly arrived at the scene and could extinguish the fire before it spread and burned down the entire premises. The server, however, was destroyed in the fire. The backup tapes kept in another room had melted and many other documents were lost for good.
What is an example of the indirect damage caused by this fire?

Question35: A hacker gains access to a webserver and can view a file on the server containing credit card numbers.
Which of the Confidentiality, Integrity, Availability (CIA) principles of the credit card file are violated?