EMT Practice Test
1. Question Content...
Question1: The PRIMARY role of an information security steering group is to ensure that:
Question7: Which of the following is the PRIMARY role of a data custodian?
Question21: Which of the following is the MOST significant benefit of effective change management?
Question24: Threat and vulnerability assessments are important PRIMARILY because they are:
Question28: The success of a computer forensic investigation depends on the concept of:
Question38: Which is MOST important to enable a timely response to a security breach?
Question55: Which of the following is the PRIMARY product of a business impact analysis (BIA)?
Question71: The PRIMARY goal of a security infrastructure design is the:
Question75: Information security governance is PRIMARILY driven by which of the following?
Question87: A risk profile supports effective security decisions PRIMARILY because it:
Question94: Which of the following is the MAIN concern when securing emerging technologies?
Question98: The PRIMARY objective of periodically testing an incident response plan should be to:
Question100: The BEST way to minimize errors in the response to an incident is to:
Question101: Which of the following is BEST determined by using technical metrics?
Question103: Which of the following is the MOST effective way to detect social engineering attacks?
Question126: An information security program should be established PRIMARILY on the basis of:
Question130: Which of the following is an example of a vulnerability?
Question134: Labeling information according to its security classification:
Question138: Which of the following is the MOST important reason for performing a risk analysis?
Question167: Which of the following is the GREATEST risk of single sign-on?
Question173: When developing a classification method for incidents, the categories MUST be:
Question178: Which of the following defines the triggers within a business continuity plan (BCP)?
Question180: After assessing risk, the decision to treat the risk should be based PRIMARILY on:
Question190: When developing an incident response plan, the information security manager should:
Question197: Which of the following will BEST ensure that risk is evaluated on system level changes?
Question200: Which of the following threats is prevented by using token-based authentication?
Question212: Which of the following is the responsibility of a data owner?
Question213: The BEST way to encourage good security practices is to:
Question220: Information classification is a fundamental step in determining:
Question226: To implement a security framework, an information security manager must FIRST develop:
Question234: Which of the following is MOST important when selecting an information security metric?
Question235: Which of the following defines the triggers within a business continuity plan (BCP)?
Question239: Which of the following is the MOST effective defense against spear phishing attacks?
Question243: The PRIMARY purpose of a security information and event management (SIEM) system is to:
Question248: The selection of security controls is PRIMARILY linked to:
Question254: Which of the following would BEST fulfill a board of directors' request for a concise