EMT Practice Test
1. Question Content...
Question1: What is the PRIMARY benefit of effective configuration management?
Question4: Which of the following is the PRIMARY objective of an incident response plan?
Question12: Which of the following is the MOST effective method of determining security priorities?
Question17: The PRIMARY reason for using information security metrics is to:
Question20: Which of the following BEST facilitates the monitoring of risk across an organization?
Question22: When designing security controls, it is MOST important to:
Question31: An email digital signature will:
Question34: The BEST way to avoid session hijacking is to use:
Question35: Which of the following is the MOST significant security risk in IT asset management?
Question42: The BEST way to establish a security baseline is by documenting:
Question43: When developing an incident response plan, the information security manager should:
Question45: The BEST way to identify the risk associated with a social engineering attack is to
Question48: Which of the following is MOST important when developing a security strategy?
Question49: The FIRST step in a risk assessment for a business application is to:
Question51: What is the FIRST line of defense against criminal insider activities?
Question68: What should be the FIRST step when developing an asset management program?
Question70: Which of the following BEST enables effective information security governance9
Question79: Which of the following BEST protects against phishing attacks?
Question80: Which of the following would BEST enable effective decision-making?
Question87: Information security can BEST be enforced by making security:
Question93: For computer forensics evidence to be admissible in a court of law, the evidence MUST:
Question94: Which of the following architectures for e-business BEST ensures high availability?
Question102: Which of the following is the GREATEST benefit of information asset classification?
Question105: The business advantage of implementing authentication tokens is that they:
Question106: The PRIMARY reason to classify information assets should be to ensure
Question109: Which of the following factors are the MAIN reasons why large networks are vulnerable?
Question113: Segregation of duties is a security control PRIMARILY used to:
Question114: During which process is regression testing MOST commonly used?
Question120: What is the PRIMARY objective of triage within the incident response process?
Question126: Which of the following should be done FIRST when considering a new security initiative?
Question127: Which of the following is a potential indicator of inappropriate Internet use by staff?
Question132: Which of the following is the PRIMARY reason for conducting post-incident reviews?
Question142: Which of the following roles should be separated?
Question148: Information security awareness programs are MOST effective when they are:
Question159: What is the BEST way for a customer to authenticate an e-commerce vendor?
Question167: Which of the following is a PRIMARY goal of an information security program?
Question171: Which of the following is the PRIMARY reason to conduct a post-incident review?
Question177: When creating a bring your own device (BYOD) program, it is MOST important to:
Question183: Which of the following is the BEST methodology to manage access rights?
Question190: What is the GREATEST benefit of classifying assets based on sensitivity?
Question206: When scoping a risk assessment, assets need lo be classified by