EMT Practice Test
1. Question Content...
Question3: Which of the following will BEST protect against malicious activity by a former employee?
Question5: When security policies are strictly enforced, the initial impact is that:
Question6: The MOST important reason for conducting periodic risk assessments is because:
Question7: What is the BEST way for a customer to authenticate an e-commerce vendor?
Question8: Which of the following is the BEST way to reduce the risk of a ransomware attack?
Question19: Of the following, which is the MOST important aspect of forensic investigations?
Question26: A risk management program will be MOST effective when:
Question30: Which of the following is the MOST essential element of an information security program?
Question33: An outcome of effective security governance is:
Question38: Security awareness training is MOST likely to lead to which of the following?
Question42: The PRIMARY reason for establishing a data classification scheme is to identify:
Question47: The PRIMARY objective of performing a post-incident review is to:
Question48: The PRIMARY objective of a risk management program is to:
Question53: When evaluating cloud storage solutions the FIRST consideration should be:
Question58: Which of the following reduces the potential impact of social engineering attacks?
Question63: Which of the following represents the MAJOR focus of privacy regulations?
Question65: Which program element should be implemented FIRST in asset classification and control?
Question70: What is the BEST defense against a Structured Query Language (SQL) injection attack?
Question74: An extranet server should be placed:
Question75: The information classification scheme should:
Question79: What is the MOST cost-effective method of identifying new vendor vulnerabilities?
Question88: Investments in information security technologies should be based on:
Question90: Which of the following devices should be placed within a demilitarized zone (DMZ )?
Question91: Which of the following is MOST important to consider when determining asset valuation?
Question93: Which of the following is a risk of cross-training?
Question96: Of the following, which is the MOST important aspect of forensic investigations?
Question97: A risk profile supports effective security decisions PRIMARILY because it:
Question106: Who should drive the risk analysis for an organization?
Question109: For computer forensics evidence to be admissible in a court of law, the evidence MUST:
Question112: Which of the following is MOST critical when creating an incident response plan?
Question116: Which of the following risks is represented in the risk appetite of an organization?
Question118: Attackers who exploit cross-site scripting vulnerabilities take advantage of:
Question120: Which of the following is the MOST effective type of access control?
Question121: Information security should be:
Question123: Recovery time objectives (RTOs) are an output of which of the following?
Question125: Which of the following is a step in establishing a security policy?
Question135: Risk acceptance is a component of which of the following?
Question137: The MOST effective use of a risk register is to:
Question140: A risk profile supports effective security decisions PRIMARILY because it:
Question143: The PRIMARY goal of the eradication phase in an incident response process is to:
Question148: A critical component of a continuous improvement program for information security is:
Question153: Phishing is BEST mitigated by which of the following?
Question156: An intrusion detection system (IDS) should:
Question158: The valuation of IT assets should be performed by:
Question162: Which of the following is the PRIMARY goal of business continuity management?
Question168: Which of the following is an example of a change to the external threat landscape?
Question171: Risk assessment is MOST effective when performed:
Question172: Data owners are normally responsible for which of the following?
Question182: The business continuity policy should contain which of the following?
Question188: Which of the following would help to change an organization's security culture?
Question190: What is the PRIMARY purpose of an unannounced disaster recovery exercise?
Question197: The PRIMARY reason for using information security metrics is to:
Question205: What is the PRIMARY objective of a post-event review in incident response?
Question208: A risk management program would be expected to:
Question209: Which of the following devices should be placed within a DMZ?
Question217: Risk assessment is MOST effective when performed:
Question220: When performing a risk assessment, the MOST important consideration is that:
Question232: Attackers who exploit cross-site scripting vulnerabilities take advantage of:
Question237: Which of the following situations would be the MOST concern to a security manager?
Question240: The MOST important reason for conducting periodic risk assessments is because:
Question245: When collecting evidence for forensic analysis, it is important to: