EMT Practice Test
1. Question Content...
Question2: Which of the following is the MOST effective way to detect security incidents?
Question3: Which of the following is MOST important to include in an information security strategy?
Question4: Which of the following BEST indicates that information assets are classified accurately?
Question19: Which of the following defines the triggers within a business continuity plan (BCP)? @
Question22: Which of the following BEST describes a buffer overflow?
Question24: Who is BEST suited to determine how the information in a database should be classified?
Question25: Recovery time objectives (RTOs) are BEST determined by:
Question28: A balanced scorecard MOST effectively enables information security:
Question36: Which of the following is MOST critical when creating an incident response plan?
Question50: Information security controls should be designed PRIMARILY based on:
Question59: The MOST appropriate time to conduct a disaster recovery test would be after:
Question64: Implementing the principle of least privilege PRIMARILY requires the identification of:
Question68: When deciding to move to a cloud-based model, the FIRST consideration should be:
Question76: Which of the following is the GREATEST benefit of information asset classification?
Question83: Which of the following is the PRIMARY objective of incident triage?
Question84: The effectiveness of an incident response team will be GREATEST when:
Question89: Which of the following should be the PRIMARY basis for an information security strategy?
Question102: Network isolation techniques are immediately implemented after a security breach to:
Question108: An organization's quality process can BEST support security management by providing:
Question125: The MAIN benefit of implementing a data loss prevention (DLP) solution is to:
Question129: When developing a categorization method for security incidents, the categories MUST:
Question135: Which of the following is MOST effective in monitoring an organization's existing risk?
Question139: A PRIMARY benefit of adopting an information security framework is that it provides:
Question144: Which of the following is a PRIMARY benefit of managed security solutions?
Question152: Which of the following is the PRIMARY reason to assign a risk owner in an organization?
Question156: Reevaluation of risk is MOST critical when there is:
Question160: Which of the following is MOST important when conducting a forensic investigation?
Question166: Penetration testing is MOST appropriate when a:
Question167: Which of the following is the BEST way to enhance training for incident response teams?
Question175: Which of the following BEST demonstrates that an anti-phishing campaign is effective?
Question176: In a call center, the BEST reason to conduct a social engineering is to:
Question182: Which of the following is the PRIMARY reason for granting a security exception?
Question189: The PRIMARY advantage of involving end users in continuity planning is that they:
Question191: The PRIMARY purpose for continuous monitoring of security controls is to ensure:
Question199: Which of the following is the FIRST step when conducting a post-incident review?
Question202: The PRIMARY advantage of single sign-on (SSO) is that it will:
Question215: Which of the following is the PRIMARY objective of a cyber resilience strategy?
Question217: The contribution of recovery point objective (RPO) to disaster recovery is to:
Question223: Which of the following should be the PRIMARY basis for determining the value of assets?
Question230: A PRIMARY purpose of creating security policies is to:
Question246: Which of the following is the MOST important outcome of effective risk treatment?