512-50 Exam Questions

Simon had all his systems administrators implement hardware and software firewalls to ensure network security. They implemented IDS/IPS systems throughout the network to check for...

Which of the following is true regarding expenditures?

At what level of governance are individual projects monitored and managed?

A digital signature addresses which of the following concerns?

What are the three stages of an identity and access management system?

During the last decade, what trend has caused the MOST serious issues in relation to physical security?

Which of the following is the MOST important reason for performing assessments of the security portfolio?

Which of the following terms is used to describe countermeasures implemented to minimize risks to physical property, information, and computing systems?

Which of the following best describes an access control process that confirms the identity of the entity seeking access to a logical or physical area?

As the Chief Information Security Officer, you are performing an assessment of security posture to understand what your Defense-in-Depth capabilities are. Which network security te...

Michael starts a new job and discovers that he has unnecessary access to a variety of systems. Which of the following best describes the problem he has encountered?

Which of the following best describes the sensors designed to project and detect a light beam across an area?

As the Chief Information Security Officer, you want to ensure data shared securely, especially when shared with third parties outside the organization. What protocol provides the a...

As the CISO, you have been tasked with the execution of the company's key management program. You MUST ensure the integrity of encryption keys at the point of generation. Which pri...

What is one key difference between Capital expenditures and Operating expenditures?

Which of the following is used to lure attackers into false environments so they can be monitored, contained, or blocked from reaching critical systems?

Which of the following is an accurate description of a balance sheet?

A CISO wants to change the defense strategy to ward off attackers. To accomplish this the CISO is looking to a strategy where attackers are lured into a zone of a safe network wher...

What is the difference between encryption and tokenization?

Which of the following information would MOST likely be reported at the board-level within an organization?

Which technology can provide a computing environment without requiring a dedicated hardware backend?

What process defines the framework of rules and practices by which a board of directors ensure accountability, fairness and transparency in an organization's relationship with its...

As the Business Continuity Coordinator of a financial services organization, you are responsible for ensuring assets are recovered timely in the event of a disaster. Which is the B...

What are the three hierarchically related aspects of strategic planning and in which order should they be done?

Which regulation or policy governs protection of personally identifiable user data gathered during a cyber investigation?

Which of the following would negatively impact a log analysis of a multinational organization?

A key cybersecurity feature of a Personal Identification Verification (PIV) Card is:

Credit card information, medical data, and government records are all examples of:

The establishment of a formal risk management framework and system authorization program is essential. The LAST step of the system authorization process is:

The single most important consideration to make when developing your security program, policies, and processes is:

An organization's Information Security Policy is of MOST importance because

Developing effective security controls is a balance between:

The PRIMARY objective for information security program development should be:

Which of the following should be determined while defining risk management strategies?

Who in the organization determines access to information?

Which of the following is a benefit of information security governance?

Which of the following is the MOST important benefit of an effective security governance process?

The FIRST step in establishing a security governance program is to?

In terms of supporting a forensic investigation, it is now imperative that managers, first- responders, etc., accomplish the following actions to the computer under investigation:

What is the term describing the act of inspecting all real-time Internet traffic (i.e., packets) traversing a major Internet backbone without introducing any apparent latency?

Which of the following is MOST important when tuning an Intrusion Detection System (IDS)?

Which of the following is the MAIN security concern for public cloud computing?

The process of identifying and classifying assets is typically included in the

Which of the following is a symmetric encryption algorithm?

Risk that remains after risk mitigation is known as

After a risk assessment is performed, a particular risk is considered to have the potential of costing the organization 1.2 Million USD. This is an example of

When dealing with a risk management process, asset classification is important because it will impact the overall:

Which of the following intellectual Property components is focused on maintaining brand recognition?

The framework that helps to define a minimum standard of protection that business stakeholders must attempt to achieve is referred to as a standard of:

When an organization claims it is secure because it is PCI-DSS certified, what is a good first question to ask towards assessing the effectiveness of their security program?