712-50 Exam Questions

What are the common data hiding techniques used by criminals?

When managing a project, the MOST important activity in managing the expectations of stakeholders is:

What is an approach to estimating the strengths and weaknesses of alternatives used to determine options, which provide the BEST approach to achieving benefits while preserving sav...

An organization has decided to develop an in-house BCM capability. The organization has determined it is best to follow a BCM standard published by the International Organization f...

From the CISO's perspective in looking at financial statements, the statement of retained earnings of an organization:

Devising controls for information security is a balance between?

Which of the following would not be considered an essential component of the strategic planning process?

An organization wants to purchase a turnkey inventory management system consisting of hardware and software. The organization wants to keep the price low, but its most important cr...

A security analyst is reviewing the security logs of a web server for indicators of compromise. Which of the following control functionalities is this an example of?

The CISO is writing an organization security policy. This is an example of which of the following control types?

An e-commerce site that accepts online payment is expanding and hires a CISO to ensure that the organization is complying with industry regulations and standards. Which of the foll...

Which of the following best describes the critical path in project management?

A disgruntled employee breaks into the organization and steals critical data after finding out he will be laid off due to downsizing. This is an example of what type of physical se...

NIST SP 800-53 outlines management, operational, and technical classes. Which of the following NIST control families is an example of a management control class?

A publicly traded company collects cardholder data in the course of business operations. The organization's CEO recognizes the importance of information security and hires a CISO....

Of the methods listed, what is the best countermeasure against social engineering attacks?

Securing facilities with Faraday cages or applying TEMPEST standards prevents the ability to monitor which of the following?

What is the primary difference between Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS)?

Which security technologies are MOST critical to implementing a zero trust model?

What is the estimate of all direct and indirect costs associated with an asset or acquisition over its entire life cycle?

What is generally the FIRST step in Information Security program development?

If a CISO wants to understand the liabilities of the company, she will refer to the:

What standard provides a comprehensive framework for information security risk management within organizations?

What is the THIRD state of the Tuchman Stages of Group Development?

Which of the following is an example of risk transference?

What is the THIRD state of the Tuckman Stages of Group Development?

Which of the following is the MOST important to share with an Information Security Steering Committee:

Which of the following provides the BEST approach to achieving positive outcomes while preserving savings?

The alerting, monitoring, and lifecycle management of security-related events are typically managed by the:

Which control is used to discourage the exploitation of a vulnerability or system?

Which security technologies are MOST critical to implementing a zero trust model?

The governing body that defines best practices for the collection of digital evidence is the:

Which of the following areas are beyond the duties of the CISO?

Which of the following is NOT an approach for ethical decision making?

What is a key goal of information security?

What standard would you use to help determine key performance indicators?

The Health Insurance Portability and Accountability Act (HIPAA) requires an agreement between Cloud Service Providers (CCSP) and the covered entity. Based on HIPAA. which document...

If a CISO wants to understand the liabilities of the company, she will refer to the:

What are the four groups that are critical to the success of evaluating and approving contracts during the negotiation phase?

What is the MAIN responsibility of the purple security testing team?

When gathering security requirements for an automated business process improvement program, which of the following is MOST important?

Which of the following refers to the quantity or quality of project deliverables expanding from the original project plan?

Effective information security management programs require the active involvement of_________

Which of the following is the MOST effective way to secure the physical hardware hosts in a virtualized environment?

What is defined as the friction or opposition resulting from actual or perceived differences or incompatibilities?

What is an example of a key performance indicator for cybersecurity?

Which of the following is an example of risk transference?

To reduce the threat of spear phishing, which of the following is the MOST critical security control to implement?

What Enterprise Architecture Framework is business-centric and is composed of eight phases?

Which publication serves as a resource of enterprise security-based standards and BEST practices?