EX0-105 Exam Questions

You work for a large organization. You notice that you have access to confidential information that you should not be able to access in your position. You report this security inci...

Your organization has an office with space for 25 workstations. These workstations are all fully equipped and in use. Due to a reorganization 10 extra workstations are added, 5 of...

Which of the following measures is a preventive measure?

What is a risk analysis used for?

A well executed risk analysis provides a great deal of useful information. A risk analysis has four main objectives. What is not one of the four main objectives of a risk analysis?

What is an example of a security incident?

Which of the following measures is a corrective measure?

We can acquire and supply information in various ways. The value of the information depends on whether it is reliable. What are the reliability aspects of information?

Your company has to ensure that it meets the requirements set down in personal data protection legislation. What is the first thing you should do?

What sort of security does a Public Key Infrastructure (PKI) offer?

An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry date of a contract with one of the clients is earlier than the start date. What ty...

What is the greatest risk for an organization if no information security policy has been defined?

What is the objective of classifying information?

What do employees need to know to report a security incident?

You have just started working at a large organization. You have been asked to sign a code of conduct as well as a contract. What does the organization wish to achieve with this?

Peter works at the company Midwest Insurance. His manager, Linda, asks him to send the terms and conditions for a life insurance policy to Rachel, a client. Who determines the valu...

When we are at our desk, we want the information system and the necessary information to be available. We want to be able to work with the computer and access the network and our f...

What is an example of a non-human threat to the physical environment?

In most organizations, access to the computer or the network is granted only after the user has entered a correct username and password. This process consists of 3 steps: identific...

Which of these is not malicious software?

Access management is closely related to which other process?

In which core ITIL publication can you find detailed descriptions of service catalogue management, information security management, and supplier management?

Which process is responsible for the availability, confidentiality and integrity of data?

Which one of the following activities would be performed by access management?

Which of the following BEST describes the purpose of access management?

You are the owner of the courier company SpeeDelivery. On the basis of your risk analysis you have decided to take a number of measures. You have daily backups made of the server,...

Which type of malware builds a network of contaminated computers?

Which is a legislative or regulatory act related to information security that can be imposed upon all organizations?

You are the first to arrive at work in the morning and notice that the CD ROM on which you saved contracts yesterday has disappeared. You were the last to leave yesterday. When sho...

A Dutch company requests to be listed on the American Stock Exchange. Which legislation within the scope of information security is relevant in this case?

You own a small company in a remote industrial area. Lately, the alarm regularly goes off in the middle of the night. It takes quite a bit of time to respond to it and it seems to...

At Midwest Insurance, all information is classified. What is the goal of this classification of information?

Which one of the threats listed below can occur as a result of the absence of a physical measure?

What is the best description of a risk analysis?

What is the goal of an organization's security policy?

The Information Security Manager (ISM) at Smith Consultants Inc. introduces the following measures to assure information security: - The security requirements for the network are s...

A company moves into a new building. A few weeks after the move, a visitor appears unannounced in the office of the director. An investigation shows that visitors passes grant the...

You have an office that designs corporate logos. You have been working on a draft for a large client. Just as you are going to press the <save> button, the screen goes blank. The h...

You are the owner of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large...

Three characteristics determine the reliability of information. Which characteristics are these?

What action is an unintentional human threat?

To which category of security measures does a smoke alarm belong?

Which type of malware is a program which, in addition to the function that it appears to perform, purposely conducts secondary activities?

Why do organizations have an information security policy?

You work in the IT department of a medium-sized company. Confidential information has got into the wrong hands several times. This has hurt the image of the company. You have been...

You are a consultant and are regularly hired by the Ministry of Defense to perform analyses. Since the assignments are irregular, you outsource the administration of your business...

Your company is in the news as a result of an unfortunate action by one of your employees. The phones are ringing off the hook with customers wanting to cancel their contracts. Wha...

An airline company employee notices that she has access to one of the company's applications that she has not used before. Is this an information security incident?

Under which condition is an employer permitted to check if Internet and email services in the workplace are being used for private purposes?

You have a small office in an industrial areA. You would like to analyze the risks your company faces. The office is in a pretty remote location; therefore, the possibility of arso...