LEAD-IMPLEMENTER Exam Questions

Scenario 1: HealthGenic is a pediatric clinic that monitors the health and growth of individuals from infancy to early adulthood using a web-based medical software. The software is...

Scenario 1: HealthGenic is a pediatric clinic that monitors the health and growth of individuals from infancy to early adulthood using a web-based medical software. The software is...

Scenario 1: HealthGenic is a pediatric clinic that monitors the health and growth of individuals from infancy to early adulthood using a web-based medical software. The software is...

Scenario 1: HealthGenic is a pediatric clinic that monitors the health and growth of individuals from infancy to early adulthood using a web-based medical software. The software is...

Scenario 1: HealthGenic is a pediatric clinic that monitors the health and growth of individuals from infancy to early adulthood using a web-based medical software. The software is...

Scenario 2: Beauty is a cosmetics company that has recently switched to an e-commerce model, leaving the traditional retail. The top management has decided to build their own custo...

Scenario 2: Beauty is a cosmetics company that has recently switched to an e-commerce model, leaving the traditional retail. The top management has decided to build their own custo...

Scenario 2: Beauty is a cosmetics company that has recently switched to an e-commerce model, leaving the traditional retail. The top management has decided to build their own custo...

Scenario 2: Beauty is a cosmetics company that has recently switched to an e-commerce model, leaving the traditional retail. The top management has decided to build their own custo...

Scenario 2: Beauty is a cosmetics company that has recently switched to an e-commerce model, leaving the traditional retail. The top management has decided to build their own custo...

FinanceX, a well-known financial institution, uses an online banking platform that enables clients to easily and securely access their bank accounts. To log in, clients are require...

An employee of the organization accidentally deleted customers' data stored in the database. What is the impact of this action?

Which of the following statements regarding information security risk is NOT correct?

The IT Department of a financial institution decided to implement preventive controls to avoid potential security breaches. Therefore, they separated the development, testing, and...

Diana works as a customer service representative for a large e-commerce company. One day, she accidently modified the order details of a customer without their permission Due to th...

Scenario 3: Socket Inc is a telecommunications company offering mainly wireless products and services. It uses MongoDB. a document model database that offers high availability, sca...

Scenario 3: Socket Inc is a telecommunications company offering mainly wireless products and services. It uses MongoDB. a document model database that offers high availability, sca...

Scenario 3: Socket Inc is a telecommunications company offering mainly wireless products and services. It uses MongoDB. a document model database that offers high availability, sca...

Scenario 3: Socket Inc is a telecommunications company offering mainly wireless products and services. It uses MongoDB. a document model database that offers high availability, sca...

Scenario 3: Socket Inc is a telecommunications company offering mainly wireless products and services. It uses MongoDB. a document model database that offers high availability, sca...

An organization documented each security control that it Implemented by describing their functions in detail. Is this compliant with ISO/IEC 27001?

Which security controls must be implemented to comply with ISO/IEC 27001?

What is the main purpose of Annex A 7.1 Physical security perimeters of ISO/IEC 27001?

An organization wants to enable the correlation and analysis of security-related events and other recorded data and to support investigations into information security incidents. W...

The incident management process of an organization enables them to prepare for and respond to information security incidents. In addition, the organization has procedures in place...

Who should be involved, among others, in the draft, review, and validation of information security procedures?

An organization has implemented a control that enables the company to manage storage media through their life cycle of use. acquisition, transportation and disposal. Which control...

Scenario 4: TradeB. a commercial bank that has just entered the market, accepts deposits from its clients and offers basic financial services and loans for investments. TradeB has...

Scenario 4: TradeB. a commercial bank that has just entered the market, accepts deposits from its clients and offers basic financial services and loans for investments. TradeB has...

Scenario 4: TradeB. a commercial bank that has just entered the market, accepts deposits from its clients and offers basic financial services and loans for investments. TradeB has...

Scenario 4: TradeB. a commercial bank that has just entered the market, accepts deposits from its clients and offers basic financial services and loans for investments. TradeB has...

Scenario 4: TradeB. a commercial bank that has just entered the market, accepts deposits from its clients and offers basic financial services and loans for investments. TradeB has...

Scenario 5: Operaze is a small software development company that develops applications for various companies around the world. Recently, the company conducted a risk assessment to...

Scenario 5: Operaze is a small software development company that develops applications for various companies around the world. Recently, the company conducted a risk assessment to...

Scenario 5: Operaze is a small software development company that develops applications for various companies around the world. Recently, the company conducted a risk assessment to...

Scenario 5: Operaze is a small software development company that develops applications for various companies around the world. Recently, the company conducted a risk assessment to...

Scenario 5: Operaze is a small software development company that develops applications for various companies around the world. Recently, the company conducted a risk assessment to...

An organization has adopted a new authentication method to ensure secure access to sensitive areas and facilities of the company. It requires every employee to use a two-factor aut...

Which tool is used to identify, analyze, and manage interested parties?

'The ISMS covers all departments within Company XYZ that have access to customers' data. The purpose of the ISMS is to ensure the confidentiality, integrity, and availability of cu...

An organization has justified the exclusion of control 5.18 Access rights of ISO/IEC 27001 in the Statement of Applicability (SoA) as follows: "An access control reader is already...

Which statement is an example of risk retention?

Which option below should be addressed in an information security policy?

Which approach should organizations use to implement an ISMS based on ISO/IEC 27001?

What risk treatment option has Company A implemented if it has required from its employees the change of email passwords at least once every 60 days?

Scenario 6: Skyver offers worldwide shipping of electronic products, including gaming consoles, flat- screen TVs. computers, and printers. In order to ensure information security,...

Scenario 6: Skyver offers worldwide shipping of electronic products, including gaming consoles, flat- screen TVs. computers, and printers. In order to ensure information security,...

Scenario 6: Skyver offers worldwide shipping of electronic products, including gaming consoles, flat- screen TVs. computers, and printers. In order to ensure information security,...

Scenario 6: Skyver offers worldwide shipping of electronic products, including gaming consoles, flat- screen TVs. computers, and printers. In order to ensure information security,...

Scenario 6: Skyver offers worldwide shipping of electronic products, including gaming consoles, flat- screen TVs. computers, and printers. In order to ensure information security,...