Question 1
The ISO 27001 is:
Question 2
The ISO 27000 standards series provides: (multiple answers possible)
Question 3
The ISO 27000 series is sector-agnostic. This is, it does not include any supplements to adapt sector specific processes for information security management.
Question 4
Organisations can request to be certified against:
Question 5
The Plan-Do-Check-Act model establishes a set of tasks that must be executed in cycles. Although this model was used in previous versions of the ISO 27001 standard, it is still valid as an effective approach to implement an effective Information Security Management System (ISMS). In fact, when implementing a ISMS using the Plan-Do-Check-Act (select those that are true):
Question 6
Select which of the following items are requirements for an information security management system to operate:
Week 3 Authentication and Authorisation of Information Security Context and Introduction 1. Question 1 Authentication always requires a password. 1 point True False 2. Question 2 We can consider…
Week 3 Access Control of Information Security Context and Introduction 1. Question 1 An access control policy establishes: 1 point The model of access for a specific system. A method…
Week 3 System Vulnerabilities of Information Security Context and Introduction 1. Question 1 Select the phases of development where a vulnerability can appear: 1 point Design Deployment Implementation Analysis Maintenance
Week 4 Law and Regulations of Information Security Context and Introduction 1. Question 1 The implementation of an Information Security Management System requires us to identify the laws and legislations…
Week 4 Incident Management of Information Security Context and Introduction 1. Question 1 Select the items from the list that are considered phases in the management of security incidents. 1…
Week 4 Security Controls of Information Security Context and Introduction 1. Question 1 Select which of the items in the list can be considered as a category of security…