Information Security: Context and Introduction

ISO 27001 of Information Security Context and Introduction

ByAdmin August 9, 2021

Week 4 ISO 27001 of Information Security Context and Introduction

A standard that establishes the requirements for the implementation of an information security management system.

A set of recommendations to secure the information systems of an organisation.

A document that defines the security controls that can be implemented within an information security management system.

A standard that describes the security policies that must be followed at all levels of an organisation.

Guidance on risk assessment.

Descriptions of how to establish and operate an information management system.

Definitions of basic terminology related to information security.

Description and guidance on security controls.

True.

False

None of these answers.

Their ISO 27001 implementation and operation of an information security management system.

Their ISO 27001 implementation of security policies.

Their ISO 27002 implementations of controls.

Question 5

The Plan-Do-Check-Act model establishes a set of tasks that must be executed in cycles. Although this model was used in previous versions of the ISO 27001 standard, it is still valid as an effective approach to implement an effective Information Security Management System (ISMS). In fact, when implementing a ISMS using the Plan-Do-Check-Act (select those that are true):

1 point

The planning stage is limited to the activities related to project planning and management.

The planning stage includes all the activities to determine what is required for the ISMS.

The check stage involves analysing the planned actions to verify if they will meet the security goals of the organisation.

The acting stage involves acting on the findings of the checking stage to address the gaps found.

The acting stage involves executing all the planned actions during the planning phase.

The check phase involves verifying the activities that have been done to check if what was planned was done and what was done meets the security goals of the organisation.

Document control

Encryption.

Internal audits.

Intrusion detection.

Information Security: Context and Introduction

End of week test of Information Security Context and Introduction
ByAdmin August 9, 2021August 9, 2021

Week-1 End of week test of Information Security Context and Introduction 1. Question 1 If I can prove who the sender of a message is, which of the following…

Read More End of week test of Information Security Context and Introduction
Information Security: Context and Introduction

Access Control of Information Security Context and Introduction
ByAdmin August 9, 2021

Week 3 Access Control of Information Security Context and Introduction 1. Question 1 An access control policy establishes: 1 point The model of access for a specific system. A method…

Read More Access Control of Information Security Context and Introduction
Information Security: Context and Introduction

Review questions of Information Security Context and Introduction
ByAdmin August 9, 2021

Week 5 Review questions of Information Security Context and Introduction 1. Question 1 What security control from the list below would protect stored and transmitted data / information against…

Read More Review questions of Information Security Context and Introduction
Information Security: Context and Introduction

Network Security Systems of Information Security Context and Introduction
ByAdmin August 9, 2021

Week 3 Network Security Systems of Information Security Context and Introduction 1. Question 1 A firewall: 1 point Filters incoming and outgoing packets based on a set of rules. Detects…

Read More Network Security Systems of Information Security Context and Introduction
Information Security: Context and Introduction

Network Security Protocols of Information Security Context and Introduction
ByAdmin August 9, 2021

Week 3 of Network Security Protocols of Information Security Context and Introduction 1. Question 1 Select the protocols that could be used to secure an IEEE 802.11 network: 1…

Read More Network Security Protocols of Information Security Context and Introduction
Information Security: Context and Introduction

Week 2 Quiz Of Information Security Context and Introduction
ByAdmin August 9, 2021August 10, 2021

Week 2 Quiz Of Information Security Context and Introduction Why cryptography? 1. Question 1 The main purpose of cryptography is to: 1 point Achieve complete security in the…

Read More Week 2 Quiz Of Information Security Context and Introduction

Week 4 ISO 27001 of Information Security Context and Introduction

Similar Posts