AllExam Dumps

DUMPS, FREE DUMPS, VCP5 DUMPS| VMWARE DUMPS, VCP DUMPS, VCP4 DUMPS, VCAP DUMPS, VCDX DUMPS, CISCO DUMPS, CCNA, CCNA DUMPS, CCNP DUMPS, CCIE DUMPS, ITIL, EXIN DUMPS,


READ Free Dumps For
Warning: Undefined variable $vendor in /home1/bandbozu/getfreedumps.com/quiz.php on line 141
-
Warning: Undefined variable $exam_number in /home1/bandbozu/getfreedumps.com/quiz.php on line 141





Question ID 16865

The FIRST step to create an internal culture that focuses on information security is to:

Option A

 implement stronger controls.

Option B

conduct periodic awareness training.

Option C

actively monitor operations.

Option D

 gain the endorsement of executive management.

Correct Answer D
Explanation Explanation: Endorsement of executive management in the form of policies provides direction and awareness. The implementation of stronger controls may lead to circumvention. Awareness training is important, but must be based on policies. Actively monitoring operations will not affect culture at all levels.


Question ID 16866

Which of the following would help to change an organization's security culture?

Option A

Develop procedures to enforce the information security policy

Option B

Obtain strong management support

Option C

Implement strict technical security controls

Option D

Periodically audit compliance with the information security policy

Correct Answer B
Explanation Explanation: Management support and pressure will help to change an organization's culture. Procedures will support an information security policy, but cannot change the culture of the organization. Technical controls will provide more security to an information system and staff; however, this does not mean the culture will be changed. Auditing will help to ensure the effectiveness of the information security policy; however, auditing is not effective in changing the culture of the company.

Send email to admin@getfreedumps for new dumps request!!!