AllExam Dumps

DUMPS, FREE DUMPS, VCP5 DUMPS| VMWARE DUMPS, VCP DUMPS, VCP4 DUMPS, VCAP DUMPS, VCDX DUMPS, CISCO DUMPS, CCNA, CCNA DUMPS, CCNP DUMPS, CCIE DUMPS, ITIL, EXIN DUMPS,


READ Free Dumps For
Warning: Undefined variable $vendor in /home1/bandbozu/getfreedumps.com/quiz.php on line 141
-
Warning: Undefined variable $exam_number in /home1/bandbozu/getfreedumps.com/quiz.php on line 141





Question ID 16871

When an organization hires a new information security manager, which of the following
goals should this individual pursue FIRST?

Option A

Develop a security architecture

Option B

Establish good communication with steering committee members

Option C

Assemble an experienced staff

Option D

 Benchmark peer organizations

Correct Answer B
Explanation Explanation: New information security managers should seek to build rapport and establish lines of communication with senior management to enlist their support. Benchmarking peer organizations is beneficial to better understand industry best practices, but it is secondary to obtaining senior management support. Similarly, developing a security architecture and assembling an experienced staff are objectives that can be obtained later.


Question ID 16872

Which of the following BEST describes an information security manager's role in a
multidisciplinary team that will address a new regulatory requirement regarding operational
risk?

Option A

Ensure that all IT risks are identified

Option B

Evaluate the impact of information security risks

Option C

Demonstrate that IT mitigating controls are in place

Option D

Suggest new IT controls to mitigate operational risk

Correct Answer B
Explanation Explanation: The job of the information security officer on such a team is to assess the risks to the business operation. Choice A is incorrect because information security is not limited to IT issues. Choice C is incorrect because at the time a team is formed to assess risk, it is premature to assume that any demonstration of IT controls will mitigate business operations risk. Choice D is incorrect because it is premature at the time of the formation of the team to assume that any suggestion of new IT controls will mitigate business operational risk.

Send email to admin@getfreedumps for new dumps request!!!