AllExam Dumps

DUMPS, FREE DUMPS, VCP5 DUMPS| VMWARE DUMPS, VCP DUMPS, VCP4 DUMPS, VCAP DUMPS, VCDX DUMPS, CISCO DUMPS, CCNA, CCNA DUMPS, CCNP DUMPS, CCIE DUMPS, ITIL, EXIN DUMPS,


READ Free Dumps For
Warning: Undefined variable $vendor in /home1/bandbozu/getfreedumps.com/quiz.php on line 141
-
Warning: Undefined variable $exam_number in /home1/bandbozu/getfreedumps.com/quiz.php on line 141





Question ID 16913

Which of the following roles would represent a conflict of interest for an information security
manager?

Option A

Evaluation of third parties requesting connectivity

Option B

Assessment of the adequacy of disaster recovery plans

Option C

Final approval of information security policies

Option D

Monitoring adherence to physical security controls

Correct Answer C
Explanation Explanation: Since management is ultimately responsible for information security, it should approve information security policy statements; the information security manager should not have final approval. Evaluation of third parties requesting access, assessment of disaster recovery plans and monitoring of compliance with physical security controls are acceptable practices and do not present any conflicts of interest.


Question ID 16914

Which of the following is the MOST important element of an information security strategy?

Option A

Defined objectives

Option B

Time frames for delivery

Option C

Adoption of a control framework

Option D

 Complete policies

Correct Answer A
Explanation Explanation: Without defined objectives, a strategythe plan to achieve objectivescannot be developed. Time frames for delivery are important but not critical for inclusion in the strategy document. Similarly, the adoption of a control framework is not critical to having a successful information security strategy. Policies are developed subsequent to, and as a part of, implementing a strategy.

Send email to admin@getfreedumps for new dumps request!!!