Login / Register   My Cart (0)

DumpsFree provides high-quality dumps PDF & dumps VCE for candidates who are willing to pass exams and get certifications soon. We provide dumps free download before purchasing dumps VCE. 100% pass exam!

All Products Contact now
  • Home
  • Articles
  • ISFS Dumps Updated Jan 08, 2022 Practice Test and 80 unique questions [Q45-Q70]

ISFS Dumps Updated Jan 08, 2022 Practice Test and 80 unique questions [Q45-Q70]

Share

ISFS Dumps Updated Jan 08, 2022 Practice Test and 80 unique questions

2022 Latest 100% Exam Passing Ratio - ISFS Dumps PDF 


How much ISFS Exam Cost

The price of the ISFS exam is $176 USD.

 

NEW QUESTION 45
What is an example of a security incident?

  • A. A member of staff loses a laptop.
  • B. You cannot set the correct fonts in your word processing software.
  • C. A file is saved under an incorrect name.
  • D. The lighting in the department no longer works.

Answer: A

 

NEW QUESTION 46
What is an example of a non-human threat to the physical environment?

  • A. Virus
  • B. Fraudulent transaction
  • C. Storm
  • D. Corrupted file

Answer: C

 

NEW QUESTION 47
You work in the IT department of a medium-sized company. Confidential information has got into the wrong hands several times. This has hurt the image of the company. You have been asked to propose organizational security measures for laptops at your company. What is the first step that you should take?

  • A. Appoint security personnel
  • B. Set up an access control policy
  • C. Encrypt the hard drives of laptops and USB sticks
  • D. Formulate a policy regarding mobile media (PDAs, laptops, smartphones, USB sticks)

Answer: D

Explanation:
Explanation/Reference:

 

NEW QUESTION 48
The company Midwest Insurance has taken many measures to protect its information. It uses an Information Security Management System, the input and output of data in applications is validated, confidential documents are sent in encrypted form and staff use tokens to access information systems. Which of these is not a technical measure?

  • A. Information Security Management System
  • B. Validation of input and output data in applications
  • C. Encryption of information
  • D. The use of tokens to gain access to information systems

Answer: A

 

NEW QUESTION 49
You apply for a position in another company and get the job. Along with your contract, you are asked to sign a code of conduct. What is a code of conduct?

  • A. A code of conduct specifies how employees are expected to conduct themselves and is the same for all companies.
  • B. A code of conduct is a standard part of a labor contract.
  • C. A code of conduct differs from company to company and specifies, among other things, the rules of behavior with regard to the usage of information systems.

Answer: C

 

NEW QUESTION 50
What is the relationship between data and information?

  • A. Information is the meaning and value assigned to a collection of data.
  • B. Data is structured information.

Answer: A

 

NEW QUESTION 51
An employee in the administrative department of Smiths Consultants Inc. finds out that the expiry date of a contract with one of the clients is earlier than the start date. What type of measure could prevent this error?

  • A. Organizational measure
  • B. Integrity measure
  • C. Technical measure
  • D. Availability measure

Answer: C

 

NEW QUESTION 52
Your organization has an office with space for 25 workstations. These workstations are all fully equipped and in use. Due to a reorganization 10 extra workstations are added, 5 of which are used for a call centre 24 hours per day. Five workstations must always be available. What physical security measures must be taken in order to ensure this?

  • A. Obtain an extra office and provide a UPS (Uninterruptible Power Supply) for the five most important workstations.
  • B. Obtain an extra office and connect all 10 new workstations to an emergency power supply and UPS (Uninterruptible Power Supply). Adjust the access control system to the working hours of the new staff.
    Inform the building security personnel that work will also be carried out in the evenings and at night.
  • C. Obtain an extra office and set up 10 workstations. Ensure that there are security personnel both in the evenings and at night, so that staff can work there safely and securely.
  • D. Obtain an extra office and set up 10 workstations. You would therefore have spare equipment that can be used to replace any non-functioning equipment.

Answer: B

 

NEW QUESTION 53
Your company has to ensure that it meets the requirements set down in personal data protection legislation. What is the first thing you should do?

  • A. Make the employees responsible for submitting their personal data.
  • B. Translate the personal data protection legislation into a privacy policy that is geared to the company and the contracts with the customers.
  • C. Appoint a person responsible for supporting managers in adhering to the policy.
  • D. Issue a ban on the provision of personal information.

Answer: B

 

NEW QUESTION 54
Which of the following measures is a corrective measure?

  • A. Installing a virus scanner in an information system
  • B. Restoring a backup of the correct database after a corrupt copy of the database was written over the original
  • C. Making a backup of the data that has been created or altered that day
  • D. Incorporating an Intrusion Detection System (IDS) in the design of a computer centre

Answer: B

 

NEW QUESTION 55
At Midwest Insurance, all information is classified. What is the goal of this classification of information?

  • A. Structuring information according to its sensitivity
  • B. To create a manual about how to handle mobile devices
  • C. Applying labels making the information easier to recognize

Answer: A

 

NEW QUESTION 56
What is the objective of classifying information?

  • A. Displaying on the document who is permitted access
  • B. Creating a label that indicates how confidential the information is
  • C. Authorizing the use of an information system
  • D. Defining different levels of sensitivity into which information may be arranged

Answer: D

 

NEW QUESTION 57
What action is an unintentional human threat?

  • A. Theft of a laptop
  • B. Incorrect use of fire extinguishing equipment
  • C. Arson
  • D. Social engineering

Answer: B

Explanation:
Explanation/Reference:

 

NEW QUESTION 58
A couple of years ago you started your company which has now grown from 1 to 20 employees.
Your companys information is worth more and more and gone are the days when you could keep it all in hand yourself. You are aware that you have to take measures, but what should they be?
You hire a consultant who advises you to start with a qualitative risk analysis. What is a qualitative risk analysis?

  • A. This analysis is based on scenarios and situations and produces a subjective view of the possible threats.
  • B. This analysis follows a precise statistical probability calculation in order to calculate exact loss caused by damage.

Answer: A

Explanation:
Explanation

 

NEW QUESTION 59
Who is authorized to change the classification of a document?

  • A. The administrator of the document
  • B. The author of the document
  • C. The owner of the document
  • D. The manager of the owner of the document

Answer: C

 

NEW QUESTION 60
Three characteristics determine the reliability of information. Which characteristics are these?

  • A. Availability, Integrity and Correctness
  • B. Availability, Integrity and Confidentiality
  • C. Availability, Nonrepudiation and Confidentiality

Answer: B

Explanation:
Explanation/Reference:

 

NEW QUESTION 61
You own a small company in a remote industrial areA. Lately, the alarm regularly goes off in the middle of the night. It takes quite a bit of time to respond to it and it seems to be a false alarm every time. You decide to set up a hidden camerA. What is such a measure called?

  • A. Preventive measure
  • B. Detective measure
  • C. Repressive measure

Answer: B

 

NEW QUESTION 62
What action is an unintentional human threat?

  • A. Theft of a laptop
  • B. Incorrect use of fire extinguishing equipment
  • C. Arson
  • D. Social engineering

Answer: B

 

NEW QUESTION 63
An airline company employee notices that she has access to one of the company's applications that she has not used before. Is this an information security incident?

  • A. Yes
  • B. No

Answer: B

Explanation:
Explanation

 

NEW QUESTION 64
Logging in to a computer system is an access-granting process consisting of three steps: identification, authentication and authorization.
What occurs during the first step of this process: identification?

  • A. The first step consists of checking if the user is using the correct certificate.
  • B. The first step consists of granting access to the information to which the user is authorized.
  • C. The first step consists of comparing the password with the registered password.
  • D. The first step consists of checking if the user appears on the list of authorized users.

Answer: D

 

NEW QUESTION 65
What is the best description of a risk analysis?

  • A. A risk analysis calculates the exact financial consequences of damages.
  • B. A risk analysis helps to estimate the risks and develop the appropriate security measures.
  • C. A risk analysis is a method of mapping risks without looking at company processes.

Answer: B

 

NEW QUESTION 66
You are the owner of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large risks but not for the small risks. What is this risk strategy called?

  • A. Risk avoiding
  • B. Risk neutral
  • C. Risk bearing

Answer: B

 

NEW QUESTION 67
You are a consultant and are regularly hired by the Ministry of Defense to perform analysis. Since the assignments are irregular, you outsource the administration of your business to temporary workers. You don't want the temporary workers to have access to your reports. Which reliability aspect of the information in your reports must you protect?

  • A. Integrity
  • B. Confidentiality
  • C. Availability

Answer: B

 

NEW QUESTION 68
An airline company employee notices that she has access to one of the company's applications that she has not used before. Is this an information security incident?

  • A. Yes
  • B. No

Answer: B

 

NEW QUESTION 69
A Dutch company requests to be listed on the American Stock Exchange. Which legislation within the scope of information security is relevant in this case?

  • A. Dutch Tax Law
  • B. Security regulations for the Dutch government
  • C. Sarbanes-Oxley Act
  • D. Public Records Act

Answer: C

 

NEW QUESTION 70
......


Who should take the ISFS exam

The Exin ISFS certification is an internationally-recognized validation that identifies persons who earn it as possessing skilled in Exin Information Security Management Certification. If a candidate wants significant improvement in career growth needs enhanced knowledge, skills, and talents. The Exin Information Security Foundation based on ISO/IEC 27002 ISFS Exam certification provides proof of this advanced knowledge and skill. If a candidate has knowledge of associated technologies and skills that are required to pass the Exin Information Security Foundation based on ISO/IEC 27002 ISFS Exam then he should take this exam.

 

Verified ISFS dumps Q&As - 100% Pass from DumpsFree: https://dumpstorrent.dumpsfree.com/ISFS-valid-exam.html

Related Articles

more
EXIN ISFS Certification Practice Exam

DumpsFree provides high-quality dumps PDF & dumps VCE for candidates who are willing to pass exams and get certifications soon. We provide dumps free download before purchasing dumps VCE. 100% pass exam!

Latest Dumps Free

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 DumpsFree NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy