Question 1

Based on the identified nonconformities. Company A established action plans that included the detected nonconformities, the root causes, and a general statement regarding each action that would be taken. Is this acceptable?

Options :

A :

No, the action plans should include information on the systems that will be installed and how these systems will eliminate the root causes

B :

No, the auditee is required to submit action plans that include detailed information on how every corrective action will be implemented

C :

Yes, the auditee is required to submit action plans that include a general statement regarding the actions that will be taken

Answer: B

Question 2

During a third-party certification audit, you are presented with a list of issues by an auditee. Which four of the following constitute 'internal' issues in the context of a management system to ISO 27001:2022?

Options :

A : Higher labour costs as a result of an aging population

B : A rise in interest rates in response to high inflation

C : Poor levels of staff competence as a result of cuts in training expenditure

D : Poor morale as a result of staff holidays being reduced

E : Increased absenteeism as a result of poor management

F : A reduction in grants as a result of a change in government policy

G : A fall in productivity linked to outdated production equipment

H : Inability to source raw materials due to government sanctions

Answer: C,D,E,G

Question 3

During a third-party certification audit you are presented with a list of issues by an auditee. Which four of the following constitute 'external' issues in the context of a management system to ISO/IEC 27001:2022?

Options :

A : A rise in interest rates in response to high inflation

B : A reduction in grants as a result of a change in government policy

C : Poor levels of staff competence as a result of cuts in training expenditure

D : Increased absenteeism as a result of poor management

E : Higher labour costs as a result of an aging population

F : Inability to source raw materials due to government sanctions

G : Poor morale as a result of staff holidays being reduced

H : A fall in productivity linked to outdated production equipment

Answer: A,B,E,F

Question 4

What is social engineering?

Options :

A : A group planning for a social activity in the organization

B : Creating a situation wherein a third party gains confidential information from you

C : The organization planning an activity for welfare of the neighborhood

Answer: B

Question 5

The computer room is protected by a pass reader. Only the System Management department has a pass.

What type of security measure is this?

Options :

A : a corrective security measure

B : a physical security measure

C : a logical security measure

D : a repressive security measure

Answer: B

Free ISO-IEC-27001-Lead-Auditor Mock Exam – Practice Online Confidently

Buying Options: