Question 1

What is the purpose of incident categorization within the incident management lifecycle?

Options :

A : To determine the priority of incidents

B : To automatically assign incidents to technicians

C : To sort incidents based on the disrupted IT or business domain

Answer: C

Question 2

How should vulnerabilities lacking corresponding threats be handled?

Options :

A : They still require controls and should be promptly addressed

B : They should be disregarded as they pose no risk

C : They may not require controls but should be analyzed and monitored for changes

Answer: C

Question 3

Which of the following is NOT an example of technical control?

Options :

A : Implementing a policy for regular password changes

B : Implementing surveillance cameras

C : Installing a firewall to protect the network

Answer: A

Question 4

How is the impact of an information security event assessed?

Options :

A : By determining if the event is an information security incident

B : By identifying the assets affected by the event

C : By evaluating the effect on the confidentiality, integrity, and availability of information

Answer: C

Question 5

What is the purpose of incident identification in the incident response process?

Options :

A : To collect all data related to the incident, including information from affected systems, network logs, user accounts, and any other relevant sources

B : To conduct a preliminary assessment of the incident

C : To recognize incidents through various methods like intrusion detection systems and employee reports

Answer: C

Free ISO-IEC-27035-Lead-Incident-Manager Mock Exam – Practice Online Confidently

Buying Options: