ISMP Information Security Management Professional based on ISO/IEC 27001 Exam

 

Duration: 1 hour and 30 minutes
Number of questions: 30 (Multiple Choice)
Pass mark: 65%
Open book: No
Electronic equipment allowed: No
Level: Advanced
ECTS credits: 4
Available languages: English, Dutch, Brazilian Portuguese, Chinese

Requirements for certification: The Information Security Management Professional training course with an EXIN accredited training provider (ATP), including having successfully fulfilled the two (2) practical assignments as part of the course.

Information is crucial for the continuity and proper functioning of both individual organizations and the economies they fuel; this information must be protected against access by unauthorized people, protected against accidental or malicious modification or destruction and must be available when it is needed. The module Information Security Management Professional based on ISO/IEC 27001 tests understanding of the organizational, physical and technical aspects of information security.

Who is this certification for?
This module is intended for everyone who is involved in the implementation, evaluation, and reporting of an information security program, such as an Information Security Manager (ISM), Information Security Officer (ISO) or a Line Manager, Process Manager or Project Manager with security responsibilities. Basic knowledge of Information Security is recommended, for instance through the EXIN Information Security Foundation based on ISO/IEC 27001 certification.

Main subjects
Information security perspectives: the perspectives of the business, the customer, and the service provider
Risk Management: Analysis of the risks, choosing controls, dealing with remaining risks
Information security controls: Organizational, technical and physical controls

Required reading
EXIN Information Security Management Professional based on ISO/IEC 27001 Body of Knowledge EXIN (2020)

QUESTION 1
Zoning is a security control to separate physical areas with different security levels. Zones with higher security
levels can be secured by more controls. The facility manager of a conference center is responsible for security.
What combination of business functions should be combined into one security zone?

A. Boardroom and general office space
B. Computer room and storage facility
C. Lobby and public restaurant
D. Meeting rooms and Human Resource rooms

Correct Answer: C

QUESTION 2
Which security item is designed to take collections of data from multiple computers?

A. Firewall
B. Host-Based Intrusion Detection and Prevention System (Host-Based IDPS)
C. Network-Based Intrusion Detection and Prevention System (Network-Based IDPS)
D. Virtual Private Network (VPN)

Correct Answer: C

QUESTION 3
A security manager just finished the final copy of a risk assessment. This assessment contains a list of
identified risks and she has to determine how to treat these risks.
What is the best option for the treatment of risks?

A. Begin risk remediation immediately as the organization is currently at risk
B. Decide the criteria for determining if the risk can be accepted
C. Design appropriate controls to reduce the risk
D. Remediate the risk regardless of cost

Correct Answer: B

Examkingdom Exin ISMP Exam pdf, Certkingdom Exin ISMP PDF

MCTS Training, MCITP Trainnig

Best Exin ISMP Certification, Exin ISMP Training at certkingdom.com

Comments

Post a Comment

Popular posts from this blog

Exam MS-900 Microsoft 365 Fundamentals

Image
Languages: English Audiences: IT professionals Technology: Microsoft 365 Skills measured This exam measures your ability to accomplish the technical tasks listed below. The percentages indicate the relative weight of each major topic area on the exam. The higher the percentage, the more questions you are likely to see on that content area on the exam. View video tutorials about the variety of question types on Microsoft exams. Do you have feedback about the relevance of the skills measured on this exam? Please send Microsoft your comments. All feedback will be reviewed and incorporated as appropriate while still maintaining the validity and reliability of the certification process. Note that Microsoft will not respond directly to your feedback. We appreciate your input in ensuring the quality of the Microsoft Certification program. If you have concerns about specific questions on this exam, please submit an exam challenge. If you have other questions or feedb...
Read more

DEE-1721 Expert – Implementation Engineer, SC Series Exam

Image
Overview This exam is a qualifying exam for the Expert - SC Series track. This exam focuses on the knowledge and activities involved in installing, initializing, configuring, testing, updating, upgrading and troubleshoot the hardware and software of the Dell EMC SC Series Storage products. Dell EMC provides free practice tests to assess your knowledge in preparation for the exam. Practice tests allow you to become familiar with the topics and question types you will find on the proctored exam. Your results on a practice test offer one indication of how prepared you are for the proctored exam and can highlight topics on which you need to study and train further. A passing score on the practice test does not guarantee a passing score on the certification exam. Products Products likely to be referred to on this exam include but are not limited to: SC Series Storage DSM 2015, SCOS 6.X, the SC4020 and the SC8000 Exam Topics Topics likely to be covered on this exam inclu...
Read more

1Y0-341 Citrix ADC Advanced Topics - Security. Management and Optimization (CCP-N) Exam

Image
  Citrix 1Y0-341 (CCP-N) Certification Exam Syllabus 1Y0-341 Dumps Questions, 1Y0-341 PDF, CCP-N Exam Questions PDF, Citrix 1Y0-341 Dumps Free, CCP-N Official Cert Guide PDFThe Citrix 1Y0-341 exam preparation guide is designed to provide candidates with necessary information about the CCP-N exam. It includes exam summary, sample questions, practice test, objectives and ways to interpret the exam objectives to enable candidates to assess the types of questions-answers that may be asked during the Citrix Certified Professional - Networking (CCP-N) exam. It is recommended for all the candidates to refer the 1Y0-341 objectives and sample questions provided in this preparation guide. The Citrix CCP-N certification is mainly targeted to the candidates who want to build their career in Networking domain and demonstrate their expertise. We suggest you to use practice exam listed in this cert guide to get used to with exam environment and identify the knowledge areas where you...
Read more