Question No. 1

What are the primary reasons for the development of a business case for a security project?

ATo estimate risk and negate liability to the company

BTo understand the attack vectors and attack sources

CTo communicate risk and forecast resource needs

DTo forecast usage and cost per software licensing

Show Answer

Correct Answer: C

Question No. 2

As the new CISO at the company you are reviewing the audit reporting process and notice that it includes only detailed technical diagrams. What else should be in the reporting process?

AExecutive summary

BPenetration test agreement

CNames and phone numbers of those who conducted the audit

DBusiness charter

Show Answer

Correct Answer: A

Question No. 3

A system was hardened at the Operating System level and placed into the production environment. Months later an audit was performed and it identified insecure configuration different from the original hardened state. Which of the following security issues is the MOST likely reason leading to the audit findings?

ALack of asset management processes

BLack of change management processes

CLack of hardening standards

DLack of proper access controls

Show Answer

Correct Answer: B

Question No. 4

What role should the CISO play in properly scoping a PCI environment?

AValidate the business units' suggestions as to what should be included in the scoping process

BWork with a Qualified Security Assessor (QSA) to determine the scope of the PCI environment

CEnsure internal scope validation is completed and that an assessment has been done to discover all credit card data

DComplete the self-assessment questionnaire and work with an Approved Scanning Vendor (ASV) to determine scope

Show Answer

Correct Answer: C

Question No. 5

Which of the following is an accurate statement regarding capital expenses?

AThey are easily reduced through the elimination of usage, such as reducing power for lighting of work areas
during off-hours

BCapital expenses can never be replaced by operational expenses

CCapital expenses are typically long-term investments with value being realized through their use

DThe organization is typically able to regain the initial cost by selling this type of asset

Show Answer

Correct Answer: A

Free Eccouncil 512-50 Exam Actual Questions

The questions for 512-50 were last updated On Nov 18, 2024