Question No. 1

You are the first to arrive at work in the morning and notice that the CD ROM on which you saved

contracts yesterday has disappeared. You were the last to leave yesterday. When should you

report this information security incident?

AThis incident should be reported immediately.

BYou should first investigate this incident yourself and try to limit the damage.

CYou should wait a few days before reporting this incident. The CD ROM can still reappear and,
in that case, you will have made a fuss for nothing.

Show Answer

Correct Answer: A

Question No. 2

What is the goal of an organization's security policy?

ATo provide direction and support to information security

BTo define all threats to and measures for ensuring information security

CTo document all incidents that threaten the reliability of information

DTo document all procedures required to maintain information security

Show Answer

Correct Answer: A

Question No. 3

Why is compliance important for the reliability of the information?

ACompliance is another word for reliability. So, if a company indicates that it is compliant, it
means that the information is managed properly.

BBy meeting the legislative requirements and the regulations of both the government and
internal management, an organization shows that it manages its information in a sound
manner.

CWhen an organization employs a standard such as the ISO/IEC 27002 and uses it
everywhere, it is compliant and therefore it guarantees the reliability of its information.

DWhen an organization is compliant, it meets the requirements of privacy legislation and, in
doing so, protects the reliability of its information.

Show Answer

Correct Answer: B

Question No. 4

The company Midwest Insurance has taken many measures to protect its information. It uses an

Information Security Management System, the input and output of data in applications is validated, confidential documents are sent in encrypted form and staff use tokens to access information systems. Which of these is not a technical measure?

AInformation Security Management System

BThe use of tokens to gain access to information systems

CValidation of input and output data in applications

DEncryption of information

Show Answer

Correct Answer: A

Question No. 5

Which measure assures that valuable information is not left out available for the taking?

AClear desk policy

BInfra-red detection

CAccess passes

Show Answer

Correct Answer: A

Free Exin ISFS Exam Actual Questions

The questions for ISFS were last updated On Jan 11, 2025