712-50 EC-Council Exam Questions and Free Practice Test

Question 61

- (Topic 2)
IT control objectives are useful to IT auditors as they provide the basis for understanding the:

A. Desired results or purpose of implementing specific control procedures.

B. The audit control checklist.

C. Techniques for securing information.

D. Security policy

Correct Answer:A

Question 62

- (Topic 5)
Scenario: The new CISO was informed of all the Information Security projects that the section has in progress. Two projects are over a year behind schedule and way over budget.
Using the best business practices for project management, you determine that the project
correctly aligns with the organization goals. What should be verified next?

A. Scope

B. Budget

C. Resources

D. Constraints

Correct Answer:A

Question 63

- (Topic 3)
How often should the Statements of Standards for Attestation Engagements-16 (SSAE16)/International Standard on Assurance Engagements 3402 (ISAE3402) report of your vendors be reviewed?

A. Quarterly

B. Semi-annually

C. Bi-annually

D. Annually

Correct Answer:D

Question 64

- (Topic 3)
Which of the following represents the best method of ensuring business unit alignment with security program requirements?

A. Provide clear communication of security requirements throughout the organization

B. Demonstrate executive support with written mandates for security policy adherence

C. Create collaborative risk management approaches within the organization

D. Perform increased audits of security processes and procedures

Correct Answer:C

Question 65

- (Topic 3)
Which of the following represents the BEST method for obtaining business unit acceptance of security controls within an organization?

A. Allow the business units to decide which controls apply to their systems, such as the encryption of sensitive data

B. Create separate controls for the business units based on the types of business and functions they perform

C. Ensure business units are involved in the creation of controls and defining conditions under which they must be applied

D. Provide the business units with control mandates and schedules of audits for compliance validation

Correct Answer:C

Question 66

- (Topic 1)
Who in the organization determines access to information?

A. Legal department

B. Compliance officer

C. Data Owner

D. Information security officer

Correct Answer:C

START 712-50 EXAM