712-50 Exam - Free ECCouncil Questions and Answers

Question #6 (Topic: Single Topic)

Which of the following is the MAIN reason to follow a formal risk management process in an organization that hosts and uses privately identifiable information (PII)
as part of their business models and processes?

A. Need to comply with breach disclosure laws B. Fiduciary responsibility to safeguard credit information C. Need to transfer the risk associated with hosting PII data D. Need to better understand the risk associated with using PII data

Answer: D

Question #7 (Topic: Single Topic)

A method to transfer risk is to______________.

A. Implement redundancy B. Move operations to another region C. Align to business operations D. Purchase breach insurance

Answer: D

Question #8 (Topic: Single Topic)

An organization licenses and uses personal information for business operations, and a server containing that information has been compromised.
What kind of law would require notifying the owner or licensee of this incident?

A. Consumer right disclosure B. Data breach disclosure C. Special circumstance disclosure D. Security incident disclosure

Answer: B

Question #9 (Topic: Single Topic)

Why is it vitally important that senior management endorse a security policy?

A. So that employees will follow the policy directives. B. So that they can be held legally accountable. C. So that external bodies will recognize the organizations commitment to security. D. So that they will accept ownership for security within the organization.

Answer: D

Question #10 (Topic: Single Topic)

Which of the following is of MOST importance when security leaders of an organization are required to align security to influence the culture of an organization?

A. Understand the business goals of the organization B. Poses a strong technical background C. Poses a strong auditing background D. Understand all regulations affecting the organization

Answer: A

ECCouncil 712-50 - EC-Council Certified CISO Exam