ITIL ITIL 4 Practitioner Information Security Management - ITIL 4 Practitioner Information Security Management Exam
Page: 2 / 4
Total 20 questions
Question #6 (Topic: Exam A)
An organization’s strategy requires an information security management system to be established.
What BEST supports this strategic requirement?
What BEST supports this strategic requirement?
A. Implementation of a SIEM toolset
B. Introduction of a CISO role
C. Adoption of the ISO/IEC 27001 standard
D. Implementation of the 2FA method
Answer: C
Question #7 (Topic: Exam A)
A large organization has a small, centralized information security management team, but most information security work is devoted to the many independent product teams. The central team defines policy, and makes recommendations about tools and automation, but each product team makes its own decisions about how to meet the policy.
What is the BEST approach to ensure information security is managed consistently across this organization?
What is the BEST approach to ensure information security is managed consistently across this organization?
A. Security experts in the product teams should report directly to the centralized information security management team
B. The centralized team should create an information security center of excellence to help the security experts collaborate
C. The centralized team should produce detailed process documentation to be followed by all product teams
D. The organization should adopt a security standard such as ISO/IEC 27001 and enforce its use across the product teams
Answer: B
Question #8 (Topic: Exam A)
A supplier provides business data that is critical to the organization’s business. This supplier must log in to a server on the organization’s network to update the data on a regular basis.
What should the organization use to ensure that only authorized supplier staff perform these updates?
What should the organization use to ensure that only authorized supplier staff perform these updates?
A. Network isolation
B. Two factor authentication
C. Vulnerability assessments
D. Security incident and event management tools
Answer: B
Question #9 (Topic: Exam A)
An organization has mapped the value stream for resolving incidents, and has identified many handoffs to and from third parties. These handoffs require potentially sensitive information to be shared so that the incidents can be resolved, and this results in a risk that information might be leaked.
What TWO things should the organization do to manage this risk?
1. Resolve all incidents that involve sensitive information using in-house staff only
2. Automatically detect sensitive information and remove it when it is not essential for the supplier
3. Ensure contracts specify how the suppliers should manage this information
4. Delete all sensitive data from incident records so that is cannot be leaked during incident investigation
What TWO things should the organization do to manage this risk?
1. Resolve all incidents that involve sensitive information using in-house staff only
2. Automatically detect sensitive information and remove it when it is not essential for the supplier
3. Ensure contracts specify how the suppliers should manage this information
4. Delete all sensitive data from incident records so that is cannot be leaked during incident investigation
A. 1 and 2
B. 2 and 3
C. 3 and 4
D. 1 and 4
Answer: B
Question #10 (Topic: Exam A)
The information security team is having difficulty working with the supplier management team. All other aspects of information security management work very well, but contracts with suppliers are often inadequate.
What is the HIGHEST capability level that the organization’s information security management practice demonstrates?
What is the HIGHEST capability level that the organization’s information security management practice demonstrates?
A. Level 1
B. Level 2
C. Level 3
D. Level 4
Answer: B
