CCISO 712-50 Reddit Questions

EC-Council Certified CISO (CCISO) Questions and Answers

Question 5

A missing/ineffective security control is identified. Which of the following should be the NEXT step?

Options:

Perform an audit to measure the control formally

Escalate the issue to the IT organization

Perform a risk assessment to measure risk

Establish Key Risk Indicators

Question 6

The remediation of a specific audit finding is deemed too expensive and will not be implemented. Which of the following is a TRUE statement?

Options:

The asset is more expensive than the remediation

The audit finding is incorrect

The asset being protected is less valuable than the remediation costs

The remediation costs are irrelevant; it must be implemented regardless of cost.

Question 7

In MOST organizations which group periodically reviews network intrusion detection system logs for all systems as part of their daily tasks?

Options:

Internal Audit

Database Administration

Information Security

Compliance

Question 8

When a critical vulnerability has been discovered on production systems and needs to be fixed immediately, what is the BEST approach for a CISO to mitigate the vulnerability under tight budget constraints?

Options:

Transfer financial resources from other critical programs

Take the system off line until the budget is available

Deploy countermeasures and compensating controls until the budget is available

Schedule an emergency meeting and request the funding to fix the issue

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

EC-Council Certified CISO (CCISO) Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer: