Free Access ECCouncil 512-50 New Release

EC-Council Information Security Manager (E|ISM) Questions and Answers

Question 41

The implementation of anti-malware and anti-phishing controls on centralized email servers is an example of what type of security control?

Options:

Organization control

Procedural control

Management control

Technical control

Question 42

At which point should the identity access management team be notified of the termination of an employee?

Options:

At the end of the day once the employee is off site

During the monthly review cycle

Immediately so the employee account(s) can be disabled

Before an audit

Question 43

The risk found after a control has been fully implemented is called:

Options:

Residual Risk

Total Risk

Post implementation risk

Transferred risk

Question 44

The CIO of an organization has decided to assign the responsibility of internal IT audit to the IT team. This is consider a bad practice MAINLY because

Options:

The IT team is not familiar in IT audit practices

This represents a bad implementation of the Least Privilege principle

This represents a conflict of interest

The IT team is not certified to perform audits

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Free Access ECCouncil 512-50 New Release

EC-Council Information Security Manager (E|ISM) Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer: