PECB ISO-IEC-27001 Lead Implementer Exam Dumps
Study online at https://quizlet.com/_fhpm9o
1. Which is a primary function of an information security Answer: B
management system (ISMS)?
A. To guarantee that IT investments return a profit.
B. To systematically manage information security
risks to the organization.
C. To ensure that all IT projects are completed on or
under budget.
D. To promote the use of technology in new business
domains.
2. What does ISO/IEC 27001 primarily seek to ensure in Answer: C
an organization?
A. Profitability through information optimization.
B. Protection of company assets from physical harm.
C. Confidentiality, integrity, and availability of informa-
tion.
D. Compliance with international financial reporting
standards.
3. Which of the following is the information security Answer: B
committee responsible for?
A. Ensure smooth running of the ISMS
B. Set annual objectives and the ISMS strategy
C. Treat the nonconformities
4. Why should the security testing processes be defined Answer: C
and implemented in the development life cycle?
A. To protect the production environment and data
from compromise by development and test activities
B. To validate if information security requirements are
met when applications are deployed to the production
environment
C. To Identify organizational assets and define appro-
priate protection responsibilities
5. Which of the following is NOT part of the steps re- Answer: C
quired by ISO/IEC 27001 that an organization must
take when a nonconformity is detected?
A. React to the nonconformity, take action to control
1/3
Study online at https://quizlet.com/_fhpm9o
1. Which is a primary function of an information security Answer: B
management system (ISMS)?
A. To guarantee that IT investments return a profit.
B. To systematically manage information security
risks to the organization.
C. To ensure that all IT projects are completed on or
under budget.
D. To promote the use of technology in new business
domains.
2. What does ISO/IEC 27001 primarily seek to ensure in Answer: C
an organization?
A. Profitability through information optimization.
B. Protection of company assets from physical harm.
C. Confidentiality, integrity, and availability of informa-
tion.
D. Compliance with international financial reporting
standards.
3. Which of the following is the information security Answer: B
committee responsible for?
A. Ensure smooth running of the ISMS
B. Set annual objectives and the ISMS strategy
C. Treat the nonconformities
4. Why should the security testing processes be defined Answer: C
and implemented in the development life cycle?
A. To protect the production environment and data
from compromise by development and test activities
B. To validate if information security requirements are
met when applications are deployed to the production
environment
C. To Identify organizational assets and define appro-
priate protection responsibilities
5. Which of the following is NOT part of the steps re- Answer: C
quired by ISO/IEC 27001 that an organization must
take when a nonconformity is detected?
A. React to the nonconformity, take action to control
1/3
