ISACA Cybersecurity Audit Certificate
UPDATED ACTUAL Exam Questions and
CORRECT Answers
Which NIST Cybersecurity framework function focuses on prevention controls, such as network
perimeter security and identity management? - CORRECT ANSWER A. Identify
B. Protect (Answer)
C. Detect
D. Respond
E. Recover
Which line of defense is responsible for formal risk evaluations? - CORRECT ANSWER A.
First
B. Second (Answer)
C. Third
D. All of the above
Which NIST control function includes control objectives relating to security continuous
monitoring? - CORRECT ANSWER A. Identify
B. Protect
C. Detect (Answer)
D. Respond
E. Recover
Cybersecurity is focused on protection of information assets from loss of: - CORRECT
ANSWER A. Confidentiality
B. Integrity
C. Availability
D. All of the above (Answer)
, Cybersecurity controls are related to which of the following network environments? -
CORRECT ANSWER A. The Internet network
B. Internet network
C. Wireless networks
D. Business partner connections
E. All of the above (Answer)
Nation states, political hacktivists and organized crime groups are examples of: - CORRECT
ANSWER A. Vulnerabilities
B. Threat events
C. Threat actors (Answer)
D. Risk
A data breach is an example of a: - CORRECT ANSWER A. Vulnerability
B. Threat event (Answer)
C. Threat actor
D. Risk
Which of the following are not key clauses that should be a part of a third-party contract? -
CORRECT ANSWER A. Requirement that the vendor comply with industry and regulatory
requirements in a timely manner
B. Right to audit vendors controls
C. Right to review vendor processes
D. Performance measurement metrics (Answer)
Security awareness training includes which of the following areas? (Select all that apply) -
CORRECT ANSWER A. Passwords (Answer)
B. Operating system security
UPDATED ACTUAL Exam Questions and
CORRECT Answers
Which NIST Cybersecurity framework function focuses on prevention controls, such as network
perimeter security and identity management? - CORRECT ANSWER A. Identify
B. Protect (Answer)
C. Detect
D. Respond
E. Recover
Which line of defense is responsible for formal risk evaluations? - CORRECT ANSWER A.
First
B. Second (Answer)
C. Third
D. All of the above
Which NIST control function includes control objectives relating to security continuous
monitoring? - CORRECT ANSWER A. Identify
B. Protect
C. Detect (Answer)
D. Respond
E. Recover
Cybersecurity is focused on protection of information assets from loss of: - CORRECT
ANSWER A. Confidentiality
B. Integrity
C. Availability
D. All of the above (Answer)
, Cybersecurity controls are related to which of the following network environments? -
CORRECT ANSWER A. The Internet network
B. Internet network
C. Wireless networks
D. Business partner connections
E. All of the above (Answer)
Nation states, political hacktivists and organized crime groups are examples of: - CORRECT
ANSWER A. Vulnerabilities
B. Threat events
C. Threat actors (Answer)
D. Risk
A data breach is an example of a: - CORRECT ANSWER A. Vulnerability
B. Threat event (Answer)
C. Threat actor
D. Risk
Which of the following are not key clauses that should be a part of a third-party contract? -
CORRECT ANSWER A. Requirement that the vendor comply with industry and regulatory
requirements in a timely manner
B. Right to audit vendors controls
C. Right to review vendor processes
D. Performance measurement metrics (Answer)
Security awareness training includes which of the following areas? (Select all that apply) -
CORRECT ANSWER A. Passwords (Answer)
B. Operating system security
