1. Home
  2. EC-COUNCIL
  3. 512-50

EC-Council Information Security Manager (E|ISM)

Exam Details

  • Exam Code
    :512-50
  • Exam Name
    :EC-Council Information Security Manager (E|ISM)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :404 Q&As
  • Last Updated
    :

EC-COUNCIL EC-COUNCIL Certifications 512-50 Questions & Answers

  • Question 181:

    This occurs when the quantity or quality of project deliverables is expanded from the original project plan.

    A. Scope creep

    B. Deadline extension

    C. Scope modification

    D. Deliverable expansion

  • Question 182:

    When is an application security development project complete?

    A. When the application is retired.

    B. When the application turned over to production.

    C. When the application reaches the maintenance phase.

    D. After one year.

  • Question 183:

    The security team has investigated the theft/loss of several unencrypted laptop computers containing sensitive corporate information. To prevent the loss of any additional corporate data it is unilaterally decided by the CISO that all existing and future laptop computers will be encrypted. Soon, the help desk is flooded with complaints about the slow performance of the laptops and users are upset. What did the CISO do wrong? (choose the BEST answer):

    A. Failed to identify all stakeholders and their needs

    B. Deployed the encryption solution in an inadequate manner

    C. Used 1024 bit encryption when 256 bit would have sufficed

    D. Used hardware encryption instead of software encryption

  • Question 184:

    Your company has a "no right to privacy" notice on all logon screens for your information systems and users sign an Acceptable Use Policy informing them of this condition. A peer group member and friend comes to you and requests access to one of her employee's email account. What should you do? (choose the BEST answer):

    A. Grant her access, the employee has been adequately warned through the AUP.

    B. Assist her with the request, but only after her supervisor signs off on the action.

    C. Reset the employee's password and give it to the supervisor.

    D. Deny the request citing national privacy laws.

  • Question 185:

    A CISO sees abnormally high volumes of exceptions to security requirements and constant pressure from business units to change security processes. Which of the following represents the MOST LIKELY cause of this situation?

    A. Poor audit support for the security program

    B. A lack of executive presence within the security program

    C. Poor alignment of the security program to business needs

    D. This is normal since business units typically resist security requirements

  • Question 186:

    You are the CISO of a commercial social media organization. The leadership wants to rapidly create new methods of sharing customer data through creative linkages with mobile devices. You have voiced concern about privacy regulations but the velocity of the business is given priority. Which of the following BEST describes this organization?

    A. Risk averse

    B. Risk tolerant

    C. Risk conditional

    D. Risk minimal

  • Question 187:

    Which of the following is considered a project versus a managed process?

    A. monitoring external and internal environment during incident response

    B. ongoing risk assessments of routine operations

    C. continuous vulnerability assessment and vulnerability repair

    D. installation of a new firewall system

  • Question 188:

    Which of the following represents the BEST method for obtaining business unit acceptance of security controls within an organization?

    A. Allow the business units to decide which controls apply to their systems, such as the encryption of sensitive data

    B. Create separate controls for the business units based on the types of business and functions they perform

    C. Ensure business units are involved in the creation of controls and defining conditions under which they must be applied

    D. Provide the business units with control mandates and schedules of audits for compliance validation

  • Question 189:

    Which of the following functions evaluates risk present in IT initiatives and/or systems when implementing an information security program?

    A. Risk Management

    B. Risk Assessment

    C. System Testing

    D. Vulnerability Assessment

  • Question 190:

    Which of the following is the BEST indicator of a successful project?

    A. it is completed on time or early as compared to the baseline project plan

    B. it meets most of the specifications as outlined in the approved project definition

    C. it comes in at or below the expenditures planned for in the baseline budget

    D. the deliverables are accepted by the key stakeholders

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 512-50 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.