1. Home
  2. EC-COUNCIL
  3. 512-50

EC-Council Information Security Manager (E|ISM)

Exam Details

  • Exam Code
    :512-50
  • Exam Name
    :EC-Council Information Security Manager (E|ISM)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :404 Q&As
  • Last Updated
    :Mar 30, 2025

EC-COUNCIL EC-COUNCIL Certifications 512-50 Questions & Answers

  • Question 81:

    Which of the following conditions would be the MOST probable reason for a security project to be rejected by the executive board of an organization?

    A. The Net Present Value (NPV) of the project is positive

    B. The NPV of the project is negative

    C. The Return on Investment (ROI) is larger than 10 months

    D. The ROI is lower than 10 months

  • Question 82:

    A newly-hired CISO needs to understand the organization's financial management standards for business units and operations. Which of the following would be the best source of this information?

    A. The internal accounting department

    B. The Chief Financial Officer (CFO)

    C. The external financial audit service

    D. The managers of the accounts payables and accounts receivables teams

  • Question 83:

    SCENARIO: A CISO has several two-factor authentication systems under review and selects the one that is most sufficient and least costly. The implementation project planning is completed and the teams are ready to implement the solution. The CISO then discovers that the product it is not as scalable as originally thought and will not fit the organization's needs.

    The CISO is unsure of the information provided and orders a vendor proof of concept to validate the system's scalability. This demonstrates which of the following?

    A. An approach that allows for minimum budget impact if the solution is unsuitable

    B. A methodology-based approach to ensure authentication mechanism functions

    C. An approach providing minimum time impact to the implementation schedules

    D. A risk-based approach to determine if the solution is suitable for investment

  • Question 84:

    Which of the following best describes a portfolio?

    A. The portfolio is used to manage and track individual projects

    B. The portfolio is used to manage incidents and events

    C. A portfolio typically consists of several programs

    D. A portfolio delivers one specific service or program to the business

  • Question 85:

    Which of the following would negatively impact a log analysis of a multinational organization?

    A. Centralized log management

    B. Encrypted log files in transit

    C. Each node set to local time

    D. Log aggregation agent each node

  • Question 86:

    When analyzing and forecasting an operating expense budget what are not included?

    A. Software and hardware license fees

    B. Utilities and power costs

    C. Network connectivity costs

    D. New datacenter to operate from

  • Question 87:

    What are the primary reasons for the development of a business case for a security project?

    A. To estimate risk and negate liability to the company

    B. To understand the attack vectors and attack sources

    C. To communicate risk and forecast resource needs

    D. To forecast usage and cost per software licensing

  • Question 88:

    What is meant by password aging?

    A. An expiration date set for passwords

    B. A Single Sign-On requirement

    C. Time in seconds a user is allocated to change a password

    D. The amount of time it takes for a password to activate

  • Question 89:

    SCENARIO: A CISO has several two-factor authentication systems under review and selects the one that is most sufficient and least costly. The implementation project planning is completed and the teams are ready to implement the solution. The CISO then discovers that the product it is not as scalable as originally thought and will not fit the organization's needs.

    What is the MOST logical course of action the CISO should take?

    A. Review the original solution set to determine if another system would fit the organization's risk appetite and budget regulatory compliance requirements

    B. Continue with the implementation and submit change requests to the vendor in order to ensure required functionality will be provided when needed

    C. Continue with the project until the scalability issue is validated by others, such as an auditor or third party assessor

    D. Cancel the project if the business need was based on internal requirements versus regulatory compliance requirements

  • Question 90:

    Which of the following defines the boundaries and scope of a risk assessment?

    A. The risk assessment schedule

    B. The risk assessment framework

    C. The risk assessment charter

    D. The assessment context

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 512-50 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.