Which is the main purpose of control 6.1 Screening of ISO/IEC 27001:2022?

To ensure that all personnel are eligible and suitable for their roles

To ensure that employees and contractors are aware of and fulfil their information security responsibilities

To protect the organization’s interests as part of the process of any changes in employment

Who shall have access to documented operating procedures?

The person responsible for operating procedures

What is the main requirement of control 8.34 Protection of information systems during audit testing of ISO/IEC 27001:2022?

The tester and appropriate management shall plan and agree on audit tests and other assurance activities involving assessment of operational systems

The tester and appropriate management shall appropriately manage test information

The tester shall separate and secure the development, testing, and production environments

What is the purpose of control 5.7 Threat intelligence of ISO/IEC 27001:2022?

To provide awareness of the organization’s threat environment

To ensure appropriate flow of information takes place with respect to information security

To ensure authorized access to information and other associated assets

Which statement below best describes the relationship between information security aspects?

Threats exploit vulnerabilities to damage or destroy assets

Controls protect assets by reducing threats

Risk is a function of vulnerabilities that harm assets

Which of the following is one of the objectives of the privacy protection policy?

To increase awareness regarding the legal requirements for protecting personal information

To increase awareness regarding cybercrimes that target an organization’s computer network

To increase awareness regarding the validity of digital signatures in electronic documents

ISO27001 Quizz Section 789 (Day#2C)

1st Grade

•

15 Qs

Similar activities

Test your Chromebook Knowledge!

KG - 12th Grade

•

11 Qs

Pre- Read - OVH

1st - 3rd Grade

•

10 Qs

Gujarat State

KG - Professional Development

•

10 Qs

Makaton Days of the Week

KG - Professional Development

•

16 Qs

PMBOK - CAPÍTULO 4

KG - 5th Grade

•

11 Qs

England Quiz of the Week (Week 1)

1st - 12th Grade

•

12 Qs

QUIZ 4 : TOPIC 8 [PROCESS COSTING]

1st Grade - University

•

20 Qs

Blended Learning Models

KG - University

•

11 Qs

ISO27001 Quizz Section 789 (Day#2C)

Quiz

•

Professional Development

•

1st Grade

•

Practice Problem

•

Hard

sudiyuwono wowo

Used 4+ times

FREE Resource

15 questions

Show all answers

MULTIPLE CHOICE QUESTION

45 sec • 5 pts

An action taken to eliminate the cause of a potential nonconformity or other potential undesirable situation is known as:

Correction

Corrective action

Preventive action

Answer explanation

Preventive actions are actions taken to eliminate the cause of a potential nonconformity or other potential undesirable situation.

MULTIPLE CHOICE QUESTION

45 sec • 5 pts

What are the activities that should be included in the situation analysis phase of the corrective action process?

Identification and documentation of the nonconformities

Evaluation of options and selection of solutions

Follow- up on and review of corrective actions

Answer explanation

Situation analysis phase of the corrective action process comprises of three activities: analysis of the root cause, evaluation of options, and selection of solutions.

MULTIPLE CHOICE QUESTION

45 sec • 5 pts

What is the correlation between continual improvement and information security errors?

Continual improvement helps reduce the number of errors

Continual improvement helps increase the number of errors

Continual improvement introduces new errors

Answer explanation

The continual improvement process helps reduce the number of errors

MULTIPLE CHOICE QUESTION

45 sec • 5 pts

An action taken to eliminate the causes of a nonconformity helps in the creation of a continual improvement culture.

True

False

Answer explanation

A corrective action aims to correct; it does not promote continual improvement in an organization, nor does it foster such culture

MULTIPLE CHOICE QUESTION

45 sec • 5 pts

Segregation of information security duties is :

Detective and Technical control

Preventive and adminsitrative control

Corrective and managerial control

Answer explanation

By function, the segregation of duties is a preventive control that reduces the opportunities for the unauthorized use or unintentional misuse of the organization’s information. By type, it is an administrative control

MULTIPLE CHOICE QUESTION

45 sec • 5 pts

Consideration of applicable legislation is:

Detective and maangerial control

Corrective and administrative control

Preventive and legal control

Answer explanation

By function, taking the applicable legislation into consideration is a preventive control that prevents breaches in legal obligations related to information security. By type, it is a legal control

MULTIPLE CHOICE QUESTION

45 sec • 5 pts

Why should organizations review the information security policies after the occurrence of significant changes?

To ensure continuing reliability of the information security policy

To ensure continuing suitability, adequacy, and effectiveness of the information security policy

To ensure continuing efficiency, performance, and correctness of the information security policy

Answer explanation

Based on ISO/IEC 27001:2022, control 5.1 the policies for information security should be reviewed at planned intervals or if significant changes occur to ensure their continuing suitability, adequacy, and effectiveness

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

11 questions

ETIKA

Quiz

•

1st Grade

15 questions

Chapter 3 Mixtures Quiz

Quiz

•

1st - 5th Grade

13 questions

TEACHING PROFESSION

Quiz

•

1st - 10th Grade

15 questions

LEA 1 QUIZ #1 IN FINAL

Quiz

•

1st Grade

10 questions

Habilidades Directivas

Quiz

•

1st - 10th Grade

14 questions

G Suite - The Basics

Quiz

•

KG - 12th Grade

10 questions

physical instability Case

Quiz

•

1st Grade

20 questions

MALWARE Y HACKERS

Quiz

•

1st - 5th Grade

Popular Resources on Wayground

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

Identify Iconic Christmas Movie Scenes

Interactive video

•

6th - 10th Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

11 questions

How well do you know your Christmas Characters?

Lesson

•

3rd Grade

14 questions

Christmas Trivia

Quiz

•

5th Grade

20 questions

How the Grinch Stole Christmas

Quiz

•

5th Grade

Discover more resources for Professional Development

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

10 questions

Christmas/Winter

Quiz

•

KG - 2nd Grade

20 questions

Christmas Movies

Quiz

•

1st - 12th Grade

20 questions

How the Grinch Stole Christmas

Quiz

•

1st - 3rd Grade

10 questions

Christmas Characters

Quiz

•

KG - 3rd Grade

10 questions

Exploring Christmas Math Word Problems

Interactive video

•

1st - 5th Grade

16 questions

Christmas 1st grade

Quiz

•

1st Grade

ISO27001 Quizz Section 789 (Day#2C)

15 questions

An action taken to eliminate the cause of a potential nonconformity or other potential undesirable situation is known as:

Preventive actions are actions taken to eliminate the cause of a potential nonconformity or other potential undesirable situation.

What are the activities that should be included in the situation analysis phase of the corrective action process?

Situation analysis phase of the corrective action process comprises of three activities: analysis of the root cause, evaluation of options, and selection of solutions.

What is the correlation between continual improvement and information security errors?

The continual improvement process helps reduce the number of errors

An action taken to eliminate the causes of a nonconformity helps in the creation of a continual improvement culture.

A corrective action aims to correct; it does not promote continual improvement in an organization, nor does it foster such culture

Segregation of information security duties is :

By function, the segregation of duties is a preventive control that reduces the opportunities for the unauthorized use or unintentional misuse of the organization’s information. By type, it is an administrative control

Consideration of applicable legislation is:

By function, taking the applicable legislation into consideration is a preventive control that prevents breaches in legal obligations related to information security. By type, it is a legal control

Why should organizations review the information security policies after the occurrence of significant changes?

Based on ISO/IEC 27001:2022, control 5.1 the policies for information security should be reviewed at planned intervals or if significant changes occur to ensure their continuing suitability, adequacy, and effectiveness

**Which is the main purpose of control 6.1 Screening of ISO/IEC 27001:2022?**

The purpose of control 6.1, as defined by ISO/IEC 27002, is to ensure all personnel are eligible and suitable for the roles for which they are considered.

Who shall have access to documented operating procedures?

Based on ISO/IEC 27001:2022, control 5.37, operating procedures for information processing facilities shall be documented and made available personnel who need them.

**What is the main requirement of control 8.34 Protection of information systems during audit testing of ISO/IEC 27001:2022?**

According to ISO/IEC 27001:2022, control 8.34, audit tests and other assurance activities involving assessment of operational systems shall be planned and agreed between the tester and appropriate management.

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Professional Development