2023 Latest 100% Exam Passing Ratio – ISFS Dumps PDF [Q40-Q59]

Q40. Logging in to a computer system is an access-granting process consisting of three steps: identification, authentication and authorization. What occurs during the first step of this process: identification?

Q41. Your organization has an office with space for 25 workstations. These workstations are all fully equipped and in use. Due to a reorganization 10 extra workstations are added, 5 of which are used for a call centre 24 hours per day. Five workstations must always be available. What physical security measures must be taken in order to ensure this?

Q42. A company moves into a new building. A few weeks after the move, a visitor appears unannounced in the office of the director. An investigation shows that visitors passes grant the same access as the passes of the companys staff. Which kind of security measure could have prevented this?

Q43. What is a risk analysis used for?

Q44. Which measure assures that valuable information is not left out available for the taking?

Q45. What action is an unintentional human threat?

Q46. Which of the following measures is a corrective measure?

Q47. You work in the office of a large company. You receive a call from a person claiming to be from the Helpdesk.
He asks you for your password. What kind of threat is this?

Q48. You are a consultant and are regularly hired by the Ministry of Defense to perform analysis. Since the assignments are irregular, you outsource the administration of your business to temporary workers. You don’t want the temporary workers to have access to your reports. Which reliability aspect of the information in your reports must you protect?

Q49. You apply for a position in another company and get the job. Along with your contract, you are asked to sign a code of conduct. What is a code of conduct?

Q50. Some threats are caused directly by people, others have a natural cause. What is an example of an intentional human threat?

Q51. What action is an unintentional human threat?

Q52. You are a consultant and are regularly hired by the Ministry of Defense to perform analysis.
Since the assignments are irregular, you outsource the administration of your business to temporary workers.
You don’t want the temporary workers to have access to your reports. Which reliability aspect of the information in your reports must you protect?

Q53. Which of the following measures is a preventive measure?

Q54. You read in the newspapers that the ex-employee of a large company systematically deleted files out of revenge on his manager. Recovering these files caused great losses in time and money. What is this kind of threat called?

Q55. Midwest Insurance controls access to its offices with a passkey system. We call this a preventive measure. What are some other measures?

Q56. You are the first to arrive at work in the morning and notice that the CD ROM on which you saved contracts yesterday has disappeared. You were the last to leave yesterday. When should you report this information security incident?

Q57. An airline company employee notices that she has access to one of the company’s applications that she has not used before. Is this an information security incident?

Q58. Your company is in the news as a result of an unfortunate action by one of your employees. The phones are ringing off the hook with customers wanting to cancel their contracts. What do we call this type of damage?

Q59. The Information Security Manager (ISM) at Smith Consultants Inc. introduces the following measures to assure information security:
-The security requirements for the network are specified.
-A test environment is set up for the purpose of testing reports coming from the database.
-The various employee functions are assigned corresponding access rights.
–
RFID access passes are introduced for the building. Which one of these measures is not a technical measure?