Question: 1
An information security manager was informed that a planned penetration test could potentially disrupt some services. Which of the following should be the FIRST course of action?
Question: 2
Which of the following should an information security manager do FIRST to address complaints that a newly implemented security control has slowed business operations?
Question: 3
Which of the following is an information security manager's FIRST priority after a high-profile system has been compromised?
Question: 4
The MOST important reason for an information security manager to be involved in the change management process is to ensure that:
Question: 5
Which of the following metrics provides the BEST measurement of the effectiveness of a security awareness program?