Recent Lessons

Show all results for ""

Feature Overview

Ace your exams with our all-in-one platform for creating and sharing quizzes and tests.

Quizzes

Create quizzes and tests automatically from your content using AI.

Flashcards

Automatically turn your notes into digital flashcards.

Share, Export & Embed

Share with classmates or export to Excel and your learning management system.

Stats & Reporting

Auto-grading quizzes and tests with detailed stats and reports.

Mobile Apps

The smarter way to study – wherever you are.

Pricing

Search...

Quiz 6: Information Security Best Practices

10 Questions

48 Views

Quiz 6: Information Security Best Practices

Created by

@ChasteFriendship

Podcast Beta

Play an AI-generated podcast conversation about this lesson

Questions and Answers

Which of the following is a guideline document, advising companies on what control measures they should have in place?

COBIT

ISO 27001

ISO 27002 (correct)

None of the above

Which standard was previously known as BS 7799: Part 2?

ISO/IEC 27001 (correct)

ISO/IEC 27005

ISO/IEC 27002

ISO/IEC 38500

COBIT is best described as a...

Law

Regulation

Best Practice (correct)

International standard

COBIT is a product of and is maintained by:

ISACA Signup and view all the answers

COBIT and ISO 27002 are:

Complimentary Signup and view all the answers

How many Main Security categories does ISO 27002 have?

34 Signup and view all the answers

Which of the following is a specification document for formal accreditation?

ISO 27001 Signup and view all the answers

Which is not one of the four publications that form the core of COBIT 2019?

Information Security Management System Signup and view all the answers

Which of the following published standards has to do with the Code of Best Practice for information security management?

ISO 27002 Signup and view all the answers

For a company to become ISO 27001 accredited, it must_________.

have an established Information Security Management System. Signup and view all the answers

Study Notes

### ITMG302 Quiz 6 Study Notes

COBIT is a best practice guideline for information security management.
ISACA developed COBIT and continues to maintain the framework.
COBIT and ISO 27002 are complimentary frameworks.
ISO 27002 is a guide for control measures and best practices for information security management systems.
ISO 27002 has 34 main security categories
ISO 27001 is a specification for formal accreditation of an information security management system (ISMS)
ISO 27001 was previously known as BS 7799: Part 2.
The core of the COBIT 2019 framework consists of four publications:
- Governance and Management Objectives
- Designing Information and Technology Governance Solutions
- Implementing and Optimizing an Information and Technology Governance Solution
To receive ISO 27001 accreditation, an organization must have and adhere to a formally established ISMS (Information Security Management System).

Studying That Suits You

Use AI to generate personalized quizzes and flashcards to suit your learning preferences.

Description

This quiz focuses on the key principles and frameworks surrounding information security management, particularly COBIT and ISO 27001/27002. It covers the structure and purpose of these frameworks, highlighting how they complement each other in establishing effective governance and management of IT security.