Quiz 6: Information Security Best Practices
10 Questions
55 Views

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to lesson

Podcast

Play an AI-generated podcast conversation about this lesson

Questions and Answers

Which of the following is a guideline document, advising companies on what control measures they should have in place?

  • COBIT
  • ISO 27001
  • ISO 27002 (correct)
  • None of the above
  • Which standard was previously known as BS 7799: Part 2?

  • ISO/IEC 27001 (correct)
  • ISO/IEC 27005
  • ISO/IEC 27002
  • ISO/IEC 38500
  • COBIT is best described as a...

  • Law
  • Regulation
  • Best Practice (correct)
  • International standard
  • COBIT is a product of and is maintained by:

    <p>ISACA</p> Signup and view all the answers

    COBIT and ISO 27002 are:

    <p>Complimentary</p> Signup and view all the answers

    How many Main Security categories does ISO 27002 have?

    <p>34</p> Signup and view all the answers

    Which of the following is a specification document for formal accreditation?

    <p>ISO 27001</p> Signup and view all the answers

    Which is not one of the four publications that form the core of COBIT 2019?

    <p>Information Security Management System</p> Signup and view all the answers

    Which of the following published standards has to do with the Code of Best Practice for information security management?

    <p>ISO 27002</p> Signup and view all the answers

    For a company to become ISO 27001 accredited, it must_________.

    <p>have an established Information Security Management System.</p> Signup and view all the answers

    Study Notes

    ### ITMG302 Quiz 6 Study Notes

    • COBIT is a best practice guideline for information security management.
    • ISACA developed COBIT and continues to maintain the framework.
    • COBIT and ISO 27002 are complimentary frameworks.
    • ISO 27002 is a guide for control measures and best practices for information security management systems.
    • ISO 27002 has 34 main security categories
    • ISO 27001 is a specification for formal accreditation of an information security management system (ISMS)
    • ISO 27001 was previously known as BS 7799: Part 2.
    • The core of the COBIT 2019 framework consists of four publications:
      • Governance and Management Objectives
      • Designing Information and Technology Governance Solutions
      • Implementing and Optimizing an Information and Technology Governance Solution
    • To receive ISO 27001 accreditation, an organization must have and adhere to a formally established ISMS (Information Security Management System).

    Studying That Suits You

    Use AI to generate personalized quizzes and flashcards to suit your learning preferences.

    Quiz Team

    Related Documents

    Description

    This quiz focuses on the key principles and frameworks surrounding information security management, particularly COBIT and ISO 27001/27002. It covers the structure and purpose of these frameworks, highlighting how they complement each other in establishing effective governance and management of IT security.

    More Like This

    COBIT Framework Quiz
    15 questions
    COBIT Framework of IT Audit
    12 questions

    COBIT Framework of IT Audit

    ExceptionalSaxophone1572 avatar
    ExceptionalSaxophone1572
    COBIT Governance and Management
    29 questions
    IT Governance Overview and Frameworks
    21 questions
    Use Quizgecko on...
    Browser
    Browser