ITSMA - L3 ISMS Concepts

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to Lesson

Podcast

Play an AI-generated podcast conversation about this lesson
Download our mobile app to listen on the go
Get App

Questions and Answers

What is an information asset?

  • A physical asset such as a computer or server
  • A digital asset such as a website or database
  • Any asset that has value to an organization and needs to be protected (correct)
  • A financial asset such as stocks or bonds

What is an Information Security Management System (ISMS)?

  • A set of policies and procedures for managing an organization's physical security
  • A set of policies and procedures for systematically managing an organization's sensitive data (correct)
  • A set of policies and procedures for managing an organization's financial security
  • A set of policies and procedures for managing an organization's human resources

What are the three main characteristics of information security?

  • Confidentiality, Integrity, and Availability (correct)
  • Confidentiality, Authentication, and Non-repudiation
  • Confidentiality, Integrity, and Authorization
  • Confidentiality, Integrity, and Accountability

What is the purpose of the ISO 27001 standard?

<p>To provide a specification for implementing and operating an ISMS (B)</p> Signup and view all the answers

What is the Plan-Do-Check-Act model?

<p>A model for continuous improvement of an ISMS (C)</p> Signup and view all the answers

What are the 14 domains of ISO 27001?

<p>Information security policies, organization of information security, human resource security, asset management, access control, cryptography, physical and environmental security, operations security, communications security, system acquisition, development and maintenance, supplier relationships, information security incident management, information security aspects of business continuity management, compliance (A)</p> Signup and view all the answers

What are the benefits of implementing an ISMS?

<p>All of the above (D)</p> Signup and view all the answers

What is the purpose of a business security policy and plans?

<p>All of the above (A)</p> Signup and view all the answers

What is a important characteristic of a good ISMS?

<p>Compliance with legal and regulatory requirements (A)</p> Signup and view all the answers

What is the purpose of selecting controls in the process of developing an ISMS?

<p>To identify the specific security measures that will be implemented to address the identified risks (C)</p> Signup and view all the answers

Flashcards are hidden until you start studying

More Like This

Use Quizgecko on...
Browser
Open
Browser
Browser