EC-COUNCIL 712-50 Actual Free Exam Questions & Community Discussion

During a cyber incident, which of the following non-security personnel will MOST likely be required to assist the incident response team?

Regulatory requirements typically force organizations to implement

Which of the following is an accurate statement regarding capital expenses?

A missing/ineffective security control is identified. Which of the following should be the NEXT step?

Smith, the project manager for a larger multi-location firm, is leading a software project team that has 18 members, 5 of which are assigned to testing. Due to recent recommendations by an organizational quality audit team, the project manager is convinced to add a quality professional to lead to test team at additional cost to the project.
The project manager is aware of the importance of communication for the success of the project and takes the step of introducing additional communication channels, making it more complex, in order to assure quality levels of the project. What will be the first project management document that Smith should change in order to accommodate additional communication channels?

Which of the following reports should you as an IT auditor use to check on compliance with a service level agreement's requirement for uptime?

An employee successfully avoids becoming a victim of a sophisticated spear phishing attack due to knowledge gained through the corporate information security awareness program. What type of control has been effectively utilized?

Which one of the following BEST describes which member of the management team is accountable for the day-to-day operation of the information security program?

Your company has limited resources to spend on security initiatives. The Chief Financial Officer asks you to prioritize the protection of information resources based on their value to the company. It is essential that you be able to communicate in language that your fellow executives will understand. You should:

When selecting a security solution with reoccurring maintenance costs after the first year, the CISO should:
(choose the BEST answer)

What principle is used when a CISO evaluates controls to ensure they satisfy the organization's operational needs?

A security officer wants to implement a vulnerability scanning program. The officer is uncertain of the state of vulnerability resiliency within the organization's large IT infrastructure. What would be the BEST approach to minimize scan data output while retaining a realistic view of system vulnerability?

Devising controls for information security is a balance between?