GIAC G2700 Actual Free Exam Questions & Community Discussion

Mark is the project manager of the HAR Project. The project is scheduled to last for eighteen months and six months already passed. Management asks Mark that how often the project team is participating in the risk reassessment of this project. What should Mark tell management if he is following the best practices for risk management?

Which of the following pillars of Basel II is concerned with maintenance of regulatory capital intended for three major components of risk that a bank faces, which are credit risk, operational risk, and market risk?

You work as a Security Manager for uCertify Inc. You have been assigned the task to implement clustering for Web servers. What are the advantages of clustering?
Each correct answer represents a complete solution. Choose all that apply.

For which of the following can risk analysis be used?

In which of the following social engineering attacks does an attacker first damage any part of the target's equipment and then advertise himself as an authorized person who can help fix the problem.

Which of the following are the major tasks of risk management?
Each correct answer represents a complete solution. Choose two.

Which of the following are the purposes of security awareness, training, and education?
Each correct answer represents a complete solution. Choose all that apply.

Mark works as a Data Center Manager for TechNet Inc. A few days ago, he published a blog about himself during his working hours. However, as per the organization's policy, any member of the organization cannot use any resources of the organization for his personal use. Since Mark has violated the policy, he should go to an internal committee and be informed of his rights in the matter. Which of the following practices is being implemented?

Which of the following are the things included by sensitive system isolation?
Each correct answer represents a complete solution. Choose all that apply.

You work as an Information Security Manager for uCertify Inc. The company is releasing the documentation about a software product. You have been assigned the task to include information about the company in a legal disclaimer before releasing the documentation. What is the purpose of using the legal disclaimer?

Which of the following are the basics of Business Continuity Management?
Each correct answer represents a complete solution. Choose all that apply.

Which of the following defines the interdependent relationships among the internal support groups of an organization working to support a Service Level Agreement?

You are setting up file permissions on a Windows server. Different users have different access needs. What should be your guiding principal in assigning file permissions?

Qualitative risk analysis includes judgment, intuition, and experience. Which of the following methods are used to perform qualitative risk analysis?
Each correct answer represents a complete solution. Choose all that apply.