Question 1

Data at rest is TYPICALLY vulnerable to which type of security risk? (★)

Options :

A : Decryption

B : Inadequate classification

C : Data breach

D : Loss of integrity

Answer: C

Question 2

Which of the following is an implementation of an administrative control? (★)

Options :

A : Requiring approval before accessing privileged tools

B : Utilizing a turnstile to deter tailgating

C : Installing video cameras to oversee access to a facility

D : Placing a sign to direct suppliers to their entrance

Answer: A

Question 3

In the event of a disaster, what should be the primary objective? (★)

Options :

A : Protection of the production database

B : Application of disaster communication

C : Guarantee the safety of people

D : Guarantee the continuity of critical systems

Answer: C

Question 4

Which of the following options is NOT an access control layer?

Options :

A : Administrative

B : Physical

C : Technical

D : Policy

Answer: D

Question 5

What is the purpose of a risk assessment?

Options :

A : To evaluate the potential impact of threats to the organization

B : To define recovery time objectives for critical systems and data

C : To establish procedures for restoring critical systems and data

D : To identify critical business functions

Answer: A