ISO-IEC-27001 Lead Auditor V2

The following are definitions of Information, except:A . accurate and timely dataB . specific and organized data for a purposeC . mature and measurable dataD . can lead to understanding and decrease in uncertaintyView AnswerAnswer: C Explanation: The definition of information that is not correct is C: mature and measurable...

Information or data that are classified as ______ do not require labeling.A . PublicB . InternalC . ConfidentialD . Highly ConfidentialView AnswerAnswer: A Explanation: Information or data that are classified as public do not require labeling. Public information or data are those that are intended for general disclosure and have...

Which two of the following actions are the individual(s) managing the audit programme responsible for?A . Determining the resources necessary for the audit programmeB . Communicating with the auditee during the auditC . Determining the legal requirements applicable to each auditD . Keping informed the accreditation body on the progress...

You are an experienced ISMS auditor, currently providing support to an ISMS auditor in training who is carrying out her first initial certification audit. She asks you what she should be verifying when auditing an organisation's Information Security objectives. You ask her what she has included in her audit checklist...

Which is not a requirement of HR prior to hiring?A . Undergo background verificationB . Applicant must complete pre-employment documentation requirementsC . Must undergo Awareness training on information security.D . Must successfully pass Background InvestigationView AnswerAnswer: C Explanation: According to ISO/IEC 27001:2022, clause 7.2.2, the organization shall ensure that all...

Select two options that describe an advantage of using a checklist.A . Using the same checklist for every audit without reviewB . Restricting interviews to nominated partiesC . Ensuring relevant audit trails are followedD . Ensuring the audit plan is implementedE . Reducing audit durationF . Not varying from the...

DRAG DROP Select the words that best complete the sentence: To complete the sentence with the word(s) click on the blank section you want to complete so that it is highlighted in red, and then click on the application text from the options below. Alternatively, you may drag and drop...

A property of Information that has the ability to prove occurrence of a claimed event.A . Electronic chain lettersB . IntegrityC . AvailabilityD . AccessibilityView AnswerAnswer: B Explanation: A property of information that has the ability to prove occurrence of a claimed event is integrity. Integrity is one of the...

DRAG DROP Select the words that best complete the sentence: "The purpose of maintaining regulatory compliance in a management system is to. To complete the sentence with the best word(s), click on the blank section you want to complete so that it is highlighted in red, and then click on...

You are an experienced audit team leader guiding an auditor in training, Your team is currently conducting a third-party surveillance audit of an organisation that stores data on behalf of external clients. The auditor in training has been tasked with reviewing the TECHNOLOGICAL controls listed in the Statement of Applicability...