A.  

Reputation damage.

B.  

Monetary theft.

C.  

Service disruption.

D.  

Processing errors.

A.  

Digital evidence must not be altered unless absolutely necessary.

B.  

Acquiring digital evidence cart only be carried on digital devices which have been turned off.

C.  

Digital evidence can only be handled by a member of law enforcement.

D.  

Digital devices must be forensically "clean" before investigation.

A.  

Professional qualification bodies demand CPD.

B.  

Information Security changes constantly and at speed.

C.  

IT certifications require CPD and Security needs to remain credible.

D.  

CPD is a prerequisite of any Chartered Institution qualification.

A.  

Threat trees.

B.  

STRIDE charts.

C.  

Misuse case diagrams.

D.  

DREAD diagrams.

A.  

Appointment of a Chief Information Security Officer (CISO).

B.  

Purchasing all senior executives personal firewalls.

C.  

Adopting an organisation wide "clear desk" policy.

D.  

Developing a security awareness e-learning course.

A.  

Information Lifecycle Management.

B.  

Information Quality Management.

C.  

Total Quality Management.

D.  

Business Continuity Management.

A.  

BSI.

B.  

IETF.

C.  

OWASP.

D.  

ISF.

A.  

A penetration test seeks to actively exploit any known or discovered vulnerabilities.

B.  

A penetration test looks for known vulnerabilities and reports them without further action.

C.  

A penetration test is always an automated process - a vulnerability scan never is.

D.  

A penetration test never uses common tools such as Nrnap, Nessus and Metasploit.

A.  

Arson.

B.  

Electromagnetic pulse

C.  

Tsunami.

D.  

Lightning Strike

A.  

Remove power from all digital devices at the scene to stop the data changing.

B.  

Photograph all evidence and triage to determine whether live data capture is necessary.

C.  

Remove all digital evidence from the scene to prevent unintentional damage.

D.  

Don't touch any evidence until a senior digital investigator arrives.

A.  

The store and forward nature of SMS means it is considered a 'fire and forget service'.

B.  

SMS technology was never intended to be used to transmit high risk content such as One-time payment codes.

C.  

The vast majority of mobile phones globally support the SMS protocol inexpensively.

D.  

There are only two mobile phone platforms - Android and iOS - reducing the number of target environments.

A.  

VPN.

B.  

IDS.

C.  

MDM.

D.  

SIEM.

A.  

PCI DSS.

B.  

RFC1918.

C.  

IS015489.

D.  

ISO/IEC 27002.

A.  

Spear Phishing.

B.  

Shoulder Surfing.

C.  

Dumpster Diving.

D.  

Tailgating.

A.  

Generating and distributing spam messages.

B.  

Conducting DDOS attacks.

C.  

Scanning for system & application vulnerabilities.

D.  

Undertaking vishing attacks

A.  

Task based access control.

B.  

Role based access control.

C.  

Rule based access control.

D.  

Mandatory access control.

A.  

Visualisation can communicate large amounts of data in a manner that is a relatively simple way for people to analyse and interpret.

B.  

Visualisation provides structured tables and lists that can be analysed using common tools such as MS Excel.

C.  

Visualisation offers unstructured data that records the entirety of the data in a flat, filterable ftle format.

D.  

Visualisation software operates in a way that is rarely and thereby it is less prone to malware infection.

A.  

Enterprise Wireless Access Point.

B.  

Windows Desktop Systems.

C.  

Linux Web Server Appliances.

D.  

Enterprise Stateful Firewall.

A.  

1, 2 and 4.

B.  

1, 2 and 3.

C.  

1, 2 and 5.

D.  

3, 4 and 5.

A.  

A subjective assessment of risk occurrence likelihood against the potential impact that determines the overall severity of a risk.

B.  

The use of verifiable data to predict the risk occurrence likelihood and the potential impact so as to determine the overall severity of a risk.

C.  

The use of Monte-Carlo Analysis and Layers of Protection Analysis (LOPA) to determine the overall severity of a risk.

D.  

The use of Risk Tolerance and Risk Appetite values to determine the overall severity of a risk

A.  

Code of Ethics.

B.  

Security Culture.

C.  

System Operating Procedures.

D.  

Security Policy Framework.

A.  

Loading bays are intrinsically vulnerable, so minimising the people traffic makes securing the areas easier and more effective.

B.  

Loading bays are often dirty places, and staff could find their clothing damaged or made less appropriate for the office.

C.  

Most countries have specific legislation covering loading bays and breaching this could impact on insurance status.

D.  

Staff should always enter a facility via a dedicated entrance to ensure smooth access and egress.

A.  

Advanced Persistent Threat.

B.  

Trojan.

C.  

Stealthware.

D.  

Zero-day.

A.  

TOGAF

B.  

SABSA

C.  

PCI DSS.

D.  

OWASP.

A.  

Within DevSecOps security is introduced at the end of development immediately prior to deployment.

B.  

DevSecOps focuses solely on iterative development cycles.

C.  

DevSecOps includes security on the same level as continuous integration and delivery.

D.  

DevOps mandates that security is integrated at the beginning of the development lifecycle.

A.  

Recorder.

B.  

Desk secretary.

C.  

Scribe.

D.  

Scrum Master.

A.  

CERT

B.  

SIEM.

C.  

CISM.

D.  

DDoS.

A.  

Change default system passwords.

B.  

Fully encrypt the hard disk.

C.  

Apply hardening to all applications.

D.  

Patch the OS to the latest version

A.  

Use of HTTP based Apache web server.

B.  

Unpatched Windows operating system.

C.  

Confidential data stored in a fire safe.

D.  

Use of an unlocked filing cabinet.

A.  

To reduce the chance of collusion between security staff and those being monitored.

B.  

To give experience to monitoring staff across a range of activities for training purposes.

C.  

Health and Safety regulations demand that staff are rotated to prevent posture and vision related harm.

D.  

The human attention span during intense monitoring sessions is about 20 minutes.