Pre-Summer Sale 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: exams65

ExamsBrite Dumps

ISO/IEC 27002 Foundation Exam Question and Answers

ISO/IEC 27002 Foundation Exam

Last Update May 30, 2026
Total Questions : 40

We are offering FREE ISO-IEC-27002-Foundation PECB exam questions. All you do is to just go and sign up. Give your details, prepare ISO-IEC-27002-Foundation free exam questions and then go for complete pool of ISO/IEC 27002 Foundation Exam test questions that will help you more.

ISO-IEC-27002-Foundation pdf

ISO-IEC-27002-Foundation PDF

$36.75  $104.99
 Add to Cart
ISO-IEC-27002-Foundation Engine

ISO-IEC-27002-Foundation Testing Engine

$43.75  $124.99
 Add to Cart
ISO-IEC-27002-Foundation PDF + Engine

ISO-IEC-27002-Foundation PDF + Testing Engine

$57.75  $164.99
 Add to Cart
Questions 1

Which of the following controls aims to protect the production environment and data?

Options:

A.  

Control 5.13 Labelling of information

B.  

Control 8.31 Separation of development, testing and operational environments

C.  

Control 6.6 Confidentiality or non-disclosure agreements

Discussion 0
Questions 2

Which of the following is an example of an organizational asset in cyberspace?

Options:

A.  

Medical data

B.  

Digital customer identity

C.  

Intellectual property

Discussion 0
Questions 3

When can clock synchronization be difficult?

Options:

A.  

When using only on-premises services

B.  

When using multiple cloud services

C.  

Both A and B

Discussion 0
Questions 4

According to Control 5.1 Policies for information security, regarding which of the following, among others, should an information security policy contain statements?

Options:

A.  

Regarding the procedures for recovering from a data breach

B.  

Regarding the procedures for handling exemptions and exceptions

C.  

Regarding the procedures for using automated information systems

Discussion 0
Questions 5

In which group of controls does Control 5.7 Threat intelligence belong?

Options:

A.  

Technological

B.  

People

C.  

Organizational

Discussion 0
Questions 6

Why should an organization integrate information security into project management?

Options:

A.  

To ensure the effective application of ISO/IEC 27001 principles related to projects and deliverables

B.  

To ensure information security audits on the project and deliverables are regularly conducted

C.  

To ensure information security risks related to projects and deliverables are effectively addressed

Discussion 0
Questions 7

Which statement below describes the principle of confidentiality?

Options:

A.  

Property that information is not made available or disclosed to unauthorized individuals, entities, or processes

B.  

Property of accuracy and completeness

C.  

Property of being accessible and usable upon demand by an authorized entity

Discussion 0
Questions 8

What does information security determine?

Options:

A.  

What information needs to be protected and why it should be protected

B.  

How to protect information and what to protect it from

C.  

Both A and B

Discussion 0
Questions 9

What is the main purpose of Control 5.12 Classification of information of ISO/IEC 27002?

Options:

A.  

To ensure identification and understanding of protection needs of information based on its importance

B.  

To facilitate the communication of classification of information and support automation of information processing and management

C.  

To ensure authorized access and prevent unauthorized access to information

Discussion 0
Questions 10

An organization does NOT authenticate the identity of persons that enter the server room, so unauthorized persons can easily gain access to the server. Which control of ISO/IEC 27002 should the organization implement to solve this problem?

Options:

A.  

Control 8.6 Capacity management

B.  

Control 7.2 Physical entry

C.  

Control 8.4 Access to source code

Discussion 0
Questions 11

Which of the following controls aims to ensure the integrity of operational systems and prevent exploitation of technical vulnerabilities?

Options:

A.  

Control 8.19 Installation of software on operational systems

B.  

Control 8.15 Logging

C.  

Control 8.17 Clock synchronization

Discussion 0
Questions 12

According to Control 5.27 Learning from information security incidents, how can organizations use the information gained from the evaluation of information security incidents?

Options:

A.  

To enhance user awareness and training

B.  

Both A and C

C.  

To enhance the incident management plan

Discussion 0