Dans cette époque glorieuse, l'industrie IT est devenue bien intense. C'est raisonnable que le test GIAC G2700 soit un des tests plus populaires. Il y a de plus en plus de gens qui veulent participer ce test, et la réussite de test GIAC G2700 est le rêve pour les professionnels ambitieux.
Un bon choix de l'outil à se former est le point essentiel à passer le test GIAC G2700, et les documentations à propos de rechercher le test GIAC G2700 est toujours une part plus importante pendant la préparation de test Certification. Les Q&As offertes par les experts de Pass4Test sont presque même que les tests réels. Pass4Test est un site web particulièrement en apportant les facilités aux gens qui veulent passer le test Certification.
Les experts de Pass4Test ont fait sortir un nouveau guide d'étude de Certification GIAC G2700, avec ce guide d'étude, réussir ce test a devenu une chose pas difficile. Pass4Test vous permet à réussir 100% le test GIAC G2700 à la première fois. Les questions et réponses vont apparaître dans le test réel. Pass4Test peut vous donner une Q&A plus complète une fois que vous choisissez nous. D'ailleurs, la mise à jour gratuite pendant un an est aussi disponible pour vous.
La partie plus nouvelle de test Certification GIAC G2700 est disponible à télécharger gratuitement dans le site de Pass4Test. Les exercices de Pass4Test sont bien proches de test réel GIAC G2700. En comparaison les Q&As dans les autres sites, vous trouverez que les nôtres sont beaucoup plus complets. Les Q&As de Pass4Test sont tout recherchés par les experts de Pass4Test, y compris le test simulation.
Pass4Test vous offre un choix meilleur pour faire votre préparation de test GIAC G2700 plus éfficace. Si vous voulez réussir le test plus tôt, il ne faut que ajouter la Q&A de GIAC G2700 à votre cahier. Pass4Test serait votre guide pendant la préparation et vous permet à réussir le test GIAC G2700 sans aucun doute. Vous pouvez obtenir le Certificat comme vous voulez.
C'est pas facile à passer le test Certification GIAC G2700, choisir une bonne formation est le premier bas de réussir, donc choisir une bonne resource des informations de test GIAC G2700 est l'assurance du succès. Pass4Test est une assurance comme ça. Une fois que vous choisissez le test GIAC G2700, vous allez passer le test GIAC G2700 avec succès, de plus, un an de service en ligne après vendre est gratuit pour vous.
Vous n'avez besoin que de faire les exercices à propos du test GIAC G2700 offertes par Pass4Test, vous pouvez réussir le test sans aucune doute. Et ensuite, vous aurez plus de chances de promouvoir avec le Certificat. Si vous ajoutez le produit au panier, nous vous offrirons le service 24h en ligne.
Code d'Examen: G2700
Nom d'Examen: GIAC (GIAC Certified ISO-2700 Specialist Practice Test)
Questions et réponses: 453 Q&As
G2700 Démo gratuit à télécharger: http://www.pass4test.fr/G2700.html
NO.1 Which of the following is the designing phase of the ISMS?
A. Check
B. Plan
C. Act
D. Do
Answer: B
GIAC examen G2700 G2700 examen
NO.2 A project plan includes the Work Breakdown Structure (WBS) and cost estimates. Which of the following
are the parts of a project plan?
Each correct answer represents a complete solution. Choose all that apply.
A. Risk identification
B. Security Threat
C. Project schedule
D. Team members list
E. Risk analysis
Answer: A,C,D,E
GIAC certification G2700 certification G2700 G2700 G2700 examen
NO.3 Mark works as an Office Assistant for uCertify Inc. He is responsible for managing office documents.
Today, after opening a word document, Mark noticed that the other opened documents are closed
suddenly. After reopening those documents, Mark found some modifications in the documents. He
contacted his Security Administrator and came to know that there is a virus program installed in the
operating system. Which of the following types of virus has attacked the operating system?
A. Data file
B. Macro
C. Polymorphic
D. Boot sector
Answer: A
GIAC G2700 examen certification G2700 certification G2700
NO.4 Single Loss Expectancy (SLE) represents an organization's loss from a single threat. Which of the
following formulas best describes the Single Loss Expectancy (SLE)?
A. SLE = Asset Value (AV) * Exposure Factor (EF)
B. SLE = Annualized Loss Expectancy (ALE) * Exposure Factor (EF)
C. SLE = Annualized Loss Expectancy (ALE) * Annualized Rate of Occurrence (ARO)
D. SLE = Asset Value (AV) * Annualized Rate of Occurrence (ARO)
Answer: A
GIAC G2700 examen certification G2700 certification G2700 G2700
NO.5 The disciplined and structured process, that integrates information security and risk management
activities into the System Development Life Cycle, is provided by the risk management framework.
Choose the appropriate RMF steps.
A.
Answer: A
GIAC examen G2700 certification G2700 G2700
NO.6 Which of the following is used for secure financial transactions over the Internet?
A. ATM
B. VPN
C. SSL
D. SET
Answer: D
GIAC certification G2700 G2700 examen certification G2700
NO.7 Which of the following phases of the PDCA model is the monitoring and controlling phase of the
Information Security Management System (ISMS)?
A. Check
B. Plan
C. Do
D. Act
Answer: A
certification GIAC certification G2700 G2700 G2700
NO.8 Which of the following is a fast-emerging global sector that advises individuals and corporations on
how to apply the highest ethical standards to every aspect of their business?
A. Service Capacity Management (SCM)
B. Business Capacity Management (BCM)
C. Resource Capacity Management (RCM)
D. Integrity Management Consulting
Answer: D
GIAC G2700 examen G2700 certification G2700
NO.9 Mark works as a Network Security Administrator for uCertify Inc. An employee of the organization
comes to Mark and tells him that a few months ago, the employee had filled an online bank form due to
some account related work. Today, when again visiting the site, the employee finds that some of his
personal information is still being displayed in the webpage. Which of the following types of cookies
should be disabled by Mark to resolve the issue?
A. Session
B. Temporary
C. Secure
D. Persistent
Answer: D
GIAC examen G2700 G2700 G2700 G2700
NO.10 Which of the following statements are true about security risks?
Each correct answer represents a complete solution. Choose three.
A. These are considered as an indicator of threats coupled with vulnerability.
B. These can be removed completely by taking proper actions.
C. These can be mitigated by reviewing and taking responsible actions based on possible risks.
D. These can be analyzed and measured by the risk analysis process.
Answer: A,C,D
certification GIAC G2700 G2700 G2700
NO.11 CORRECT TEXT
Fill in the blank with an appropriate phrase.
_________accord describes the minimum regulatory capital to be allocated by each bank based on its
risk profile of assets.
Answer: Basel ll
GIAC certification G2700 G2700 G2700
NO.12 Which of the following are the uses of cryptography as defined in a policy document?
Each correct answer represents a complete solution. Choose all that apply.
A. Backup
B. Control of keys
C. Applications supporting cryptography
D. Recovery
Answer: A,B,C
certification GIAC G2700 G2700
NO.13 Mark works as a System Administrator for uCertify Inc. He is responsible for securing the network of
the organization. He is configuring some of the advanced features of the Windows firewall so that he can
block the client machine from responding to pings. Which of the following advanced setting types should
Mark change for accomplishing the task?
A. ICMP
B. SNMP
C. UDP
D. SMTP
Answer: A
GIAC G2700 examen G2700 certification G2700 G2700 G2700
NO.14 Which of the following administrative policy controls is usually associated with government
classifications of materials and the clearances of individuals to access those materials?
A. Separation of Duties
B. Due Care
C. Acceptable Use
D. Need to Know
Answer: D
GIAC G2700 certification G2700 G2700
NO.15 You work as a Security Administrator for uCertify Inc. You have been assigned the task to verify the
identity of the employees recruited in your organization. Which of the following components of security
deals with an employee's verification in the organization?
A. Network Security
B. Physical security
C. Access security
D. Human resource security
Answer: D
GIAC examen G2700 G2700 G2700 G2700
NO.16 Which of the following controls are administrative in nature?
A. Directive controls
B. Recovery controls
C. Preventive controls
D. Detective controls
Answer: A
GIAC G2700 G2700 certification G2700
NO.17 You work as the Human Resource Manager for uCertify Inc. You need to recruit some candidates for
the marketing department of the organization. Which of the following should be defined to the new
employees of the organization before they have joined?
Each correct answer represents a complete solution. Choose all that apply.
A. Marketing tips and tricks
B. Organization's network topology
C. Job roles
D. Organization's security policy
Answer: C,D
GIAC G2700 G2700 G2700 G2700
NO.18 You work as a Network Administrator for uCertify Inc. The organization has constructed a cafeteria for
their employees and you are responsible to select the access control method for the cafeteria.
There are a few conditions for giving access to the employees, which are as follows:
1. Top level management can get access any time.
2. Staff members can get access during the specified hours.
3. Guests can get access only in working hours.
Which of the following access control methods is suitable to accomplish the task?
A. Discretionary access control
B. Lattice-based access control
C. Attribute-based access control
D. Rule-based access control
Answer: D
GIAC examen G2700 examen certification G2700 G2700
NO.19 Mark works as a Network Security Administrator for uCertify Inc. He has been assigned the task of
installing a MySQL server. Mark wants to monitor only the data that is directed to or originating from the
server and he also wants to monitor running processes, file system access and integrity, and user logins
for identifying malicious activities. Which of the following intrusion detection techniques will Mark use to
accomplish the task?
A. Network-based IDS
B. Signature-based IDS
C. Anomaly-based IDS
D. Host-based IDS
Answer: D
GIAC examen G2700 G2700
NO.20 CORRECT TEXT
Fill in the blank with the appropriate term.
________ is a powerful and low-interaction open source honeypot.
Answer: Honeyd
GIAC G2700 examen certification G2700 certification G2700
NO.21 Which of the following are the basics of Business Continuity Management?
Each correct answer represents a complete solution. Choose all that apply.
A. Implementation of a risk assessment technique to identify the causes and consequences of failures
B. Regular checking of business continuity plans
C. Identification of authentication techniques according to the requirements
D. Identification of human resources according to the requirements
Answer: A,B,D
GIAC G2700 G2700 G2700 examen G2700 G2700
NO.22 Which of the following should be considered while calculating the costs of the outage?
Each correct answer represents a complete solution. Choose all that apply.
A. Sales aspect of the business
B. Cost of low productivity
C. Innovations in electronic funds transfer
D. Cost of lost income from missed sales
Answer: B,D
GIAC G2700 examen G2700 G2700
NO.23 You work as an Information Security Manager for uCertify Inc. You need to make the
documentation on change management. What are the advantages of change management?
Each correct answer represents a complete solution. Choose all that apply.
A. Improved productivity of users due to more stable and better IT services
B. Improved IT personnel productivity, since there is a reduced number of urgent changes and a back-out
of erroneous changes
C. Improved adverse impact of changes on the quality of IT services
D. Increased ability to absorb frequent changes without making an unstable IT environment
Answer: A,B,D
GIAC G2700 G2700 examen G2700 certification G2700
NO.24 Which of the following are the exceptions of the Data Protection Act?
Each correct answer represents a complete solution. Choose all that apply.
A. Section 36 - Domestic purposes
B. Section 28 - National security
C. Section 55 - Unlawful obtaining of personal data
D. Section 29 - Crime and taxation
Answer: A,B,D
certification GIAC G2700 G2700
NO.25 Rick works as a Computer Forensic Investigator for BlueWells Inc. He has been informed that some
confidential information is being leaked out by an employee of the company. Rick suspects that someone
is sending the information through email. He checks the emails sent by some employees to other
networks. Rick finds out that Sam, an employee of the Sales department, is continuously sending text files
that contain special symbols, graphics, and signs. Rick suspects that Sam is using the Steganography
technique to send data in a disguised form. Which of the following techniques is Sam using?
Each correct answer represents a part of the solution. Choose all that apply.
A. Linguistic steganography
B. Text Semagrams
C. Technical steganography
D. Perceptual masking
Answer: A,B
GIAC examen G2700 examen certification G2700 G2700 G2700
NO.26 Qualitative risk analysis includes judgment, intuition, and experience. Which of the following methods
are used to perform qualitative risk analysis?
Each correct answer represents a complete solution. Choose all that apply.
A. Egress filtering
B. Checklists
C. Delphi technique
D. Brainstorming
Answer: B,C,D
GIAC G2700 examen G2700 G2700
NO.27 You work as an Information Security Manager for uCertify Inc. You are working on the
documentation of control A.10.1.1. What is the purpose of control A.10.1.1.?
A. It is concerned with the documentation of the human resource security to make recruitments clear to
the organization.
B. It is concerned with the documentation of the supply chain management.
C. It is concerned with the documentation of operating procedures to ensure the correct and secure use of
information processing facilities.
D. It is concerned with the documentation of the disaster recovery management to ensure proper backup
technologies.
Answer: C
GIAC examen G2700 G2700
NO.28 Which of the following is a Restrict Anonymous registry value that allows users with explicit
anonymous permissions?
A. 2
B. 3
C. 1
D. 0
Answer: A
certification GIAC G2700 G2700 examen
NO.29 You work as an Information Security Manager for uCertify Inc. You are working on communication and
organization management. You need to create the documentation on change management.
Which of the following are the main objectives of change management?
Each correct answer represents a complete solution. Choose all that apply.
A. Minimal disruption of services
B. Reduction of inventory in accordance with revenue
C. Economic utilization of resources involved in the change
D. Reduction in back-out activities
Answer: A,C,D
certification GIAC certification G2700 G2700 certification G2700 G2700
NO.30 You work as an Information Security Officer for uCertify Inc. You need to create an asset management
plan differentiating fixed assets from inventory items. How will you differentiate assets from inventory
items?
A. Inventory items are sold.
B. Assets are temporary usually.
C. Inventory items are permanent.
D. Assets cannot be used.
Answer: A
GIAC examen G2700 G2700 examen G2700 G2700 G2700
Pass4Test est un fournisseur professionnel des documentations à propos du test Certification IT, avec lequel vous pouvez améliorer le future de votre carrière. Vous trouverez que nos Q&As seraient persuadantes d'après d'avoir essayer nos démos gratuits. Le démo de GIAC G2700 (même que les autres démos) est gratuit à télécharger. Vous n'aurez pas aucune hésitation après travailler avec notre démo.
没有评论:
发表评论