ISO 27001 Lead Implementer Practice Exam

ISO 27001 Lead Implementer is a professional certification course for specializing in information security management from ISACA offered by Infosavvy. Being protected is the need of every organization, relying on information systems to support all of their critical business processes.

li-infosavvy

Most organisations now rely on information systems to support all of their critical business processes. This dependency has led to an evolving risk from electronic security threats such as hacking, data loss, breach of confidentiality and even terrorism. These increasingly sophisticated attacks can come from individuals, private organisations or even clandestine foreign intelligence agencies. When these attacks result in loss of information, theft of confidential data or damage to critical systems and documents, organisation can suffer severe consequences including financial repercussions and reputation risk.

Who should attend

  • Professionals who have a role in implementation & auditing ISMS.
  • Information Security Management Representatives & core group members responsible for establishing, implementing, maintaining, auditing & improving ISMS.
  • Managers from organization willing to implement, maintain & improve upon their ISMS as per ISO 27001:2013

Exam Details

  • Total marks: 100
  • Duration: 120 minutes (2 hours)
  • passing criteria: 70%.
  • Exam format: Multiple choice based questions
  • Accreditation Body: TUV SUD

Course Details

  • Mode :- Live Online Training
  • Actual fees- Rs.18,000/-
  • Discounted fees- Rs. 15,000/-
  • Duration: 3 Days

Get more Details- Certified Lead Implementer | ISO 27001


Our Blog

address
Clark , a professional hacker, was hired by an organization to gather sensitive information about its competitors surreptitiously. Clark gathers the server IP address of the target organization using Whois footprinting. Further, he entered the server IP address as an input to an online tool to retrive information such as the network range of the target organization and to identify the network topology and operating system used in the network. What is the online tool
professional hacker
John a disgruntled ex-employee of an organization, contacted a professional hacker to exploit the organization. In the attack process, the professional hacker installed a scanner on a machine belonging to one of the victim and scanned several machines on the same network to identify vulnerabilities to perform further exploitation. What is the type of vulnerability assessment tool employed by john in the above scenario? Option 1 : Network-based scanner Option 2 : Agent-based scanner Option
organization
An organization has automated the operation of critical infrastructure from a remote location. For this purpose, all the industrial control systems are connected to the INTERNET. To empower the manufacturing processs, ensure the reliability of industrial networks, and reduce downtime and service disruption, the organization decided to install an OT security tool that further protects against security incidents such as cyber espionage, zero-day attack, and malware. Which of the following tools must the organization employ
informations
Ralph, a professional hacker, targeted Jane , who had recently bought new systems for her company. After a few days, Ralph contacted Jane while masquerading as a legitimate customer support executive, informing that her systems need to be serviced for proper functioning and that customer support will send a computer technician. Jane promptly replied positively. Ralph entered Jane’s company using this opportunity and gathered sensitive informations by scanning terminals for passwords, searching for important documents
web service
Gillbert, a web developer, uses a centralized web API to reduce complexity and increase the integrity of updating and changing data. For this purpose, he uses a web service that uses HTTP methods such as PUT, POST, GET, and DELETE and can improve the overall performance, visibility, scalability, reliability, and portability of an application. What is the type of web-service API mentioned in the above scenario? Option 1 : SOAP API Option 2 : RESET
method
Attacker lauren has gained the credentials of an organization’s internal server system, and she was often logging in during irregular times to monitor the network activities. The organization was skeptical about the login times and appointed security professional Robert to determine the issue. Robert analyzed the compromised device to find incident details such as the type of attack, its severity, target, impact, method of propagation, and vulnerabilities exploited. What is the incident handling and response

Showing the single result