Cybersecurity-Audit-Certificate試験無料問題集（136題）「ISACA Cybersecurity Audit Certificate 認定」

出題：1

Which of the following is the GREATEST risk pertaining to sensitive data leakage when users set mobile devices to "always on" mode?

A. A user's behavior pattern can be predicted.

B. Mobile connectivity could be severely weakened.

C. An adversary can predict a user's login credentials.

D. Authorization tokens could be exploited.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

Which of the following is the MOST important consideration when choosing between different types of cloud services?

A. Security features available on demand

B. Reputation of the cloud providers

C. Overall risk and benefits

D. Emerging risk and infrastructure scalability

正解：C 解答を投票する

出題：3

An IS auditor has learned that a cloud service provider has not adequately secured its application programming interface (API). Which of the following is MOST important for the auditor to consider in an assessment of the potential risk factors?

A. Resource contention

B. Identity spoofing and phishing

C. Denial of service

D. Confidentiality, integrity, and availability

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

Which of the following cloud characteristics refers to resource utilization that can be optimized by leveraging charge-per-use capabilities?

A. On demand self-service

B. Measured service

C. Elasticity

D. Resource pooling

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Which of the following should an IS auditor do FIRST to ensure cyber security-related legal and regulatory requirements are followed by an organization?

A. Determine if the cybersecurity program is mapped to relevant legal and regulatory requirements.

B. Determine if there is a formal process to review changes in legal and regulatory requirements.

C. Review the most recent legal and regulatory audit report conducted by an independent party.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

During which incident response phase is the incident management team activated?

A. Recovery

B. Containment

C. Identification

D. Eradication

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

Which of the following is commonly referred to as a Wi-Fi hotspot?

A. Wireless personal area network (WPAN)

B. Wide area network (WAN)

C. Local area network (LAN)

D. Wireless local area network (WLAN)

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

Which of the following is the GREATEST drawback when using the AICPA/CICA Trust Sen/ices to evaluate a cloud service provider?

A. Inability to issue SOC 2 or SOC 3 reports

B. Lack of specificity m the principles

C. Incompatibility with cloud service business model

D. Omission of confidentiality in the criteria

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

Which of the following is MOST critical to guiding and managing security activities throughout an organization to ensure objectives are met?

A. Adopting industry security standards and frameworks

B. Allocating a significant amount of budget to security investments

C. Conducting annual security awareness training for all employees

D. Establishing metrics to measure and monitor security performance

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

The risk of an evil twin attack on mobile devices is PRIMARILY due to:

A. generic names that mobile devices will accept without verification.

B. use of data transmission that is not always encrypted.

C. weak authentication protocols in wireless networks.

D. tokens stored as plain text in many mobile device applications.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

Cybersecurity-Audit-Certificate試験無料問題集「ISACA Cybersecurity Audit Certificate 認定」