Most Recent Exin ISMP Exam Questions & Answers

Prepare for the Exin Information Security Management Professional based on ISO/IEC 27001 exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the Exin ISMP exam and achieve success.

The questions for ISMP were last updated on Nov 17, 2024.

Viewing page 1 out of 6 pages.
Viewing questions 1-5 out of 30 questions

Get All 30 Questions & Answers

Question No. 1

When is revision of an employee's access rights mandatory?

AAfter any position change

BAt hire

CAt least each year

DAt all moments stated in the information security policy

Show Answer

Correct Answer: D

Question No. 2

The handling of security incidents is done by the incident management process under guidelines of information security management. These guidelines call for several types of mitigation plans.

Which mitigation plan covers short-term recovery after a security incident has occurred?

AThe Business Continuity Plan (BCP)

BThe disaster recovery plan

CThe incident response plan

DThe risk treatment plan

Show Answer

Correct Answer: C

Question No. 3

What needs to be decided prior to considering the treatment of risks?

ACriteria for determining whether or not the risk can be accepted

BHow to apply appropriate controls to reduce the risks

CMitigation plans

DThe development of own guidelines

Show Answer

Correct Answer: A

Question No. 4

An experienced security manager is well aware of the risks related to communication over the internet. She also knows that Public Key Infrastructure (PKI) can be used to keep e-mails between employees confidential.

Which is the main risk of PKI?

AThe Certificate Authority (CA) is hacked.

BThe certificate is invalid because it is on a Certificate Revocation List.

CThe users lose their public keys.

DThe HR department wants to be a Registration Authority (RA).

Show Answer

Correct Answer: A

Question No. 5

The security manager of a global company has decided that a risk assessment needs to be completed across the company.

What is the primary objective of the risk assessment?

AIdentify, quantify and prioritize each of the business-critical assets residing on the corporate infrastructure

BIdentify, quantify and prioritize risks against criteria for risk acceptance

CIdentify, quantify and prioritize the scope of this risk assessment

DIdentify, quantify and prioritize which controls are going to be used to mitigate risk

Show Answer

Correct Answer: B

Unlock All Questions for Exin ISMP Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 30 Questions & Answers