Ultimate Guide to Prepare Free PECB ISO-IEC-27001-Lead-Auditor Exam Questions & Answer [Q109-Q133]

4/5 - (2 votes)

Ultimate Guide to Prepare Free PECB ISO-IEC-27001-Lead-Auditor Exam Questions and Answer

Pass PECB ISO-IEC-27001-Lead-Auditor Tests Engine pdf – All Free Dumps

NEW QUESTION 109
Which of the following does a lack of adequate security controls represent?

 
 
 
 

NEW QUESTION 110
In regard to generating an audit finding, select the words that best complete the following sentence.
To complete the sentence with the best word(s), click on the blank section you want to complete so that it Is highlighted in red, and then click on the applicable text from the options below. Alternatively, you may drag and drop the option to the appropriate blank section.

NEW QUESTION 111
You are preparing the audit findings. Select two options that are correct.

 
 
 
 
 
 

NEW QUESTION 112
Backup media is kept in the same secure area as the servers. What risk may the organisation be exposed to?

 
 
 
 

NEW QUESTION 113
The audit lifecycle describes the ISO 19011 process for conducting an individual audit. Drag and drop the steps of the audit lifecycle into the correct sequence.

NEW QUESTION 114
Which two of the following phrases would apply to “plan” in relation to the Plan-Do-Check-Act cycle for a business process?

 
 
 
 
 
 

NEW QUESTION 115
Which two of the following phrases would apply to ‘check’ in the Plan-Do-Check-Act cycle for a business process?

 
 
 
 
 
 

NEW QUESTION 116
You are performing an ISMS initial certification audit at a residential nursing home that provides healthcare services. The next step in your audit plan is to conduct the closing meeting. During the final audit team meeting, as an audit team leader, you agree to report 2 minor nonconformities and 1 opportunity for improvement as below:

Select one option of the recommendation to the audit programme manager you are going to advise to the auditee at the closing meeting.

 
 
 
 
 

NEW QUESTION 117
Why do we need to test a disaster recovery plan regularly, and keep it up to date?

 
 
 

NEW QUESTION 118
Who is authorized to change the classification of a document?

 
 
 
 

NEW QUESTION 119
Please match the roles to the following descriptions:

NEW QUESTION 120
Integrity of data means

 
 
 

NEW QUESTION 121
Changes on project-managed applications or database should undergo the change control process as documented.

 
 

NEW QUESTION 122
You are an experienced audit team leader guiding an auditor in training.
Your team is currently conducting a third-party surveillance audit of an organisation that stores data on behalf of external clients. The auditor in training has been tasked with reviewing the TECHNOLOGICAL controls listed in the Statement of Applicability (SoA) and implemented at the site.
Select four controls from the following that would you expect the auditor in training to review.
You are an experienced audit team leader guiding an auditor in training, Your team is currently conducting a third-party surveillance audit of an organisation that stores data on behalf of external clients. The auditor in training has been tasked with reviewing the TECHNOLOGICAL controls listed in the Statement of Applicability (SoA) and implemented at the site.
Select four controls from the following that would you expect the auditor in training to review.

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

NEW QUESTION 123
Select two of the following options that are the responsibility of a legal technical expert on the audit team during a certification audit.

 
 
 
 
 
 

NEW QUESTION 124
How are data and information related?

 
 
 

NEW QUESTION 125
An employee caught temporarily storing an MP3 file in his workstation will not receive an IR.

 
 

NEW QUESTION 126
Which of the following is an information security management system standard published by the International Organization for Standardization?

 
 
 
 

NEW QUESTION 127
You are an ISMS auditor conducting a third-party surveillance audit of a telecom’s provider. You are in the equipment staging room where network switches are pre-programmed before being despatched to clients. You note that recently there has been a significant increase in the number of switches failing their initial configuration test and being returned for reprogramming.
You ask the Chief Tester why and she says, ‘It’s a result of the recent ISMS upgrade’. Before the upgrade each technician had their own hard copy work instructions. Now, the eight members of my team have to share two laptops to access the clients’ configuration instructions online. These delays put pressure on the technicians, resulting in more mistakes being made’.
Based solely on the information above, which clause of ISO to raise a nonconformity against’ Select one.

 
 
 
 
 
 

NEW QUESTION 128
As a new member of the IT department you have noticed that confidential information has been leaked several times. This may damage the reputation of the company. You have been asked to propose an organisational measure to protect laptop computers. What is the first step in a structured approach to come up with this measure?

 
 
 
 

NEW QUESTION 129
Which reliability aspect of information is compromised when a staff member denies having sent a message?

 
 
 
 

NEW QUESTION 130
You are a certification body auditor, conducting a surveillance audit to ISO/IEC 27001:2022 of a data centre operated by a client who provides hosting services for ICT facilities.
You and your guide are currently in one of the private suites that the client rents out to customers. Access to each suite is controlled using a combination lock. CCTV is also installed in every suite.
Within each suite are three data cabinets in which the client can locate mission-critical servers and other items of networking equipment such as switches and routers.
You notice that whilst two of the cabinets in your suite are locked, the third is unlocked. You ask the guide why. They reply “This is because the client is currently swapping out a hard drive unit. Their technician is currently on a lunch break”.
What three actions should you undertake next?

 
 
 
 
 
 
 
 

NEW QUESTION 131
The computer room is protected by a pass reader. Only the System Management department has a pass.
What type of security measure is this?

 
 
 
 

NEW QUESTION 132
The following are definitions of Information, except:

 
 
 
 

NEW QUESTION 133
What is a repressive measure in case of a fire?

 
 
 

To be eligible for the PECB ISO-IEC-27001-Lead-Auditor exam, candidates must have a minimum of five years of professional experience, with at least two years of experience in information security management. They must also have completed a PECB-certified ISO/IEC 27001 Foundation training course or have equivalent knowledge. ISO-IEC-27001-Lead-Auditor exam consists of two parts: a written exam and a practical exam. The written exam is four hours long and consists of 150 multiple-choice questions. The practical exam is two hours long and requires candidates to demonstrate their auditing skills in a simulated audit scenario. Upon successful completion of both exams, candidates will be awarded the PECB Certified ISO/IEC 27001 Lead Auditor certification.

 

Online Exam Practice Tests with detailed explanations!: https://www.premiumvcedump.com/PECB/valid-ISO-IEC-27001-Lead-Auditor-premium-vce-exam-dumps.html