ISFS Actual Exam Questions

Last updated on Dec. 15, 2024.
Vendor:Exin
Exam Code:ISFS
Exam Name:Information Security Foundation (based on ISOIEC 27002) (EX0-105)
Exam Questions:80
 

Topic 1 - Single Topic

Question #1 Topic 1

You are the owner of the courier company SpeeDelivery. You employ a few people who, while waiting to make a delivery, can carry out other tasks. You notice, however, that they use this time to send and read their private mail and surf the Internet. In legal terms, in which way can the use of the Internet and e-mail facilities be best regulated?

  • A. Installing an application that makes certain websites no longer accessible and that filters attachments in e-mails
  • B. Drafting a code of conduct for the use of the Internet and e-mail in which the rights and obligations of both the employer and staff are set down
  • C. Implementing privacy regulations
  • D. Installing a virus scanner
Reveal Solution Hide Solution   Discussion  

Correct Answer: B 🗳️

Question #2 Topic 1

Why is air-conditioning placed in the server room?

  • A. In the server room the air has to be cooled and the heat produced by the equipment has to be extracted. The air in the room is also dehumidified and filtered.
  • B. When a company wishes to cool its offices, the server room is the best place. This way, no office space needs to be sacrificed for such a large piece of equipment.
  • C. It is not pleasant for the maintenance staff to have to work in a server room that is too warm.
  • D. Backup tapes are made from thin plastic which cannot withstand high temperatures. Therefore, if it gets too hot in a server room, they may get damaged.
Reveal Solution Hide Solution   Discussion  

Correct Answer: A 🗳️

Question #3 Topic 1

Who is authorized to change the classification of a document?

  • A. The author of the document
  • B. The administrator of the document
  • C. The owner of the document
  • D. The manager of the owner of the document
Reveal Solution Hide Solution   Discussion  

Correct Answer: C 🗳️

Question #4 Topic 1

The company Midwest Insurance has taken many measures to protect its information. It uses an
Information Security Management System, the input and output of data in applications is validated, confidential documents are sent in encrypted form and staff use tokens to access information systems. Which of these is not a technical measure?

  • A. Information Security Management System
  • B. The use of tokens to gain access to information systems
  • C. Validation of input and output data in applications
  • D. Encryption of information
Reveal Solution Hide Solution   Discussion  

Correct Answer: A 🗳️

file Viewing page 1 out of 20 pages.
Viewing questions 1-4 out of 80 questions
Next Questions
Browse atleast 50% to increase passing rate cup
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago