Online Access Free EX0-105 Exam Questions

What is the best way to comply with legislation and regulations for personal data protection?

• A.Maintaining an incident register
• B.Performing a threat analysis
• C.Appointing the responsibility to someone
• D.Performing a vulnerability analysis

What is 'a potential cause of an unwanted incident, which may result in harm to a system or organization' called?

• A.Exposure
• B.Threat
• C.Risk
• D.Vulnerability

A non-human threat for computer systems is a flood. In which situation is a flood always a relevant threat?

• A.When the organization is located near a river.
• B.When the computer systems are not insured.
• C.If the risk analysis has not been carried out.
• D.When computer systems are kept in a cellar below ground level.

Logging in to a computer system is an access-granting process consisting of three steps: identification, authentication and authorization. What occurs during the first step of this process: identification?

• A.The first step consists of comparing the password with the registered password.
• B.The first step consists of checking if the user is using the correct certificate.
• C.The first step consists of checking if the user appears on the list of authorized users.
• D.The first step consists of granting access to the information to which the user is authorized.

Which is a legislative or regulatory act related to information security that can be imposed upon all organizations?

• A.ISO/IEC 27002:2005
• B.Intellectual Property Rights
• C.Personal data protection legislation
• D.ISO/IEC 27001:2005