If you want to know how to pass the ISO/IEC 27002 - Lead Implementer ISO-IEC-LI exam,Passcert provides high standard quality GAQM ISO-IEC-LI Exam Dumps that will help you in reaching your goal easily.It contains real questions and answers that our clients can practice before appearing in the real GAQM ISO-IEC-LI exam so that they can get an idea of the ISO/IEC 27002 - Lead Implementer exam and also will be able to sit confidently in the ISO-IEC-LI exam. Using Passcert GAQM ISO-IEC-LI Exam Dumps will help you pass your GAQM ISO-IEC-LI ISO/IEC 27002 - Lead Implementer exam in your first attempt.

ISO/IEC 27002 Lead Implementer is a professional certification for professionals specializing in information security management systems (ISMS) based on the ISO/IEC 27002 standard. This professional certification is intended for information security professionals wanting to understand the steps required to implement the ISO 27002 standard (as opposed to the ISO 27002 Lead Auditor certification which is intended for an auditor wanting to audit and certify a system to the ISO 27002 standard).

The exam comprises of 50 Multiple Choice Questions out of which the candidate needs to score 70% (33 out of 50 correct) to pass the exam.Exams are online and proctored based, using a webcam and a reliable internet connection exams can be taken anywhere and anytime.The total duration of the exam is 2 hours (120 Minutes).The ISO/IEC 27002 - Lead Implementer Certificate is valid for four (4) years.

Project managers or consultants wanting to prepare and to support an organization in the implementation of an Information Security Management System (ISMS)

ISO 27002 auditors who wish to fully understand the Information Security Management System implementation process

CxO and Senior Managers responsible for the IT governance of an enterprise and the management of its risks

Members of an information security team

Expert advisors in information technology

Technical experts wanting to prepare for an information security function or for an ISMS project management function

Understanding the application of an ISMS in the context of ISO 27002

Mastering the concepts, approaches, standards, methods and techniques required in an effective management of an ISMS

Understanding the relationship between the components of an Information Security Management System, including risk management, controls and compliance with the requirements of different stakeholders of the organization

Acquiring expertise to support an organization in implementing, managing and maintaining an ISMS as specified in ISO 27002

Acquiring the necessary expertise to manage a team implementing the ISO 27002 standard

Developing skills and knowledge required to advise organizations on best practices in management of information security

Improving the capacity for analysis and decision making in a context of information security management

1.What is the most important reason for applying the segregation of duties?

A. Segregation of duties makes it clear who is responsible for what.

B. Segregation of duties ensures that, when a person is absent, it can be investigated whether he or she has been committing fraud.

C. Tasks and responsibilities must be separated in order to minimize the opportunities for business assets to be misused or changed, whether the change be unauthorized or unintentional.

D. Segregation of duties makes it easier for a person who is ready with his or her part of the work to take time off or to take over the work of another person.

Answer: C

2.Why is compliance important for the reliability of the information?

A. Compliance is another word for reliability. So, if a company indicates that it is compliant, it means that the information is managed properly.

B. By meeting the legislative requirements and the regulations of both the government and internal management, an organization shows that it manages its information in a sound manner.

C. When an organization employs a standard such as the ISO/IEC 27002 and uses it everywhere, it is compliant and therefore it guarantees the reliability of its information.

D. When an organization is compliant, it meets the requirements of privacy legislation and, in doing so, protects the reliability of its information.

Answer: B

3.What is the best way to comply with legislation and regulations for personal data protection?

A. Performing a threat analysis

B. Maintaining an incident register

C. Performing a vulnerability analysis

D. Appointing the responsibility to someone

Answer: D

4.What is an example of a non-human threat to the physical environment?

A. Fraudulent transaction

B. Corrupted file

C. Storm

D. Virus

Answer: C

5.Who is accountable to classify information assets?

A. the CEO

B. the CISO

C. the Information Security Team

D. the asset owner

Answer: D

6.A company moves into a new building. A few weeks after the move, a visitor appears unannounced in the office of the director. An investigation shows that visitors passes grant the same access as the passes of the company's staff.

Which kind of security measure could have prevented this?

A. physical security measure

B. An organizational security measure

C. A technical security measure

Answer: A

7.ISO 27002 provides guidance in the following area

A. PCI environment scoping

B. Information handling recommendations

C. Framework for an overall security and compliance program

D. Detailed lists of required policies and procedures

Answer: C