100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
Previously searched by you
Previously searched by you
logo
ISO 27001; ANNEX A CONTROLS EXAM QUESTIONS AND ANSWERS $12.49   Add to cart
Quickly navigate to
Preview
  2.  
  3. ISO 27001; ANNEX A CONTROLS
  4.  
  5. ISO 27001; ANNEX A CONTROLS

Exam (elaborations)

ISO 27001; ANNEX A CONTROLS EXAM QUESTIONS AND ANSWERS
 3 views  0 purchase
  • Course
  • ISO 27001; ANNEX A CONTROLS
  • Institution
  • ISO 27001; ANNEX A CONTROLS

ISO 27001; ANNEX A CONTROLS EXAM QUESTIONS AND ANSWERS...

Preview 2 out of 11  pages

Document information

  • October 12, 2024
  • 11
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers

Subjects

  • iso 27001
  • iso27001
  • iso 27001 annex a controls
  • iso 27001 annex a controls exam
  • policies for information security

Written for

  • ISO 27001; ANNEX A CONTROLS
  • ISO 27001; ANNEX A CONTROLS

Seller

avatar-seller
luzlinkuz

Reviews received

Content preview

ISO 27001; ANNEX A CONTROLS EXAM QUESTIONS AND
ANSWERS


5.1: Policies for information security - ANSWER Information security
policy and topic-specific policies shall be defined, approved by
management, published, communicated to and acknowledged by
relevant personnel and relevant interested parties, and reviewed at
planned intervals and if significant changes occur.

5.2: Information security roles and responsibilities - ANSWER
Information security roles and responsibilities shall be defined and
allocated according to the organization needs.

5.3: Segregation of duties - ANSWER Conflicting duties and conflicting
areas of responsibility shall be segregated.

5.4: Management responsibilities - ANSWER Management shall require
all personnel to apply information security in accordance with the
established information security policy, topic-specific policies and
procedures of the organization.

5.5: Contact with authorities - ANSWER The organization shall establish
and maintain contact with relevant authorities.

5.6: Contact with special interest groups - ANSWER The organization
shall establish and maintain contact with special interest groups or other
specialist security forums and professional associations.

5.7: Threat Intelligence - ANSWER Information relating to information
security threats shall be collected and analysed to produce threat
intelligence.

5.8: Information security in project management - ANSWER Information
security shall be integrated into project management.

, 5.9: Inventory of information and other associated assets - ANSWER An
inventory of information and other associated assets, including owners,
shall be developed and maintained.

5.10: Acceptable use of information and other associated assets -
ANSWER Rules for the acceptable use and procedures for handling
information and other associated assets shall be identified, documented
and implemented.

5.11: Return of assets - ANSWER Personnel and other interested
parties as appropriate shall return all the organization's assets in their
possession upon change or termination of their employment, contract or
agreement.

5.12: Classification of information - ANSWER Information shall be
classified according to the information security needs of the organization
based on confidentiality, integrity, availability and relevant interested
party requirements.

5.13: Labelling of information - ANSWER An appropriate set of
procedures for information labelling shall be developed and implemented
in accordance with the information classification scheme adopted by the
organization.

5.14: Information transfer - ANSWER Information transfer rules,
procedures, or agreements shall be in place for all types of transfer
facilities within the organization and between the organization and other
parties.

5.15: Access control - ANSWER Rules to control physical and logical
access to information and other associated assets shall be established
and implemented based on business and information security
requirements.

5.16: Identity management - ANSWER The full life cycle of identities
shall be managed.

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller luzlinkuz. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $12.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

82215 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$12.49
  • (0)
  Add to cart