← Back to exam page

512-50 EC-Council Information Security Manager (E|ISM)

Loading demo links...

Showing 19–20 of 20 questions

Question 19 (Information Security Controls and Audit Management)

Which of the following activities must be completed BEFORE you can calculate risk?

Select an option, then click Submit answer.

  • Determining the likelihood that vulnerable systems will be attacked by specific threats

  • Calculating the risks to which assets are exposed in their current setting

  • Assigning a value to each information asset

  • Assessing the relative risk facing the organization’s information assets
Question 20 (Security Program Management and Operations)

Which of the following can the company implement in order to avoid this type of security issue in the future?

Select an option, then click Submit answer.

  • Network based intrusion detection systems

  • A security training program for developers

  • A risk management process

  • A audit management process