<< Prev Question Next Question >>

Question 9/35

Scenario 7: InfoSec is a multinational corporation headquartered in Boston, MA, which provides professional electronics, gaming, and entertainment services. After facing numerous information security incidents, InfoSec has decided to establish teams and implement measures to prevent potential incidents in the future Emma, Bob. and Anna were hired as the new members of InfoSec's information security team, which consists of a security architecture team, an incident response team (IRT) and a forensics team Emma's job is to create information security plans, policies, protocols, and training to prepare InfoSec to respond to incidents effectively Emma and Bob would be full-time employees of InfoSec, whereas Anna was contracted as an external consultant.
Bob, a network expert, will deploy a screened subnet network architecture This architecture will isolate the demilitarized zone (OMZ) to which hosted public services are attached and InfoSec's publicly accessible resources from their private network Thus, InfoSec will be able to block potential attackers from causing unwanted events inside the company's network. Bob is also responsible for ensuring that a thorough evaluation of the nature of an unexpected event is conducted, including the details on how the event happened and what or whom it might affect.
Anna will create records of the data, reviews, analysis, and reports in order to keep evidence for the purpose of disciplinary and legal action, and use them to prevent future incidents. To do the workaccordingly, she should be aware of the company's information security incident management policy beforehand Among others, this policy specifies the type of records to be created, the place where they should be kept, and the format and content that specific record types should have.
According to scenario 7, a demilitarized zone (DMZ) is deployed within InfoSec's network. What type of control has InfoSec implemented in this case?

LEAVE A REPLY

Your email address will not be published. Required fields are marked *

Question List (35q)
Question 1: An organization that has an ISMS in place conducts managemen...
Question 2: Scenario 6: Skyver offers worldwide shipping of electronic p...
Question 3: Scenario 4: TradeB. a commercial bank that has just entered ...
Question 4: Scenario 8: SunDee is an American biopharmaceutical company,...
Question 5: Scenario 1: HealthGenic is a pediatric clinic that monitors ...
Question 6: Scenario 5: Operaze is a small software development company ...
Question 7: Scenario 2: Beauty is a cosmetics company that has recently ...
Question 8: Scenario 10: NetworkFuse develops, manufactures, and sells n...
Question 9: Scenario 7: InfoSec is a multinational corporation headquart...
Question 10: An organization wants to enable the correlation and analysis...
Question 11: Who should be involved, among others, in the draft, review, ...
Question 12: Scenario 5: Operaze is a small software development company ...
Question 13: Scenario 7: InfoSec is a multinational corporation headquart...
Question 14: An organization documented each security control that it Imp...
Question 15: Scenario 2: Beauty is a cosmetics company that has recently ...
Question 16: What is the main purpose of Annex A 7.1 Physical security pe...
Question 17: An organization has justified the exclusion of control 5.18 ...
Question 18: Scenario 10: NetworkFuse develops, manufactures, and sells n...
Question 19: Scenario 3: Socket Inc is a telecommunications company offer...
Question 20: Scenario 3: Socket Inc is a telecommunications company offer...
Question 21: A small organization that is implementing an ISMS based on I...
Question 22: Which of the situations below can negatively affect the inte...
Question 23: Which of the following is NOT part of the steps required by ...
Question 24: An organization uses Platform as a Services (PaaS) to host i...
Question 25: Scenario 10: NetworkFuse develops, manufactures, and sells n...
Question 26: Scenario 4: TradeB. a commercial bank that has just entered ...
Question 27: The IT Department of a financial institution decided to impl...
Question 28: Which approach should organizations use to implement an ISMS...
Question 29: Scenario 1: HealthGenic is a pediatric clinic that monitors ...
Question 30: An organization has implemented a control that enables the c...
Question 31: Scenario 3: Socket Inc is a telecommunications company offer...
Question 32: Scenario 2: Beauty is a cosmetics company that has recently ...
Question 33: Scenario 1: HealthGenic is a pediatric clinic that monitors ...
Question 34: Scenario 3: Socket Inc is a telecommunications company offer...
Question 35: Scenario 7: InfoSec is a multinational corporation headquart...