Skip to content

Latest commit

 

History

History
28 lines (14 loc) · 902 Bytes

Quiz 11.md

File metadata and controls

28 lines (14 loc) · 902 Bytes
Raw

QUIZ 11: SECURITY STANDARDS

P/s: Questions are scramble

Questions and Answer

  1. ISO 27035 describes incident management. = True

  2. What does the Step 3 in NIST 800-30 Rev.1 clarifies? = Vulnerability Identification

  3. Which U.S. standard should you consult to guide you in developing security policies? = NIST SP 800-14

  4. PCI DSS is a proprietary information security standard for organisations that handle cardholder data. = True

  5. Which U.S. standard covers risk assessment? = NIST SP 800-30

  6. Which standard defines Management System Auditing? = ISO 27007

  7. What standard should you consult for managing incident response? = ISO 27035

  8. NIST SP 800-30 Rev.1 is a standard for conducting risk assessments. = True

  9. What is the acronym of GDPR? = General Data Protection Regulation

  10. Which of the following describes ISO 27003? = ISMS Implementation

© AdaniKamal