Multiple Choice
Which of the following is NOT a purpose of the ISO/IEC 17799 (later 27002) standard?
A) To give recommendations for information security management for use by those who are responsible for initiating, implementing, or maintaining security in their organization.
B) To provide a common basis for developing organizational security standards
C) To provide effective security management practice and to provide confidence in interorganizational dealings
D) All of these are correct
Correct Answer:
Verified
Correct Answer:
Verified
Q85: A(n)_ is the outline of an information
Q86: ISO/IEC 27001's primary purpose is to enable
Q87: <u>Operational</u> controls cover security processes designed by
Q88: When MACs are implemented,users and data owners
Q89: The _ integrity model is based on
Q91: _ -based access controls assign users a
Q92: The major process steps in the ISO
Q93: Controls that remedy a circumstance or mitigate
Q94: A control requiring that significant tasks be
Q95: Management controls deal with the functions of