CCISO 712-50 ECCouncil Study Notes

EC-Council Certified CISO (CCISO) Questions and Answers

Question 125

Your penetration testing team installs an in-line hardware key logger onto one of your network machines. Which of the following is of major concern to the security organization?

Options:

In-line hardware keyloggers don’t require physical access

In-line hardware keyloggers don’t comply to industry regulations

In-line hardware keyloggers are undetectable by software

In-line hardware keyloggers are relatively inexpensive

Question 126

The general ledger setup function in an enterprise resource package allows for setting accounting periods. Access to this function has been permitted to users in finance, the shipping department, and production scheduling. What is the most likely reason for such broad access?

Options:

The need to change accounting periods on a regular basis.

The requirement to post entries for a closed accounting period.

The need to create and modify the chart of accounts and its allocations.

The lack of policies and procedures for the proper segregation of duties.

Question 127

Security related breaches are assessed and contained through which of the following?

Options:

The IT support team.

A forensic analysis.

Incident response

Physical security team.

Question 128

SQL injection is a very popular and successful injection attack method. Identify the basic SQL injection text:

Options:

‘ o 1=1 - -

/../../../../

“DROPTABLE USERNAME”

NOPS

Winter Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

EC-Council Certified CISO (CCISO) Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

CompTIA

Fortinet

Microsoft

Salesforce