BlackFriday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

PECB Exam ISO-IEC-27001-Lead-Implementer Topic 2 Question 47 Discussion

Actual exam question for PECB's ISO-IEC-27001-Lead-Implementer exam
Question #: 47
Topic #: 2
[All ISO-IEC-27001-Lead-Implementer Questions]

Which situation presented in scenario 8 is not in compliance with ISO/IEC 27001 requirements?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Shelba at Sep 16, 2024, 08:48 AM

Limited Time Offer

25%

Off

Get Premium ISO-IEC-27001-Lead-Implementer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Letha
15 days ago
I hope the correct answer isn't 'All of the above' - that would be a real ISO/IEC 27001 plot twist!
upvoted 0 times
...
Quentin
16 days ago
This question is like a game of ISO/IEC 27001 'Where's Waldo?' - gotta find that non-compliant situation!
upvoted 0 times
...
Leota
17 days ago
C) Emma had access to all offices and documentation of HealthGenic. Yikes! That's like giving the keys to the kingdom to a random employee. Not very secure.
upvoted 0 times
...
Latricia
18 days ago
B) The recodification audit Is planned to be conducted two years after HealthGenic implemented the ISMS. Ah, I see. ISO/IEC 27001 requires more frequent audits.
upvoted 0 times
...
Maira
21 days ago
A) Emma has an operational role in the HealthGenic's management system. Hmm, I don't see any issues with that. Operational roles are common in ISMS.
upvoted 0 times
Fletcher
5 days ago
But in scenario 8, Emma also has access to sensitive information without proper authorization.
upvoted 0 times
...
Yolando
11 days ago
I agree, having an operational role in ISMS is normal.
upvoted 0 times
...
...
Dong
2 months ago
C) Emma had access to all offices and documentation of HealthGenic. That's a big no-no. Access should be limited based on the principle of least privilege.
upvoted 0 times
Isabella
13 days ago
Emma having access to everything at HealthGenic is definitely not in compliance with ISO/IEC 27001 requirements.
upvoted 0 times
...
Lonna
14 days ago
Having access to all offices and documentation is a big security risk.
upvoted 0 times
...
Stevie
15 days ago
Access should definitely be limited based on the principle of least privilege.
upvoted 0 times
...
...
Madelyn
2 months ago
But what about the recodification audit being planned two years later? Isn't that also a violation of ISO/IEC 27001 requirements?
upvoted 0 times
...
Alex
2 months ago
B) The recodification audit Is planned to be conducted two years after HealthGenic implemented the ISMS. This doesn't sound right. Shouldn't it be conducted more frequently?
upvoted 0 times
Marge
28 days ago
HealthGenic may need to review their audit schedule to ensure they are meeting ISO/IEC 27001 requirements.
upvoted 0 times
...
Terina
1 months ago
It's important to regularly assess and update the ISMS to maintain compliance with the standard.
upvoted 0 times
...
Jeanice
1 months ago
Maybe HealthGenic should consider conducting the audit annually to stay in line with ISO/IEC 27001 requirements.
upvoted 0 times
...
Tess
1 months ago
I agree, the recodification audit should be conducted more frequently to ensure compliance.
upvoted 0 times
...
...
Leatha
2 months ago
I agree with Lavera, that goes against the principle of least privilege.
upvoted 0 times
...
Lavera
2 months ago
I think the situation with Emma having access to all offices and documentation is not in compliance.
upvoted 0 times
...

Save Cancel