ECCouncil Updated 712-50 Exam Questions and Answers by ronald

 Purpose of ISO 27002:

ISO 27002 provides detailed guidance for implementing the controls outlined in ISO 27001, catering to security professionals managing organizational security.

 Why This is Correct:

Focuses on actionable recommendations for security implementation and management.

 Why Other Options Are Incorrect:

B. Common basis for standards: A broader goal, not the primary purpose.

C. Effective security management practice: A benefit, not the main objective.

D. Guidelines and general principles: Overlaps with ISO 27001, not ISO 27002.

 References:

EC-Council aligns ISO 27002 with practical recommendations for managing and maintaining information security systems.

 Purpose of Compliance Testing:

Compliance tests ensure that processes, controls, and procedures comply with organizational policies or regulatory requirements.

 Why This is Correct:

Testing the source and object code versions verifies compliance with program library controls to ensure integrity.

 Why Other Options Are Incorrect:

A. Substantive test: Focuses on data accuracy, not compliance.

C and D: Focus on compiler controls, not library controls.

 References:

EC-Council emphasizes the role of compliance tests in verifying adherence to security and operational policies in program libraries.

 Stakeholder Roles:

Stakeholders are those who have a vested interest in or are affected by IT security projects.

The Help Desk typically serves as a support function and is not directly involved in decision-making or implementation.

 Why Other Options Are Valid Stakeholders:

A. Board of directors: Responsible for approving funding and ensuring alignment with business goals.

B. Third party vendors: Often supply solutions or services critical to IT security projects.

C. CISO: Directly responsible for overseeing and guiding IT security initiatives.

 EC-Council CISO Reference:

The curriculum identifies stakeholders based on their roles in governance, risk management, and operations, excluding roles like Help Desk that serve ancillary purposes.

Comprehensive and Detailed 250–300 Words Explanation From Exact Extract from Chief Information Security Officer (CCISO) Documents:

The EC-Council CCISO Body of Knowledge identifies Recovery Point Objective (RPO) as a key metric used specifically for data backup and restoration. RPO defines the maximum acceptable amount of data loss, measured in time, that an organization can tolerate following a disruption or system failure.

CCISO documentation explains that RPO answers the question: “How much data can we afford to lose?” This makes it directly tied to backup frequency, replication strategies, and data restoration planning. For example, an RPO of four hours means backups must occur at least every four hours to meet business requirements.

Other options are related but not specific to backup metrics. Maximum Tolerable Downtime (MTD) measures total allowable downtime for a business process, not data loss. Mean Time to Operations (MTO) focuses on recovery duration. “Recovery Base Objective” is not a recognized CCISO or industry-standard metric.

CCISO materials emphasize that defining RPO is critical before selecting backup technologies, cloud replication methods, or disaster recovery architectures. Without a clearly defined RPO, organizations risk either over-investing in unnecessary backup solutions or under-protecting critical data.

Therefore, in alignment with CCISO business continuity and disaster recovery guidance, Recovery Point Objective (RPO) is the correct answer.