ECCouncil Updated 712-50 Exam Questions and Answers by lula

 Importance of Diverse Representation:

An effective Information Security Steering Committee should include representatives from various departments and organizational levels to ensure diverse perspectives and comprehensive decision-making.

 Purpose of a Steering Committee:

To oversee security strategy, align it with business goals, and address risks across all operational areas.

 Supporting Reference:

The CCISO program highlights cross-functional collaboration as a cornerstone of security governance to ensure balanced and inclusive security strategies.

 Role of Governance Steering Committees:

Information security governance steering committees oversee the creation, approval, and maintenance of security policies. They ensure that policies align with organizational objectives and regulatory requirements.

 Policy Vetting as a Core Function:

Ensures policies are comprehensive, relevant, and enforceable.

Addresses the balance between security and operational efficiency.

 Why Other Options Are Incorrect:

A. Approving Access: This is typically handled by access control processes or data owners.

B. Security Awareness Programs: Content development is operational, not governance.

C. Interviewing Candidates: Staffing decisions are usually outside the committee's scope.

 References:

EC-Council underscores policy governance as a fundamental responsibility of information security steering committees

 Definition of ARO:

ARO estimates the frequency with which a specific threat is expected to occur in a year. It is a critical component of calculating Annual Loss Expectancy (ALE).

 Why This is Correct:

ARO quantifies the likelihood of an event, allowing organizations to prioritize risk mitigation efforts effectively.

 Why Other Options Are Incorrect:

A. SLE: Refers to the monetary loss from a single event.

B. EF: Represents the percentage of asset loss from a specific threat.

D. TP: Not a standard term in risk management frameworks.

 References:

EC-Council highlights ARO as an essential metric for risk assessment and financial impact analysis in risk management frameworks.

 Why External Audit Provides the Best Perspective:

External auditors are independent and unbiased, offering a certifiable assessment of established controls.

They evaluate compliance with standards, effectiveness of controls, and areas needing improvement.

 Why This is Correct:

External audits provide an objective view that internal teams or penetration testers may not.

Results from an external audit are often recognized for certifications or regulatory compliance.

 Why Other Options Are Incorrect:

A. Penetration Testers: Focus on identifying vulnerabilities, not certifying overall controls.

C. Internal Audit: Valuable but lacks the independence of an external review.

D. Forensic Experts: Specialize in investigating incidents, not evaluating ongoing controls.

 References:

EC-Council emphasizes the role of external audits in providing comprehensive and independent validation of security controls.