| Exam Name: | PECB Certified ISO/IEC 27001 : 2022 Lead Implementer exam | ||
| Exam Code: | ISO-IEC-27001-Lead-Implementer Dumps | ||
| Vendor: | PECB | Certification: | ISO 27001 |
| Questions: | 346 Q&A's | Shared By: | hari |
Which of the following statements regarding information security risk is NOT correct?
If an organization wants to monitor operations in real time and notify users about deviations, which type of dashboard should be used?
Scenario:
Jane is a developer deploying an application using a language supported by her cloud provider. She doesn’t manage the underlying infrastructure but needs control over the application and its environment.
Question:
Which cloud service model does Jane need?
Scenario 1: HealthGenic is a pediatric clinic that monitors the health and growth of individuals from infancy to early adulthood using a web-based medical software. The software is also used to schedule appointments, create customized medical reports, store patients ' data and medical history, and communicate with all the [^involved parties, including parents, other physicians, and the medical laboratory staff.
Last month, HealthGenic experienced a number of service interruptions due to the increased number of users accessing the software Another issue the company faced while using the software was the complicated user interface, which the untrained personnel found challenging to use.
The top management of HealthGenic immediately informed the company that had developed the software about the issue. The software company fixed the issue; however, in the process of doing so, it modified some files that comprised sensitive information related to HealthGenic ' s patients. The modifications that were made resulted in incomplete and incorrect medical reports and, more importantly, invaded the patients ' privacy.
Which situation described in scenario 1 represents a threat to HealthGenic?