Weekend Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmasmnth

You are performing an ISMS audit at a residential nursing home that provides healthcare services...

  1. Home
  2. PECB
  3. ISO 27001
  4. ISO-IEC-27001-Lead-Auditor
  5. ISO-IEC-27001-Lead-Auditor Questions
  6. PECB Certified ISO/IEC 27001 2022 Lead Auditor exam Practice Questions

You are performing an ISMS audit at a residential nursing home that provides healthcare services and are reviewing the Software Code Management (SCM) system. You found a total of 10 user accounts on the SCM. You confirm that one of the users, Scott, resigned 9-months

ago. The SCM System Administrator confirmed Scott's last check-out of the source code was found 1 month ago. He was using one of the uthorized desktops from the local network in a secure area.

You check with the user de-registration procedure which states "Managers have to make sure of deregistration of the user account and authorisation immediately from the relevant ICT system and/or equipment after resignation approval." There was no deregistration record for user Scott.

The IT Security Manager explains that Scott still comes back to the office every month after he resigned to provide support on source code maintenance. That's why his account on SCM still exists.

You would like to investigate other areas further to collect more audit evidence. Select three options that would not be valid audit trails.

A.

Collect more evidence on how access controls are periodically reviewed to maintain security (Relevant to control A.5.35)

B.

Collect more evidence on how the transition of Scott from full-time to part-time employment was managed (relevant to control A.6.5)

C.

Collect more evidence from Scott's background verification checks performed by the human resource department under the new employment relationship. (Relevant to control A.6.1)

D.

Collect more evidence of why Scott resigned and whether his re-engagement represents a conflict of interest. (relevant to control A.5.3)

E.

Collect more evidence on how Scott can access the employee's desktop and local network. (Relevant to control A.5.15)

F.

Collect more evidence on how Scott can access the secure area. (Relevant to control A.8.4)

G.

Collect more evidence on how the organization pays for Scott's source code maintenance support service. (Relevant to control A.6.2)

PECB ISO-IEC-27001-Lead-Auditor View All Questions

PECB ISO-IEC-27001-Lead-Auditor Summary

  • Vendor: PECB
  • Product: ISO-IEC-27001-Lead-Auditor
  • Update on: Jul 30, 2025
  • Questions: 368
Price: $52.5  $149.99
Buy Now ISO-IEC-27001-Lead-Auditor PDF + Testing Engine Pack
Next
Scenario 9: UpNet, a networking company, has been certified against ISO/IEC 27001.
You are performing an ISMS audit at a residential nursing home that provides healthcare services.
Previous

Payments We Accept

Your purchase with ExamsVCE is safe and fast. Your products will be available for immediate download after your payment has been received.
The ExamsVCE website is protected by 256-bit SSL from McAfee, the leader in online security.

examsvce payment method

Contact Us

Copyright © 2013-2025 examsvce.com. All Rights Reserved
mcafee secure

TESTED 02 Aug 2025