Weekend Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmasmnth

Scenario 2: Beauty is a cosmetics company that has recently switched to an e-commerce model,...

  1. Home
  2. PECB
  3. ISO 27001
  4. ISO-IEC-27001-Lead-Implementer
  5. ISO-IEC-27001-Lead-Implementer Questions
  6. PECB Certified ISO/IEC 27001 : 2022 Lead Implementer exam Practice Questions

Scenario 2: Beauty is a cosmetics company that has recently switched to an e-commerce model, leaving the traditional retail. The top management has decided to build their own custom platform in-house and outsource the payment process to an external provider operating online payments systems that support online money transfers.

Due to this transformation of the business model, a number of security controls were implemented based on the identified threats and vulnerabilities associated to critical assets. To protect customers' information. Beauty's employees had to sign a confidentiality agreement. In addition, the company reviewed all user access rights so that only authorized personnel can have access to sensitive files and drafted a new segregation of duties chart.

However, the transition was difficult for the IT team, who had to deal with a security incident not long after transitioning to the e commerce model. After investigating the incident, the team concluded that due to the out-of-date anti-malware software, an attacker gamed access to their files and exposed customers' information, including their names and home addresses.

The IT team decided to stop using the old anti-malware software and install a new one which would automatically remove malicious code in case of similar incidents. The new software was installed in every workstation within the company. After installing the new software, the team updated it with the latest malware definitions and enabled the automatic update feature to keep it up to date at all times. Additionally, they established an authentication process that requires a user identification and password when accessing sensitive information.

In addition, Beauty conducted a number of information security awareness sessions for the IT team and other employees that have access to confidential information in order to raise awareness on the importance of system and network security.

Based on the scenario above, answer the following question:

Which situation described in scenario 2 Indicates service unavailability?

A.

Lucas was no! able to access the website with his credentials

B.

Attackers still had access to the data when Solena delivered a press release

C.

Lucas was asked to change his password weekly

PECB ISO-IEC-27001-Lead-Implementer View All Questions

PECB ISO-IEC-27001-Lead-Implementer Summary

  • Vendor: PECB
  • Product: ISO-IEC-27001-Lead-Implementer
  • Update on: Jul 30, 2025
  • Questions: 293
Price: $52.5  $149.99
Buy Now ISO-IEC-27001-Lead-Implementer PDF + Testing Engine Pack
Next
Once they made sure that the attackers do not have access in their system, the...
Scenario 5: OperazelT is a software development company that develops applications for various companies worldwide.
Previous

Payments We Accept

Your purchase with ExamsVCE is safe and fast. Your products will be available for immediate download after your payment has been received.
The ExamsVCE website is protected by 256-bit SSL from McAfee, the leader in online security.

examsvce payment method

Contact Us

Copyright © 2013-2025 examsvce.com. All Rights Reserved
mcafee secure

TESTED 02 Aug 2025