Security monitoring is an important control measure to make sure that the required security level is maintained. In order to realize 24/7 availability of the service, this service is outsourced to a partner in the cloud.What should be an important control in the contract?
A security architect argues with the internal fire prevention team about the statement in the information security policy, that doors to confidential areas should be locked at all times. The emergency response team wantsto access to those areas in case of fire.What is the best solution to this dilemma?
A protocol to investigate fraud by employees is being designed.Which measure can be part of this protocol?
A security manager just finished the final copy of a risk assessment. This assessment contains a list of identified risks and she has to determine how to treat these risks.What is the best option for the treatment of risks?
In a company the IT strategy is migrating towards a Service Oriented Architecture (SOA) so that migrating to the cloud is better feasible in the future. The security architect is asked to make a first draft of the securityarchitecture.Which elements should the security architect draft?