Certified Incident Handler (CIH) Practice Ecam

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the Certified Incident Handler (CIH) Exam. Enhance your knowledge with interactive quizzes and detailed insights into cyber incident handling. Boost your exam readiness with our expert-designed questions!

Start Multiple Choice Practice Test
Start Flash Cards

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

Which ISO standard provides management guidelines specifically for financial services?

  1. ISO/IEC 27045

  2. ISO/IEC TR 27015

  3. ISO/IEC 27034

  4. ISO/IEC 27006

The correct answer is: ISO/IEC TR 27015

ISO/IEC TR 27015 is indeed the correct answer as it provides management guidelines specifically tailored for the financial services sector. This technical report focuses on the application of information security management systems (ISMS) in the context of financial services and addresses the unique challenges and risks faced by organizations within this industry. It helps organizations establish clear practices and controls to protect sensitive financial data, comply with regulatory requirements, and manage financial risks effectively. ISO/IEC TR 27015 emphasizes the specific information security requirements that are integral to financial institutions, ensuring that they can safeguard customer data and maintain trust while managing their financial operations. The other standards mentioned serve different purposes: ISO/IEC 27045 provides guidelines for the protection of sensitive information in the context of IT investment, ISO/IEC 27034 focuses on application security, and ISO/IEC 27006 outlines requirements for bodies providing certification for ISMS. While they contribute to the overall field of information security, they do not specifically address the financial services sector like ISO/IEC TR 27015 does.

More Questions Like This