U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Eccouncil 512-50 Exam - Topic 4 Question 78 Discussion

An organization is looking for a framework to measure the efficiency and effectiveness of their Information Security Management System. Which of the following international standards can BEST assist this organization?
A) International Organization for Standardizations -- 27004 (ISO-27004)
B) Payment Card Industry Data Security Standards (PCI-DSS)
C) Control Objectives for Information Technology (COBIT)
D) International Organization for Standardizations -- 27005 (ISO-27005)

Eccouncil 512-50 Exam - Topic 4 Question 78 Discussion

Actual exam question for Eccouncil's 512-50 exam
Question #: 78
Topic #: 4
[All 512-50 Questions]

An organization is looking for a framework to measure the efficiency and effectiveness of their Information Security Management System. Which of the following international standards can BEST assist this organization?

Show Suggested Answer Hide Answer
Suggested Answer: A

Contribute your Thoughts:

0/2000 characters
Kimberlie
9 hours ago
Totally agree, ISO-27004 is specifically designed for this!
upvoted 0 times
...
Chana
2 months ago
Wait, isn't PCI-DSS just for payment security?
upvoted 0 times
...
Beckie
2 months ago
I think COBIT is more comprehensive for governance.
upvoted 0 times
...
Hubert
2 months ago
ISO-27004 is the one for measuring effectiveness!
upvoted 0 times
...
Earleen
2 months ago
Not sure if ISO-27005 is relevant here, sounds more like risk management.
upvoted 0 times
...
Stephanie
2 months ago
Wait, isn't PCI-DSS more about compliance than effectiveness?
upvoted 0 times
...
Kirk
2 months ago
I think COBIT has a broader scope though.
upvoted 0 times
...
Belen
3 months ago
Totally agree, ISO-27004 is the way to go!
upvoted 0 times
...
Rossana
3 months ago
ISO-27004 is specifically for measuring ISMS effectiveness.
upvoted 0 times
...
Marion
3 months ago
I vaguely recall that PCI-DSS is more about compliance for payment data, so it probably wouldn't help with overall ISMS efficiency.
upvoted 0 times
...
Jaime
3 months ago
I feel like ISO-27005 is more about risk management rather than measuring effectiveness, so I don't think that's the answer.
upvoted 0 times
...
Haydee
3 months ago
I remember studying COBIT for governance and management, but I'm not convinced it's the best for measuring efficiency specifically.
upvoted 0 times
...
Jesus
3 months ago
I think ISO-27004 is the right choice since it focuses on measuring the effectiveness of information security management systems, but I'm not entirely sure.
upvoted 0 times
...

Save Cancel