PECB Lead Auditor (ISO/IEC 27001) — Question 30
You are an experienced ISMS audit team leader. You are providing an introduction to ISO/IEC 27001:2022 to a class of Quality Management System Auditors who are seeking to retrain to enable them to carry out information security management system audits.
You ask them which of the following characteristics of information does an information security management system seek to preserve?
Which three answers should they provide? (Choose three.)
Answer options
- A. Importance
- B. Completeness
- C. Accessibility
- D. Integrity
- E. Availability
- F. Confidentiality
- G. Efficiency
- H. Clarity
Correct answer: B, D, F
Explanation
The correct answers are B, D, and F, which correspond to Completeness, Integrity, and Confidentiality. These characteristics are fundamental to ensuring that information is accurate, reliable, and protected from unauthorized access. The other options, while relevant in different contexts, do not specifically denote the core characteristics preserved by an information security management system.