Question 1

Which of the following focuses primarily on the technical issues of keeping systems up and running?

Accepted Answer

A) Business continuity planning 
B) Security policies 
C) Disaster recovery planning 
D) An AUP 
E) An information systems audit 
A) Business continuity planning 
B) Security policies 
C) Disaster recovery planning 
D) An AUP 
E) An information systems audit

Question 2

What is the role of an information systems audit?

Accepted Answer

An information systems audit examines th

Question 3

Evil twins are:

Accepted Answer

A) Trojan horses that appear to the user to be a legitimate commercial software application. 
B) email messages that mimic the email messages of a legitimate business. 
C) fraudulent websites that mimic a legitimate business's website. 
D) computers that fraudulently access a website or network using the IP address and identification of an authorized computer. 
E) bogus wireless network access points that look legitimate to users. 
A) Trojan horses that appear to the user to be a legitimate commercial software application. 
B) email messages that mimic the email messages of a legitimate business. 
C) fraudulent websites that mimic a legitimate business's website. 
D) computers that fraudulently access a website or network using the IP address and identification of an authorized computer. 
E) bogus wireless network access points that look legitimate to users.

Question 4

A Trojan horse:

Accepted Answer

A) is software that appears to be benign but does something other than expected. 
B) is a virus installed as a drive-by download. 
C) is malware named for a breed of fast-moving Near-Eastern horses. 
D) installs spyware on users' computers. 
E) is a type of sniffer used to infiltrate corporate networks. 
A) is software that appears to be benign but does something other than expected. 
B) is a virus installed as a drive-by download. 
C) is malware named for a breed of fast-moving Near-Eastern horses. 
D) installs spyware on users' computers. 
E) is a type of sniffer used to infiltrate corporate networks.

Question 5

An analysis of an information system that rates the likelihood of a security incident occurring and its cost would be included in which of the following?

Accepted Answer

A) Security policy 
B) AUP 
C) Risk assessment 
D) Business impact analysis 
E) Business continuity plan 
A) Security policy 
B) AUP 
C) Risk assessment 
D) Business impact analysis 
E) Business continuity plan

Question 6

Which of the following is a virus that uses flaws in Windows software to take over a computer remotely?

Accepted Answer

A) Sasser 
B) Zeus 
C) Cryptolocker 
D) ILOVEYOU 
E) Conficker 
A) Sasser 
B) Zeus 
C) Cryptolocker 
D) ILOVEYOU 
E) Conficker

Question 7

Pharming involves:

Accepted Answer

A) redirecting users to a fraudulent website even when the user has typed in the correct address in the web browser. 
B) pretending to be a legitimate business's representative in order to garner information about a security system. 
C) setting up fake website to ask users for confidential information. 
D) using emails for threats or harassment. 
E) setting up fake Wi-Fi access points that look as if they are legitimate public networks. 
A) redirecting users to a fraudulent website even when the user has typed in the correct address in the web browser. 
B) pretending to be a legitimate business's representative in order to garner information about a security system. 
C) setting up fake website to ask users for confidential information. 
D) using emails for threats or harassment. 
E) setting up fake Wi-Fi access points that look as if they are legitimate public networks.

Question 8

Which of the following is an example of a keylogger?

Accepted Answer

A) Zeus 
B) Conficker 
C) Sasser 
D) ILOVEYOU 
E) Cryptolocker 
A) Zeus 
B) Conficker 
C) Sasser 
D) ILOVEYOU 
E) Cryptolocker

Question 9

Comprehensive security management products,with tools for firewalls,VPNs,intrusion detection systems,and more,are called ________ systems.

Accepted Answer

A) DPI 
B) MSSP 
C) NSP 
D) PKI 
E) UTM 
A) DPI 
B) MSSP 
C) NSP 
D) PKI 
E) UTM

Question 10

How does disaster recovery planning differ from business continuity planning?

Accepted Answer

Disaster recovery planning devises plans

Question 11

A computer virus replicates more quickly than a computer worm.

Accepted Answer

A) True 
 B)False

Question 12

DoS attacks flood a network server with thousands of requests for service.

Accepted Answer

A) True 
 B)False

Question 13

An employee clicks on a link in an email from what looks like a fellow employee and is taken to a fraudulent web site which asks for personal information is an example of:

Accepted Answer

A) click fraud. 
B) DDOS attack. 
C) spear phishing. 
D) pharming. 
E) identity theft. 
A) click fraud. 
B) DDOS attack. 
C) spear phishing. 
D) pharming. 
E) identity theft.

Question 14

Which of the following refers to all of the methods,policies,and organizational procedures that ensure the safety of the organization's assets,the accuracy and reliability of its accounting records,and operational adherence to management standards?

Accepted Answer

A) Legacy systems 
B) SSID standards 
C) Vulnerabilities 
D) Security policy 
E) Controls 
A) Legacy systems 
B) SSID standards 
C) Vulnerabilities 
D) Security policy 
E) Controls

Question 15

Wireless networks are more difficult for hackers to gain access to because radio frequency bands are difficult to scan.

Accepted Answer

A) True 
 B)False

Question 16

Packet filtering catches most types of network attacks.

Accepted Answer

A) True 
 B)False

Question 17

What are the security challenges faced by wireless networks?

Accepted Answer

Wireless networks are vulnerable because

Question 18

When a hacker discovers a security hole in software that is unknown to the software vendor,it is an example of:

Accepted Answer

A) sniffing. 
B) social engineering. 
C) phishing. 
D) zero-day vulnerability. 
E) snooping. 
A) sniffing. 
B) social engineering. 
C) phishing. 
D) zero-day vulnerability. 
E) snooping.

Question 19

The HIPAA Act of 1996:

Accepted Answer

A) requires financial institutions to ensure the security of customer data. 
B) specifies best practices in information systems security and control. 
C) imposes responsibility on companies and management to safeguard the accuracy of financial information. 
D) outlines medical security and privacy rules. 
E) identifies computer abuse as a crime and defines abusive activities. 
A) requires financial institutions to ensure the security of customer data. 
B) specifies best practices in information systems security and control. 
C) imposes responsibility on companies and management to safeguard the accuracy of financial information. 
D) outlines medical security and privacy rules. 
E) identifies computer abuse as a crime and defines abusive activities.

Question 20

A statement ranking information risks and identifying security goals would be included in which of the following?

Accepted Answer

A) Security policy 
B) AUP 
C) Risk assessment 
D) Business impact analysis 
E) Business continuity plan 
A) Security policy 
B) AUP 
C) Risk assessment 
D) Business impact analysis 
E) Business continuity plan

Which of the following focuses primarily on the technical issues of keeping systems up and running?

What is the role of an information systems audit?

Evil twins are:

A Trojan horse:

An analysis of an information system that rates the likelihood of a security incident occurring and its cost would be included in which of the following?

Which of the following is a virus that uses flaws in Windows software to take over a computer remotely?

Pharming involves:

Which of the following is an example of a keylogger?

Comprehensive security management products,with tools for firewalls,VPNs,intrusion detection systems,and more,are called ________ systems.

How does disaster recovery planning differ from business continuity planning?

A computer virus replicates more quickly than a computer worm.

DoS attacks flood a network server with thousands of requests for service.

An employee clicks on a link in an email from what looks like a fellow employee and is taken to a fraudulent web site which asks for personal information is an example of:

Which of the following refers to all of the methods,policies,and organizational procedures that ensure the safety of the organization's assets,the accuracy and reliability of its accounting records,and operational adherence to management standards?

Wireless networks are more difficult for hackers to gain access to because radio frequency bands are difficult to scan.

Packet filtering catches most types of network attacks.

What are the security challenges faced by wireless networks?

When a hacker discovers a security hole in software that is unknown to the software vendor,it is an example of:

The HIPAA Act of 1996:

A statement ranking information risks and identifying security goals would be included in which of the following?

Information Systems in Global Business Today

Global E-Business and Collaboration

Information Systems,organizations,and Strategy

Ethical and Social Issues in Information Systems

It Infrastructure and Emerging Technologies

Foundations of Business Intelligence:

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy:

E-Commerce: Digital Markets, digital Goods

Managing Knowledge and Artificial Intelligence

Enhancing Decision Making

Building Information Systems

Managing Projects

Managing Global Systems

Filters

Exam 8: Securing Information Systems

Which of the following focuses primarily on the technical issues of keeping systems up and running?

What is the role of an information systems audit?

Evil twins are:

A Trojan horse:

An analysis of an information system that rates the likelihood of a security incident occurring and its cost would be included in which of the following?

Which of the following is a virus that uses flaws in Windows software to take over a computer remotely?

Pharming involves:

Which of the following is an example of a keylogger?

Comprehensive security management products,with tools for firewalls,VPNs,intrusion detection systems,and more,are called ________ systems.

How does disaster recovery planning differ from business continuity planning?

A computer virus replicates more quickly than a computer worm.

DoS attacks flood a network server with thousands of requests for service.

An employee clicks on a link in an email from what looks like a fellow employee and is taken to a fraudulent web site which asks for personal information is an example of:

Which of the following refers to all of the methods,policies,and organizational procedures that ensure the safety of the organization's assets,the accuracy and reliability of its accounting records,and operational adherence to management standards?

Wireless networks are more difficult for hackers to gain access to because radio frequency bands are difficult to scan.

Packet filtering catches most types of network attacks.

What are the security challenges faced by wireless networks?

When a hacker discovers a security hole in software that is unknown to the software vendor,it is an example of:

The HIPAA Act of 1996:

A statement ranking information risks and identifying security goals would be included in which of the following?

Information Systems in Global Business Today

Global E-Business and Collaboration

Information Systems,organizations,and Strategy

Ethical and Social Issues in Information Systems

It Infrastructure and Emerging Technologies

Foundations of Business Intelligence:

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy:

E-Commerce: Digital Markets, digital Goods

Managing Knowledge and Artificial Intelligence

Enhancing Decision Making

Building Information Systems

Managing Projects

Managing Global Systems

Filters