Exam 1: Introduction to Information Security

According to the CNSS, networking is "the protection of information and its critical elements." _________________________

Information has redundancy when it is free from mistakes or errors and it has the value that the end user expects. _________________________

__________ was the first operating system to integrate security as one of its core functions.

A type of SDLC in which each phase has results that flow into the next phase is called the __________ model.

A frequently overlooked component of an information system, ____________________ are the written instructions for accomplishing a specific task.

The investigation phase of the SDLC involves specification of the objectives, constraints, and scope of the project.

Hardware is often the most valuable asset possessed by an organization, and it is the main target of intentional attacks.

A(n) hardware system is the entire set of people, procedures, and technology that enable business to use information. _________________________

To achieve balance-that is, to operate an information system that satisfies the user and the security professional-the security level must allow reasonable access, yet protect against threats.

The Internet brought ____________________ to virtually all computers that could reach a phone line or an Internet-connected local area network.

A champion is a project manager, who may be a departmental line manager or staff unit manager, and has expertise in project management and information security technical requirements.

A subject or object's ability to use, manipulate, modify, or affect another subject or object is known as ___________.

The roles of information security professionals are almost always aligned with the goals and mission of the information security community of interest.

A(n) ____________________ is a formal approach to solving a problem by means of a structured sequence of procedures.

Key end users should be assigned to a developmental team, known as the united application development team. _________________________

A breach of possession may not always result in a breach of confidentiality.

During the ____________________ phase of the systems life cycle, the process begins by examining the event or plan that initiated the process. During this phase, the objectives, constraints, and scope of the project are specified.

When a computer is the subject of an attack, it is the entity being attacked.

Describe the multiple types of security systems present in many organizations.

The ____________________ component of an information system comprises applications, operating systems, and assorted command utilities.