Exam 1: Introduction to Information Security

Information has ____________________ when it is whole, complete, and uncorrupted.

People with the primary responsibility for administering the systems that house the information used by the organization perform the role of ____.

During the __________ phase, specific technologies are selected to support the alternatives identified and evaluated in the prior phases.

Of the two approaches to information security implementation, the top-down approach has a higher probability of success. _________________________

A(n) project team should consist of a number of individuals who are experienced in one or multiple facets of the technical and nontechnical areas. _________________________

In the physical design phase, specific technologies are selected.

__________ has become a widely accepted evaluation standard for training and education related to the security of information systems.

The implementation phase is the longest and most expensive phase of the systems development life cycle (SDLC).

Any event or circumstance that has the potential to adversely affect operations and assets is known as a(n) ​_________.

SecOps focuses on integrating the need for the development team to provide iterative and rapid improvements to system functionality and the need for the operations team to improve security and minimize the disruption from software release cycles. _________________________

Using a methodology will usually have no effect on the probability of success.

The Analysis phase of the SDLC examines the event or plan that initiates the process and specifies the objectives, constraints, and scope of the project. _________________________

____________________ enables authorized users-people or computer systems-to access information without interference or obstruction and to receive it in the required format.

Network security focuses on the protection of physical items, objects, or areas from unauthorized access and misuse.

Which of the following is a valid type of role when it comes to data ownership?

E-mail spoofing involves sending an e-mail message with a harmful attachment.

In the ____________________ approach, the project is initiated by upper-level managers who issue policy, procedures, and processes, dictate the goals and expected outcomes, and determine accountability for each required action.

An emerging methodology to integrate the effort of the development team and the operations team to improve the functionality and security of applications is known as __________.

List and describe the phases of the traditional systems development life cycle.

Confidentiality ensures that only those with the rights and privileges to access information are able to do so. _________________________