Exam 12: Managing Information Security and Privacy

Computing infrastructure should be located in ________ buildings designed to house expensive and critical equipment.

Some of the biggest security threats are from ________ employees.

________ is an organization-wide function that is in charge of developing data policies and enforcing data standards.

PIPEDA gives individuals the right to know why an organization is ________ their personal information.

People who intentionally gain unauthorized access to computer systems are called hackers.

The purpose of a(n)________ is to protect databases and other organizational data.

A retinal scan would be considered a biometric authentication technique.

Hardened web sites use special versions of the operating systems and functions that are not required by the application.

A ________ is a remote processing centre run by a commercial disaster-recovery service that provides all the equipment needed to continue operations after a disaster.

A company should clearly define the security ________ for each position.

Denial of service always occurs because of malicious attacks on the system.

Despite warnings,users have a tendency to write their passwords on sticky notes next to the computer.

Malware is used in denial of service attacks.

Bloggers have not yet had much of an impact on the main stream media.

________________ is one of the fastest-growing crimes in Canada because it is relatively easy to do.

PIPEDA stands for

User accounts should be given (the)________ to perform their jobs

Most anti-malware programs check e-mail attachments for malware code.

Since most organizations are protected by a(n)________,it is not surprising that most viruses spread via e-mail.

What is a denial of service security problem? How does this result from actions by the various sources of security threats?