Question 1

Which of the following is the first step in risk management?

Accepted Answer

A) create perfect hedges to mitigate the risks 
B) reduce the likelihood of a threat 
C) evaluate the results of the risk management process 
D) assess what the threats are 
A) create perfect hedges to mitigate the risks 
B) reduce the likelihood of a threat 
C) evaluate the results of the risk management process 
D) assess what the threats are D

Question 2

Which of the following observations concerning Secure Socket Layer (SSL)is true?

Accepted Answer

A) It uses only asymmetric encryption. 
B) Most Internet applications,including HTTP,FTP,and email programs,can use it. 
C) It works between Levels 2 and 3 of the TCP-OSI architecture. 
D) It was originally developed by Microsoft. 
A) It uses only asymmetric encryption. 
B) Most Internet applications,including HTTP,FTP,and email programs,can use it. 
C) It works between Levels 2 and 3 of the TCP-OSI architecture. 
D) It was originally developed by Microsoft. B

Question 3

An example of a system-specific security policy would be ________.

Accepted Answer

A) limiting personal use of its computer systems 
B) deciding what customer data from the order-entry system will be shared with other organizations 
C) a general statement of the organization's security program 
D) inspection of personal email for compliance 
A) limiting personal use of its computer systems 
B) deciding what customer data from the order-entry system will be shared with other organizations 
C) a general statement of the organization's security program 
D) inspection of personal email for compliance B

Question 4

Wireless networks are more secure than wired networks.

Accepted Answer

A) True 
 B)False

Question 5

When a hacker floods a Web server with millions of bogus service requests so that it cannot service legitimate requests,this is called a denial-of-service attack.

Accepted Answer

A) True 
 B)False

Question 6

Users should scan their computers with anti-malware programs at least ________.

Accepted Answer

A) once a month 
B) once a year 
C) once a day 
D) once a week 
A) once a month 
B) once a year 
C) once a day 
D) once a week

Question 7

________ occurs when a person gains unauthorized access to a computer system.

Accepted Answer

A) Pretexting 
B) Phishing 
C) Hacking 
D) Spoofing 
A) Pretexting 
B) Phishing 
C) Hacking 
D) Spoofing

Question 8

When an employee notices a virus on his or her machine,the ________ plan should specify what to do.

Accepted Answer

A) disaster recovery 
B) backup 
C) incident response 
D) contingency 
A) disaster recovery 
B) backup 
C) incident response 
D) contingency

Question 9

________ is when someone deceives by pretending to be someone else.

Accepted Answer

A) Hacking 
B) Baiting 
C) Sniffing 
D) Pretexting 
A) Hacking 
B) Baiting 
C) Sniffing 
D) Pretexting

Question 10

Which of the following usually happens in a malicious denial-of-service attack?

Accepted Answer

A) A hacker monitors and intercepts wireless traffic at will. 
B) A hacker floods a Web server with millions of bogus service requests. 
C) A hacker uses unauthorized programs to invade a computer system and replace legitimate programs. 
D) A phisher pretends to be a legitimate company and sends an email requesting confidential data. 
A) A hacker monitors and intercepts wireless traffic at will. 
B) A hacker floods a Web server with millions of bogus service requests. 
C) A hacker uses unauthorized programs to invade a computer system and replace legitimate programs. 
D) A phisher pretends to be a legitimate company and sends an email requesting confidential data.

Question 11

Which of the following observations is true of a cold site?

Accepted Answer

A) It is located in the company's premises. 
B) It is more expensive to lease than a hot site. 
C) Customers will have to install and manage systems themselves. 
D) The total cost is always less than the cost of a hot site. 
A) It is located in the company's premises. 
B) It is more expensive to lease than a hot site. 
C) Customers will have to install and manage systems themselves. 
D) The total cost is always less than the cost of a hot site.

Question 12

Because encryption slows processing,most messages are sent over the Internet as ________.

Accepted Answer

A) zipped files 
B) queries 
C) plaintext 
D) code 
A) zipped files 
B) queries 
C) plaintext 
D) code

Question 13

What are the key elements of a security policy?

Accepted Answer

A security policy starts off with a gene

Question 14

Uncertainty is the likelihood of an adverse occurrence.

Accepted Answer

A) True 
 B)False

Question 15

Even if a potential new hire will not have access to sensitive data and systems,they should be extensively screened for security purposes.

Accepted Answer

A) True 
 B)False

Question 16

Which of the following is an example of a technical safeguard?

Accepted Answer

A) backup and recovery 
B) encryption 
C) procedure design 
D) compliance 
A) backup and recovery 
B) encryption 
C) procedure design 
D) compliance

Question 17

________ is the term used to denote viruses,worms,Trojan horses,spyware,and adware.

Accepted Answer

A) Malware 
B) Executable 
C) Payload 
D) Spam 
A) Malware 
B) Executable 
C) Payload 
D) Spam

Question 18

What is a security threat? What are the three general sources of security threats?

Accepted Answer

A security threat is a challenge to the

Question 19

________ a site means to take extraordinary measures to reduce a system's vulnerability.

Accepted Answer

A) Leveling 
B) Hardening 
C) Authenticating 
D) Certifying 
A) Leveling 
B) Hardening 
C) Authenticating 
D) Certifying

Question 20

When an account is created,the new user should continue to use the safe password provided to him.

Accepted Answer

A) True 
 B)False

Which of the following is the first step in risk management?

Which of the following observations concerning Secure Socket Layer (SSL)is true?

An example of a system-specific security policy would be ________.

Wireless networks are more secure than wired networks.

When a hacker floods a Web server with millions of bogus service requests so that it cannot service legitimate requests,this is called a denial-of-service attack.

Users should scan their computers with anti-malware programs at least ________.

________ occurs when a person gains unauthorized access to a computer system.

When an employee notices a virus on his or her machine,the ________ plan should specify what to do.

________ is when someone deceives by pretending to be someone else.

Which of the following usually happens in a malicious denial-of-service attack?

Which of the following observations is true of a cold site?

Because encryption slows processing,most messages are sent over the Internet as ________.

What are the key elements of a security policy?

Uncertainty is the likelihood of an adverse occurrence.

Even if a potential new hire will not have access to sensitive data and systems,they should be extensively screened for security purposes.

Which of the following is an example of a technical safeguard?

________ is the term used to denote viruses,worms,Trojan horses,spyware,and adware.

What is a security threat? What are the three general sources of security threats?

________ a site means to take extraordinary measures to reduce a system's vulnerability.

When an account is created,the new user should continue to use the safe password provided to him.

The Importance of Mis

Collaboration Information Systems

Information Systems for Competitive Advantage

Hardware and Software

Database Processing

Data Communications

How the Internet Works

Business Process Management

E-Commerce and Web 2.0

Business Intelligence Systems

Managing Development

Information Systems Management

International Dimension 1 - the Global Economy

International Dimension 2 - Global Communication

International Dimension 3 - Global Is and the Value Chain

International Dimension 4 - International It Management and Development

Filters

Exam 13: Information Security Management

Which of the following is the first step in risk management?

Which of the following observations concerning Secure Socket Layer (SSL)is true?

An example of a system-specific security policy would be ________.

Wireless networks are more secure than wired networks.

When a hacker floods a Web server with millions of bogus service requests so that it cannot service legitimate requests,this is called a denial-of-service attack.

Users should scan their computers with anti-malware programs at least ________.

________ occurs when a person gains unauthorized access to a computer system.

When an employee notices a virus on his or her machine,the ________ plan should specify what to do.

________ is when someone deceives by pretending to be someone else.

Which of the following usually happens in a malicious denial-of-service attack?

Which of the following observations is true of a cold site?

Because encryption slows processing,most messages are sent over the Internet as ________.

What are the key elements of a security policy?

Uncertainty is the likelihood of an adverse occurrence.

Even if a potential new hire will not have access to sensitive data and systems,they should be extensively screened for security purposes.

Which of the following is an example of a technical safeguard?

________ is the term used to denote viruses,worms,Trojan horses,spyware,and adware.

What is a security threat? What are the three general sources of security threats?

________ a site means to take extraordinary measures to reduce a system's vulnerability.

When an account is created,the new user should continue to use the safe password provided to him.

The Importance of Mis

Collaboration Information Systems

Information Systems for Competitive Advantage

Hardware and Software

Database Processing

Data Communications

How the Internet Works

Business Process Management

E-Commerce and Web 2.0

Business Intelligence Systems

Managing Development

Information Systems Management

International Dimension 1 - the Global Economy

International Dimension 2 - Global Communication

International Dimension 3 - Global Is and the Value Chain

International Dimension 4 - International It Management and Development

Filters