Exam 4: Information Security and Controls

Your company's headquarters was just hit head-on by a hurricane, and the building has lost power. The company sends you to their hot site to minimize downtime from the disaster. Which of the following statements is true?

Free

(Multiple Choice)

4.7/5

(28)

Question 1

Correct Answer:

Verified

_____ is the process in which an organization assesses the value of each asset being protected, estimates the probability that it will be compromised, and compares the probable costs of an attack with the costs of protecting the asset.

Free

(Multiple Choice)

4.7/5

(36)

Question 2

Correct Answer:

Verified

Authentication and authorization are synonyms.

Free

(True/False)

4.9/5

(37)

Question 3

Correct Answer:

Verified

False

Identify and discuss the factors that are contributing to the increasing vulnerability of organizational information assets.

(Not Answered)

Question 4

This question doesn't have any answer yet

Ask our community

_____ controls are concerned with user identification, and they restrict unauthorized individuals from using information resources.

(Multiple Choice)

4.7/5

(40)

Question 5

Organizations utilize layers of controls because they face so many diverse threats to information security.

(True/False)

4.7/5

(35)

Question 6

Biometrics are an example of:

(Multiple Choice)

4.7/5

(35)

Question 7

_____ involves building an inappropriate trust relationship with employees for the purpose of gaining sensitive information or unauthorized access privileges.

(Multiple Choice)

4.8/5

(35)

Question 8

Contrast the four types of authentication.

(Not Answered)

Question 9

This question doesn't have any answer yet

Ask our community

____________ is an intellectual work, such as a business plan, that is a company secret and is not based on public information.

(Multiple Choice)

4.9/5

(27)

Question 10

Employees in which functional areas of the organization pose particularly grave threats to information security?

(Multiple Choice)

4.8/5

(39)

Question 11

Bob is using public key encryption to send a message to Ted. Bob encrypts the message with Ted's _ key, and Ted decrypts the message using his _ key.

(Multiple Choice)

4.7/5

(41)

Question 12

Which of the following is a characteristic of backups?

(Multiple Choice)

4.8/5

(29)

Question 13

Define the principle of least privilege, and consider how an organization's senior executives might view the application of this principle.

(Not Answered)

Question 14

This question doesn't have any answer yet

Ask our community

A _____ attack uses deception to fraudulently acquire sensitive personal information by masquerading as an official e-mail.

(Multiple Choice)

4.9/5

(34)

Question 15

Dumpster diving is always illegal because it involves trespassing on private property.

(True/False)

4.9/5

(42)

Question 16

When companies attempt to counter _ by requiring users to accurately select characters in turn from a series of boxes, attackers respond by using _.

(Multiple Choice)

4.8/5

(38)

Question 17

In the "Catching a Hacker" case study. The purpose of SpyEye is to _____________.

(Multiple Choice)

5.0/5

(36)

Question 18

Not logging off the company network when gone from the office for any extended period of time is an example of which type of human mistake?

(Multiple Choice)

4.8/5

(29)

Question 19

According to the "Catching a Hacker" case, ____________ is one of the most sophisticated and destructive malicious software programs ever developed.

(Multiple Choice)

4.7/5

(32)

Question 20

Showing 1 - 20 of 129

Your company's headquarters was just hit head-on by a hurricane, and the building has lost power. The company sends you to their hot site to minimize downtime from the disaster. Which of the following statements is true?

_____ is the process in which an organization assesses the value of each asset being protected, estimates the probability that it will be compromised, and compares the probable costs of an attack with the costs of protecting the asset.

Authentication and authorization are synonyms.

Identify and discuss the factors that are contributing to the increasing vulnerability of organizational information assets.

_____ controls are concerned with user identification, and they restrict unauthorized individuals from using information resources.

Organizations utilize layers of controls because they face so many diverse threats to information security.

Biometrics are an example of:

_____ involves building an inappropriate trust relationship with employees for the purpose of gaining sensitive information or unauthorized access privileges.

Contrast the four types of authentication.

____________ is an intellectual work, such as a business plan, that is a company secret and is not based on public information.

Employees in which functional areas of the organization pose particularly grave threats to information security?

Bob is using public key encryption to send a message to Ted. Bob encrypts the message with Ted's _ key, and Ted decrypts the message using his _ key.

Which of the following is a characteristic of backups?

Define the principle of least privilege, and consider how an organization's senior executives might view the application of this principle.

A _____ attack uses deception to fraudulently acquire sensitive personal information by masquerading as an official e-mail.

Dumpster diving is always illegal because it involves trespassing on private property.

When companies attempt to counter _ by requiring users to accurately select characters in turn from a series of boxes, attackers respond by using _.

In the "Catching a Hacker" case study. The purpose of SpyEye is to _____________.

Not logging off the company network when gone from the office for any extended period of time is an example of which type of human mistake?

According to the "Catching a Hacker" case, ____________ is one of the most sophisticated and destructive malicious software programs ever developed.

Introduction to Information Systems

Organizational Strategy, Competitive Advantage, and Information Systems

Ethics and Privacy

Data and Knowledge Management

Telecommunications and Networking

E-Business and E-Commerce

Wireless, Mobile Computing, and Mobile Commerce

Social Computing

Information Systems Within the Organization

Customer Relationship Management and Supply Chain Management

Business Intelligence

Acquiring Information Systems and Applications

Technology Guide 1 : Hardware

Technology Guide 2 : Software

Technology Guide 3 : Cloud Computing

Technology Guide 4 : Intelligent Systems

Technology Guide 5 Protecting Your Information Assets

Filters

Exam 4: Information Security and Controls

Your company's headquarters was just hit head-on by a hurricane, and the building has lost power. The company sends you to their hot site to minimize downtime from the disaster. Which of the following statements is true?

_____ is the process in which an organization assesses the value of each asset being protected, estimates the probability that it will be compromised, and compares the probable costs of an attack with the costs of protecting the asset.

Authentication and authorization are synonyms.

Identify and discuss the factors that are contributing to the increasing vulnerability of organizational information assets.

_____ controls are concerned with user identification, and they restrict unauthorized individuals from using information resources.

Organizations utilize layers of controls because they face so many diverse threats to information security.

Biometrics are an example of:

_____ involves building an inappropriate trust relationship with employees for the purpose of gaining sensitive information or unauthorized access privileges.

Contrast the four types of authentication.

____________ is an intellectual work, such as a business plan, that is a company secret and is not based on public information.

Employees in which functional areas of the organization pose particularly grave threats to information security?

Bob is using public key encryption to send a message to Ted. Bob encrypts the message with Ted's _____ key, and Ted decrypts the message using his _____ key.

Which of the following is a characteristic of backups?

Define the principle of least privilege, and consider how an organization's senior executives might view the application of this principle.

A _____ attack uses deception to fraudulently acquire sensitive personal information by masquerading as an official e-mail.

Dumpster diving is always illegal because it involves trespassing on private property.

When companies attempt to counter _____ by requiring users to accurately select characters in turn from a series of boxes, attackers respond by using _____.

In the "Catching a Hacker" case study. The purpose of SpyEye is to _____________.

Not logging off the company network when gone from the office for any extended period of time is an example of which type of human mistake?

According to the "Catching a Hacker" case, ____________ is one of the most sophisticated and destructive malicious software programs ever developed.

Introduction to Information Systems

Organizational Strategy, Competitive Advantage, and Information Systems

Ethics and Privacy

Data and Knowledge Management

Telecommunications and Networking

E-Business and E-Commerce

Wireless, Mobile Computing, and Mobile Commerce

Social Computing

Information Systems Within the Organization

Customer Relationship Management and Supply Chain Management

Business Intelligence

Acquiring Information Systems and Applications

Technology Guide 1 : Hardware

Technology Guide 2 : Software

Technology Guide 3 : Cloud Computing

Technology Guide 4 : Intelligent Systems

Technology Guide 5 Protecting Your Information Assets

Filters

Bob is using public key encryption to send a message to Ted. Bob encrypts the message with Ted's _ key, and Ted decrypts the message using his _ key.

When companies attempt to counter _ by requiring users to accurately select characters in turn from a series of boxes, attackers respond by using _.