Question 1

Cybersecurity is ___________.

Accepted Answer

A) an ongoing unending process 
B) a problem that is solved with hardware or software 
C) defined in the AUP that is enforced periodically 
D) primarily the responsibility of the IT and legal departments 
A) an ongoing unending process 
B) a problem that is solved with hardware or software 
C) defined in the AUP that is enforced periodically 
D) primarily the responsibility of the IT and legal departments

Question 2

Countering cyber-threats demands diligence,determination,and investment.

Accepted Answer

A) True 
 B)False

Question 3

________ is the supervision,monitoring,and control of an organization's IT assets.

Accepted Answer

A) IT governance 
B) Internal control 
C) PCI DSS 
D) FISMA 
A) IT governance 
B) Internal control 
C) PCI DSS 
D) FISMA

Question 4

A person who attempts to find computer security vulnerabilities and exploit them for personal financial gain or other malicious reasons.

Accepted Answer

A) White Hat hacker 
B) Red Hat hacker 
C) Black Hat Hacker 
D) Gray Hat Hacker 
A) White Hat hacker 
B) Red Hat hacker 
C) Black Hat Hacker 
D) Gray Hat Hacker

Question 5

According to cybersecurity experts,most data breaches go unreported because corporate victims fear that disclosure would damage their stock price,or because ________.

Accepted Answer

A) they want to hide the attack from the government 
B) they never knew they were hacked in the first place 
C) they want to cover up the intrusion 
D) they do not have to report them. 
A) they want to hide the attack from the government 
B) they never knew they were hacked in the first place 
C) they want to cover up the intrusion 
D) they do not have to report them.

Question 6

In Cybersecurity terminology,a(n)__________ is defined as a tool or technique that takes advantage of a vulnerability.

Accepted Answer

The answer of In Cybersecurity terminology,a(n)__________ is defined as a...

Question 7

The Payment Card Industry Data Security Standard (PCI DSS)created by Visa,MasterCard,American Express,and Discover is a __________.

Accepted Answer

A) Set of standards required by U.S.and international law for protecting credit card transaction data. 
B) Set of industry standards required for all online merchants that store,process,or transmit cardholder data. 
C) Set of voluntary security guidelines for retailers who accept Visa,MasterCard,American Express,and Discover credit cards. 
D) Set of regulations (that vary from state to state,and country to country)that apply to credit card companies. 
A) Set of standards required by U.S.and international law for protecting credit card transaction data. 
B) Set of industry standards required for all online merchants that store,process,or transmit cardholder data. 
C) Set of voluntary security guidelines for retailers who accept Visa,MasterCard,American Express,and Discover credit cards. 
D) Set of regulations (that vary from state to state,and country to country)that apply to credit card companies.

Question 8

A biometric control is an automated method of verifying the identity of a person,based on physical or behavioral characteristics.

Accepted Answer

A) True 
 B)False

Question 9

Facebook,YouTube,Twitter,LinkedIn,and other social networks are making IT security dangers worse.Why?

Accepted Answer

A) Users invite in and build relationships with others.Cybercriminals hack into these trusted relationships using stolen log-in credentials. 
B) E-mail viruses and malware have been increasing for years even though e-mail security has improved. 
C) Communication has shifted from social networks to smartphones. 
D) Web filtering,user education,and strict policies cannot help prevent IT security dangers on Facebook and other social networks. 
A) Users invite in and build relationships with others.Cybercriminals hack into these trusted relationships using stolen log-in credentials. 
B) E-mail viruses and malware have been increasing for years even though e-mail security has improved. 
C) Communication has shifted from social networks to smartphones. 
D) Web filtering,user education,and strict policies cannot help prevent IT security dangers on Facebook and other social networks.

Question 10

Explain internal fraud.Describe the most effective approach to preventing it.

Accepted Answer

Internal fraud refers to the deliberate

Question 11

When sending sensitive email,James uses a program that transforms data into unreadable text to protect it from being understood by unauthorized users.James is using ________ to protect his email communications.

Accepted Answer

A) Authentication 
B) Defense-in-depth 
C) Encryption 
D) Hashing 
A) Authentication 
B) Defense-in-depth 
C) Encryption 
D) Hashing

Question 12

____________ tactics are used by hackers and corporate spies to trick people into revealing login information or access codes.

Accepted Answer

The answer of ____________ tactics are used by hackers and...

Question 13

Vulnerabilities exist in networks,OSs,apps,databases,mobile devices,and cloud environments.These vulnerabilities are attack vectors for malware,hackers,hactivists,and organized crime.

Accepted Answer

A) True 
 B)False

Question 14

Describe spear phishing.How does spear phishing work?

Accepted Answer

Spear phishers often target select group

Question 15

A defense strategy requires several controls._________are established to protect the system regardless of the specific application.

Accepted Answer

A) Application controls 
B) Physical controls 
C) General controls 
D) Authentication controls 
A) Application controls 
B) Physical controls 
C) General controls 
D) Authentication controls

Question 16

The internal control environment is the work atmosphere that a company sets for its employees and is designed to achieve all of the following except _________.

Accepted Answer

A) Reliability of financial reporting 
B) Secure decision making 
C) Compliance with laws 
D) Compliance with regulations and policies 
A) Reliability of financial reporting 
B) Secure decision making 
C) Compliance with laws 
D) Compliance with regulations and policies

Question 17

Define social engineering.Describe two ways in which social engineering could be used to obtain credentials from a user in order to gain access to an account or network.

Accepted Answer

Social engineering tactics are used by h

Question 18

Indicators of fraud are called __________.

Accepted Answer

The answer of Indicators of fraud are called __________....

Question 19

According to a Mobile Phone report,17 rogue apps managed to get into Google Play and they were downloaded over 700,000 times before being removed.Rogue mobile apps can contain malware or launch phishing attacks.

Accepted Answer

A) True 
 B)False

Question 20

The main cause of data breaches is ________,which is so successful because of ________ when management does not do enough to defend against cyberthreats.

Accepted Answer

A) Hacking;highly motivated hackers 
B) Hacking;negligence 
C) Malware;BYOD 
D) Malware;negligence 
A) Hacking;highly motivated hackers 
B) Hacking;negligence 
C) Malware;BYOD 
D) Malware;negligence

Cybersecurity is ___________.

Countering cyber-threats demands diligence,determination,and investment.

________ is the supervision,monitoring,and control of an organization's IT assets.

A person who attempts to find computer security vulnerabilities and exploit them for personal financial gain or other malicious reasons.

According to cybersecurity experts,most data breaches go unreported because corporate victims fear that disclosure would damage their stock price,or because ________.

In Cybersecurity terminology,a(n)__________ is defined as a tool or technique that takes advantage of a vulnerability.

The Payment Card Industry Data Security Standard (PCI DSS)created by Visa,MasterCard,American Express,and Discover is a __________.

A biometric control is an automated method of verifying the identity of a person,based on physical or behavioral characteristics.

Facebook,YouTube,Twitter,LinkedIn,and other social networks are making IT security dangers worse.Why?

Explain internal fraud.Describe the most effective approach to preventing it.

When sending sensitive email,James uses a program that transforms data into unreadable text to protect it from being understood by unauthorized users.James is using ________ to protect his email communications.

____________ tactics are used by hackers and corporate spies to trick people into revealing login information or access codes.

Vulnerabilities exist in networks,OSs,apps,databases,mobile devices,and cloud environments.These vulnerabilities are attack vectors for malware,hackers,hactivists,and organized crime.

Describe spear phishing.How does spear phishing work?

A defense strategy requires several controls._________are established to protect the system regardless of the specific application.

The internal control environment is the work atmosphere that a company sets for its employees and is designed to achieve all of the following except _________.

Define social engineering.Describe two ways in which social engineering could be used to obtain credentials from a user in order to gain access to an account or network.

Indicators of fraud are called __________.

According to a Mobile Phone report,17 rogue apps managed to get into Google Play and they were downloaded over 700,000 times before being removed.Rogue mobile apps can contain malware or launch phishing attacks.

The main cause of data breaches is ,which is so successful because of when management does not do enough to defend against cyberthreats.

Disruptive IT Impacts Companies, competition, and Careers

Information Systems, IT Architecture, Data Governance, and Cloud Computing

Data Management, Business Intelligence, and Data Analytics

Networks, Collaborative Technology, and the Internet of Things

Search, Semantic, and Recommendation Technology

Web 2.0 and Social Technology

Retail, e-Commerce, and Mobile Commerce Technology

Functional Business Systems

Enterprise Systems

Data Visualization and Geographic Information Systems

IT Strategy, Sourcing, and Strategic Technology Trends

Systems Development and Project Management

IT Ethics, Privacy and Sustainability

Filters

Exam 5: Cybersecurity and Risk Management Technology

Cybersecurity is ___________.

Countering cyber-threats demands diligence,determination,and investment.

________ is the supervision,monitoring,and control of an organization's IT assets.

A person who attempts to find computer security vulnerabilities and exploit them for personal financial gain or other malicious reasons.

According to cybersecurity experts,most data breaches go unreported because corporate victims fear that disclosure would damage their stock price,or because ________.

In Cybersecurity terminology,a(n)__________ is defined as a tool or technique that takes advantage of a vulnerability.

The Payment Card Industry Data Security Standard (PCI DSS)created by Visa,MasterCard,American Express,and Discover is a __________.

A biometric control is an automated method of verifying the identity of a person,based on physical or behavioral characteristics.

Facebook,YouTube,Twitter,LinkedIn,and other social networks are making IT security dangers worse.Why?

Explain internal fraud.Describe the most effective approach to preventing it.

When sending sensitive email,James uses a program that transforms data into unreadable text to protect it from being understood by unauthorized users.James is using ________ to protect his email communications.

____________ tactics are used by hackers and corporate spies to trick people into revealing login information or access codes.

Vulnerabilities exist in networks,OSs,apps,databases,mobile devices,and cloud environments.These vulnerabilities are attack vectors for malware,hackers,hactivists,and organized crime.

Describe spear phishing.How does spear phishing work?

A defense strategy requires several controls._________are established to protect the system regardless of the specific application.

The internal control environment is the work atmosphere that a company sets for its employees and is designed to achieve all of the following except _________.

Define social engineering.Describe two ways in which social engineering could be used to obtain credentials from a user in order to gain access to an account or network.

Indicators of fraud are called __________.

According to a Mobile Phone report,17 rogue apps managed to get into Google Play and they were downloaded over 700,000 times before being removed.Rogue mobile apps can contain malware or launch phishing attacks.

The main cause of data breaches is ________,which is so successful because of ________ when management does not do enough to defend against cyberthreats.

Disruptive IT Impacts Companies, competition, and Careers

Information Systems, IT Architecture, Data Governance, and Cloud Computing

Data Management, Business Intelligence, and Data Analytics

Networks, Collaborative Technology, and the Internet of Things

Search, Semantic, and Recommendation Technology

Web 2.0 and Social Technology

Retail, e-Commerce, and Mobile Commerce Technology

Functional Business Systems

Enterprise Systems

Data Visualization and Geographic Information Systems

IT Strategy, Sourcing, and Strategic Technology Trends

Systems Development and Project Management

IT Ethics, Privacy and Sustainability

Filters

The main cause of data breaches is ,which is so successful because of when management does not do enough to defend against cyberthreats.