Exam 1: Introduction to Security

What process describes using technology as a basis for controlling the access and usage of sensitive data?

Which of the following are considered threat actors? (Choose all that apply. )

Under which laws are health care enterprises required to guard protected health information and implement policies and procedures whether it be in paper or electronic format?

What term is used to describe a group that is strongly motivated by ideology,but is usually not considered to be well-defined and well-organized?

Smart phones give the owner of the device the ability to download security updates.

The Security Administrator reports directly to the CIO.

Information security is achieved through a combination of what three entities? Provide at least one example of each entity.

What is the Payment Card Industry Data Security Standard (PCI DSS)?

Why are there delays in updating products such as anti-virus software to resist attacks?

What are the four different risk response techniques?

Brokers steal new product research or a list of current customers to gain a competitive advantage.

List and describe three of the characteristics of information that must be protected by information security?

What is occurring when an attacker manipulates commonplace actions that are routinely performed in a business?

A vulnerability is a flaw or weakness that allows a threat to bypass security.

The CompTIA Security+ certification is a vendor-neutral credential.

According to the U.S.Bureau of Labor Statistics,what percentage of growth for information security analysts is the available job outlook supposed to reach through 2024?

Which position below is considered an entry-level position for a person who has the necessary technical skills?

One of the challenges in combating cyberterrorism is that many of the prime targets are not owned and managed by the federal government.

What level of security access should a computer user have to do their job?

In information security,what can constitute a loss?