Question 1

Which of the following is an example of inadvertent human error:

Accepted Answer

A)  sabotage 
B)  a procedure problem 
C)  pretexting 
D)  theft 
A)  sabotage 
B)  a procedure problem 
C)  pretexting 
D)  theft

Question 2

A __________ is a systematic evaluation of security by assessing how well the security safeguards conform to established criteria.

Accepted Answer

A)  security audit 
B)  systems analysis 
C)  a recovery procedure 
D)  a security screening 
A)  security audit 
B)  systems analysis 
C)  a recovery procedure 
D)  a security screening

Question 3

Management needs to cultivate a culture of compliance.

Accepted Answer

A) True 
 B)False

Question 4

Your browser automatically stores a history of your browsing activities and temporary files that contain sensitive data about where you've visited,what you've purchased,and what your account names and passwords are.

Accepted Answer

A) True 
 B)False

Question 5

What is two-factor authentication?

Accepted Answer

In two-factor authentication,also called

Question 6

An organization should store all back-up database copies of premises for easier access.

Accepted Answer

A) True 
 B)False

Question 7

When criminals replace a legitimate user or software program with their own access or illegitimate software program to give the attacker unauthorized control of some part of the IS,it is known as:

Accepted Answer

A)  usurpation 
B)  an overflow attack 
C)  SQL injection attack 
D)  malware 
A)  usurpation 
B)  an overflow attack 
C)  SQL injection attack 
D)  malware

Question 8

A firewall can be a special use computer,or it can be an app on a general-purpose computer or router.

Accepted Answer

A) True 
 B)False

Question 9

Security is a trade-off with_________.

Accepted Answer

A)  benefits 
B)  risks 
C)  freedom 
D)  defense 
A)  benefits 
B)  risks 
C)  freedom 
D)  defense

Question 10

A user logs onto a banking website with their user id: email address and password: qwerty.This password is very common,so the user is prompted to provide extra information,such as a simple challenge-response exercise,this is an example of:

Accepted Answer

A)  symmetric encryption 
B)  asymmetric encryption 
C)  biometric authentication 
D)  CAPTCHA 
A)  symmetric encryption 
B)  asymmetric encryption 
C)  biometric authentication 
D)  CAPTCHA

Question 11

After the initial response to the disaster or incident,computer forensics can help determine
the cause of the event.

Accepted Answer

A) True 
 B)False

Question 12

What are the minimum requirements for a company wide security policy include?

Accepted Answer

•What sensitive data the organization wi

Question 13

Every organization should have an incident response plan as part of the security program.

Accepted Answer

A) True 
 B)False

Question 14

What are some safeguards that can be taken by people/organizations to safeguard against threats and vulnerabilities?

Accepted Answer

You can conduct online credit card trans

Question 15

__________ is a technique for intercepting computer communications.

Accepted Answer

A)  Spoofing 
B)  Phishing 
C)  Pretexting 
D)  Sniffing 
A)  Spoofing 
B)  Phishing 
C)  Pretexting 
D)  Sniffing

Question 16

What are the recommended personal security safeguards:

Accepted Answer

•Create strong and multiple passwords.

Question 17

Describe how SSL/TLS works when a system communicates securely with a Web site.

Accepted Answer

The computer obtains the public key of t

Question 18

Describe the three types of impersonation that can lead to data loss and provide an example for each:

Accepted Answer

Pretexting occurs when someone deceives

Question 19

_________is simply the chance of loss.

Accepted Answer

A)  Threat 
B)  Vulnerability 
C)  Risk 
D)  Target 
A)  Threat 
B)  Vulnerability 
C)  Risk 
D)  Target

Question 20

Which of the following is a difference between a public key and a private key?

Accepted Answer

A)  A private key is used for encoding messages, and a public key is used for decoding them. 
B)  A public key is used in asymmetric encryption, whereas a private key is used in symmetric encryption. 
C)  A public key is used in symmetric encryption, whereas a private key is used in asymmetric encryption. 
D)  A public key is used for encoding messages, and a private key is used for decoding them. 
A)  A private key is used for encoding messages, and a public key is used for decoding them. 
B)  A public key is used in asymmetric encryption, whereas a private key is used in symmetric encryption. 
C)  A public key is used in symmetric encryption, whereas a private key is used in asymmetric encryption. 
D)  A public key is used for encoding messages, and a private key is used for decoding them.

Which of the following is an example of inadvertent human error:

A __________ is a systematic evaluation of security by assessing how well the security safeguards conform to established criteria.

Management needs to cultivate a culture of compliance.

Your browser automatically stores a history of your browsing activities and temporary files that contain sensitive data about where you've visited,what you've purchased,and what your account names and passwords are.

What is two-factor authentication?

An organization should store all back-up database copies of premises for easier access.

When criminals replace a legitimate user or software program with their own access or illegitimate software program to give the attacker unauthorized control of some part of the IS,it is known as:

A firewall can be a special use computer,or it can be an app on a general-purpose computer or router.

Security is a trade-off with_________.

A user logs onto a banking website with their user id: email address and password: qwerty.This password is very common,so the user is prompted to provide extra information,such as a simple challenge-response exercise,this is an example of:

After the initial response to the disaster or incident,computer forensics can help determine the cause of the event.

What are the minimum requirements for a company wide security policy include?

Every organization should have an incident response plan as part of the security program.

What are some safeguards that can be taken by people/organizations to safeguard against threats and vulnerabilities?

__________ is a technique for intercepting computer communications.

What are the recommended personal security safeguards:

Describe how SSL/TLS works when a system communicates securely with a Web site.

Describe the three types of impersonation that can lead to data loss and provide an example for each:

_________is simply the chance of loss.

Which of the following is a difference between a public key and a private key?

The Importance of MIS

Business Processes, Information Systems, and Information

Networks and the Cloud

Database Processing

Using Is to Improve Processes

Supporting Processes With ERP Systems

Supporting the Procurement Process With SAP

Supporting the Sales Process With SAP

Collaboration and IS

Social Media and IS

Business Intelligence and IS

Filters

Exam 5: Information Systems Security

Which of the following is an example of inadvertent human error:

A __________ is a systematic evaluation of security by assessing how well the security safeguards conform to established criteria.

Management needs to cultivate a culture of compliance.

Your browser automatically stores a history of your browsing activities and temporary files that contain sensitive data about where you've visited,what you've purchased,and what your account names and passwords are.

What is two-factor authentication?

An organization should store all back-up database copies of premises for easier access.

When criminals replace a legitimate user or software program with their own access or illegitimate software program to give the attacker unauthorized control of some part of the IS,it is known as:

A firewall can be a special use computer,or it can be an app on a general-purpose computer or router.

Security is a trade-off with_________.

A user logs onto a banking website with their user id: email address and password: qwerty.This password is very common,so the user is prompted to provide extra information,such as a simple challenge-response exercise,this is an example of:

After the initial response to the disaster or incident,computer forensics can help determine the cause of the event.

What are the minimum requirements for a company wide security policy include?

Every organization should have an incident response plan as part of the security program.

What are some safeguards that can be taken by people/organizations to safeguard against threats and vulnerabilities?

__________ is a technique for intercepting computer communications.

What are the recommended personal security safeguards:

Describe how SSL/TLS works when a system communicates securely with a Web site.

Describe the three types of impersonation that can lead to data loss and provide an example for each:

_________is simply the chance of loss.

Which of the following is a difference between a public key and a private key?

The Importance of MIS

Business Processes, Information Systems, and Information

Networks and the Cloud

Database Processing

Using Is to Improve Processes

Supporting Processes With ERP Systems

Supporting the Procurement Process With SAP

Supporting the Sales Process With SAP

Collaboration and IS

Social Media and IS

Business Intelligence and IS

Filters