Question 1

Describe four requirements of effective passwords .

Accepted Answer

1.Strong passwords should be at least 8

Question 2

A special purpose hardware device or software running on a general purpose computer,which filters information that is allowed to enter and leave the organization's information system,is known as a(n)

Accepted Answer

A) demilitarized zone. 
B) intrusion detection system. 
C) intrusion prevention system. 
D) firewall. 
A) demilitarized zone. 
B) intrusion detection system. 
C) intrusion prevention system. 
D) firewall.

Question 3

Which of the following is not a requirement of effective passwords?

Accepted Answer

A) Passwords should be changed at regular intervals. 
B) Passwords should be no more than 8 characters in length. 
C) Passwords should contain a mixture of upper and lowercase letters,numbers and characters. 
D) Passwords should not be words found in dictionaries. 
A) Passwords should be changed at regular intervals. 
B) Passwords should be no more than 8 characters in length. 
C) Passwords should contain a mixture of upper and lowercase letters,numbers and characters. 
D) Passwords should not be words found in dictionaries.

Question 4

Which of the following preventive controls are necessary to provide adequate security for social engineering threats?

Accepted Answer

A) controlling remote access 
B) encryption 
C) host and application hardening 
D) awareness training 
A) controlling remote access 
B) encryption 
C) host and application hardening 
D) awareness training

Question 5

Identify six physical access controls.

Accepted Answer

Require visitors to sign in and receive

Question 6

Virtualization refers to the ability of

Accepted Answer

A) running multiple systems simultaneously on one physical computer. 
B) eliminating the need for a physical computer. 
C) using the Internet to perform all needed system functions. 
D) using web-based security to protect an organization. 
A) running multiple systems simultaneously on one physical computer. 
B) eliminating the need for a physical computer. 
C) using the Internet to perform all needed system functions. 
D) using web-based security to protect an organization.

Question 7

The ________ disseminates information about fraud,errors,breaches and other improper system uses and their consequences.

Accepted Answer

A) chief information officer 
B) chief operations officer 
C) chief security officer 
D) computer emergency response team 
A) chief information officer 
B) chief operations officer 
C) chief security officer 
D) computer emergency response team

Question 8

Information technology managers are often in a bind when a new exploit is discovered in the wild.They can respond by updating the affected software or hardware with new code provided by the manufacturer,which runs the risk that a flaw in the update will break the system.Or they can wait until the new code has been extensively tested,but that runs the risk that they will be compromised by the exploit during the testing period.Dealing with these issues is referred to as

Accepted Answer

A) change management. 
B) hardening. 
C) patch management. 
D) defense in depth. 
A) change management. 
B) hardening. 
C) patch management. 
D) defense in depth.

Question 9

Why does COBIT5 DSS-05.06 stress the importance of restricting physical access to network printers?

Accepted Answer

A) because hackers can use them to print out sensitive information 
B) because hackers often hide inside large network printers until night 
C) because document images are often stored on network printers 
D) because network printers are easier to hack into than computers 
A) because hackers can use them to print out sensitive information 
B) because hackers often hide inside large network printers until night 
C) because document images are often stored on network printers 
D) because network printers are easier to hack into than computers

Describe four requirements of effective passwords .

A special purpose hardware device or software running on a general purpose computer,which filters information that is allowed to enter and leave the organization's information system,is known as a(n)

Which of the following is not a requirement of effective passwords?

Which of the following preventive controls are necessary to provide adequate security for social engineering threats?

Identify six physical access controls.

Virtualization refers to the ability of

The ________ disseminates information about fraud,errors,breaches and other improper system uses and their consequences.

Why does COBIT5 DSS-05.06 stress the importance of restricting physical access to network printers?

Accounting Information Systems: an Overview

Overview of Transaction Processing and Enterprise Resource Planning Systems

Systems Documentation Techniques

Relational Databases

Computer Fraud

Computer Fraud and Abuse Techniques

Control and Accounting Information Systems

Confidentiality and Privacy Controls

Processing Integrity and Availability Controls

Auditing Computer-Based Information Systems

The Revenue Cycle: Sales to Cash Collections

The Expenditure Cycle: Purchasing to Cash Disbursements

The Production Cycle

The Human Resources Management and Payroll Cycle

General Ledger and Reporting System

Database Design Using the Rea Data Model

Implementing an Rea Model in a Relational Database

Special Topics in Rea Modeling

Introduction to Systems Development and Systems Analysis

Ais Development Strategies

Systems Design,implementation,and Operation

Filters

Exam 8: Controls for Information Security

Describe four requirements of effective passwords .

A special purpose hardware device or software running on a general purpose computer,which filters information that is allowed to enter and leave the organization's information system,is known as a(n)

Which of the following is not a requirement of effective passwords?

Which of the following preventive controls are necessary to provide adequate security for social engineering threats?

Identify six physical access controls.

Virtualization refers to the ability of

The ________ disseminates information about fraud,errors,breaches and other improper system uses and their consequences.

Why does COBIT5 DSS-05.06 stress the importance of restricting physical access to network printers?

Accounting Information Systems: an Overview

Overview of Transaction Processing and Enterprise Resource Planning Systems

Systems Documentation Techniques

Relational Databases

Computer Fraud

Computer Fraud and Abuse Techniques

Control and Accounting Information Systems

Confidentiality and Privacy Controls

Processing Integrity and Availability Controls

Auditing Computer-Based Information Systems

The Revenue Cycle: Sales to Cash Collections

The Expenditure Cycle: Purchasing to Cash Disbursements

The Production Cycle

The Human Resources Management and Payroll Cycle

General Ledger and Reporting System

Database Design Using the Rea Data Model

Implementing an Rea Model in a Relational Database

Special Topics in Rea Modeling

Introduction to Systems Development and Systems Analysis

Ais Development Strategies

Systems Design,implementation,and Operation

Filters