Chat with AIExam 14: It Security Management and Risk Assessment
Exam 1: Computer Systems Overview45 Questions
Exam 2: Cryptographic Tools45 Questions
Exam 3: User Authentication44 Questions
Exam 4: Access Control45 Questions
Exam 5: Database Security45 Questions
Exam 6: Malicious Software44 Questions
Exam 7: Denial-Of-Service Attacks45 Questions
Exam 8: Intrusion Detection45 Questions
Exam 9: Firewalls and Intrusion Prevention Systems45 Questions
Exam 10: Buffer Overflow45 Questions
Exam 11: Software Security45 Questions
Exam 12: Operating System Security45 Questions
Exam 13: Trusted Computing and Multilevel Security45 Questions
Exam 14: It Security Management and Risk Assessment45 Questions
Exam 15: It Security Controls, plans, and Procedures45 Questions
Exam 16: Physical and Infrastructure Security45 Questions
Exam 17: Human Resources Security45 Questions
Exam 18: Security Auditing45 Questions
Exam 19: Legal and Ethical Aspects45 Questions
Exam 20: Symmetric Encryption and Message Confidentiality45 Questions
Exam 21: Public-Key Cryptography and Message Authentication45 Questions
Exam 22: Internet Security Protocols and Standards45 Questions
Exam 23: Internet Authentication Applications45 Questions
Exam 24: Wireless Network Security45 Questions
Select questions type
The purpose of ________ is to determine the basic parameters within which the risk assessment will be conducted and then to identify the assets to be examined.
(Multiple Choice)
4.8/5 
(28)
(28) A(n)_________ is a weakness in an asset or group of assets that can be exploited by one or more threats.
(Short Answer)
4.9/5 (31)
(31) Detecting and reacting to incidents is not a function of IT security
management.
(True/False)
4.7/5 (34)
(34) _________ is sharing responsibility for the risk with a third party.
(Short Answer)
4.7/5 (27)
(27) Implementing the risk treatment plan is part of the ______ step.
(Multiple Choice)
4.8/5 (24)
(24) Organizational security objectives identify what IT security outcomes
should be achieved.
(True/False)
4.9/5 (44)
(44) _________ include management,operational,and technical processes and procedures that act to reduce the exposure of the organization to some risks by reducing the ability of a threat source to exploit some vulnerabilities.
(Multiple Choice)
4.9/5 (35)
(35) The ________ has revised and consolidated a number of national and international standards into a consensus of best practice.
(Multiple Choice)
4.8/5 (34)
(34) The intent of the ________ is to provide a clear overview of how an organization's IT infrastructure supports its overall business objectives.
(Multiple Choice)
5.0/5 (38)
(38) The _________ approach involves conducting a risk analysis for the organization's IT systems that exploits the knowledge and expertise of the individuals performing the analysis.
(Multiple Choice)
4.9/5 (36)
(36) The use of the _________ approach would generally be recommended for small to medium-sized organizations where the IT systems are not necessarily essential to meeting the organization's business objectives and additional expenditure on risk analysis cannot be justified.
(Short Answer)
4.9/5 (30)
(30) The results of the risk analysis should be documented in a _________.
(Multiple Choice)
4.8/5 (46)
(46) The assignment of responsibilities relating to the management of IT
security and the organizational infrastructure is not addressed in a
corporate security policy.
(True/False)
4.8/5 (33)
(33) _________ is choosing to accept a risk level greater than normal for business reasons.
(Multiple Choice)
4.7/5 (30)
(30) __________ ensures that critical assets are sufficiently protected in a cost-effective manner.
(Multiple Choice)
4.9/5 (34)
(34) Organizational security policies identify what needs to be done.
(True/False)
4.9/5 (39)
(39) The _________ provides the most accurate evaluation of an organization's IT system's security risks.
(Short Answer)
4.9/5 (40)
(40) A ________ is anything that might hinder or present an asset from providing appropriate levels of the key security services.
(Multiple Choice)
4.9/5 (37)
(37) A threat may be either natural or human made and may be accidental
or deliberate.
(True/False)
4.8/5 (40)
(40) 
Filters
- Essay(0)
- Multiple Choice(0)
- Short Answer(0)
- True False(0)
- Matching(0)