Question 1

The Sarbanes-Oxley Act:

Accepted Answer

A)  requires financial institutions to ensure the security of customer data. 
B)  specifies best practices in information systems security and control. 
C)  imposes responsibility on companies and management to safeguard the accuracy of financial information. 
D)  outlines medical security and privacy rules. 
E)  requires that companies retain electronic records for at least 10 years. 
A)  requires financial institutions to ensure the security of customer data. 
B)  specifies best practices in information systems security and control. 
C)  imposes responsibility on companies and management to safeguard the accuracy of financial information. 
D)  outlines medical security and privacy rules. 
E)  requires that companies retain electronic records for at least 10 years.

Question 2

Which of the following sued BJ's Wholesale Club for allowing hackers to access its systems and steal credit and debit card data for fraudulent purchases?

Accepted Answer

A)  The U.S. Justice Department 
B)  The U.S. Food and Drug Administration 
C)  The U.S. Federal Trade Commission 
D)  The Federal Bureau of Investigation 
E)  The U.S. Securities and Exchange Commission 
A)  The U.S. Justice Department 
B)  The U.S. Food and Drug Administration 
C)  The U.S. Federal Trade Commission 
D)  The Federal Bureau of Investigation 
E)  The U.S. Securities and Exchange Commission

Question 3

Which of the following defines acceptable uses of a firm's information resources and computing equipment?

Accepted Answer

A)  An information systems audit policy 
B)  A CA policy 
C)  A MSSP 
D)  A UTM system 
E)  An AUP 
A)  An information systems audit policy 
B)  A CA policy 
C)  A MSSP 
D)  A UTM system 
E)  An AUP

Question 4

Phishing is a form of:

Accepted Answer

A)  spoofing. 
B)  logging. 
C)  sniffing. 
D)  war driving. 
E)  ransomware. 
A)  spoofing. 
B)  logging. 
C)  sniffing. 
D)  war driving. 
E)  ransomware.

Question 5

All of the following have contributed to an increase in software flaws except:

Accepted Answer

A)  the growing complexity of software programs. 
B)  the growing size of software programs. 
C)  demands for timely delivery to markets. 
D)  the inability to fully test programs. 
E)  the increase in malicious intruders seeking system access. 
A)  the growing complexity of software programs. 
B)  the growing size of software programs. 
C)  demands for timely delivery to markets. 
D)  the inability to fully test programs. 
E)  the increase in malicious intruders seeking system access.

Question 6

What is the role of an information systems audit?

Accepted Answer

An information systems audit examines th

Question 7

Biometric authentication is the use of physical characteristics such as retinal images to provide identification.

Accepted Answer

A) True 
 B)False

Question 8

Wireless networks are more difficult to penetrate because radio frequency bands are hard to scan.

Accepted Answer

A) True 
 B)False

Question 9

Which of the following is not an example of a computer used as a target of crime?

Accepted Answer

A)  Knowingly accessing a protected computer to commit fraud 
B)  Accessing a computer system without authority 
C)  Illegally accessing stored electronic communication 
D)  Threatening to cause damage to a protected computer 
E)  Breaching the confidentiality of protected computerized data 
A)  Knowingly accessing a protected computer to commit fraud 
B)  Accessing a computer system without authority 
C)  Illegally accessing stored electronic communication 
D)  Threatening to cause damage to a protected computer 
E)  Breaching the confidentiality of protected computerized data

Question 10

What is a digital certificate? How does it work?

Accepted Answer

Digital certificates are data files used

Question 11

How is the security of a firm's information system and data affected by its people, organization, and technology? Is the contribution of one of these dimensions any more important than the other? Why?

Accepted Answer

There are various technological essentia

Question 12

Which of the following statements about passwords is not true?

Accepted Answer

A)  Authentication cannot be established by the use of a password. 
B)  Password systems that are too rigorous may hinder employee productivity. 
C)  Passwords can be stolen through social engineering. 
D)  Passwords are often disregarded by employees. 
E)  Passwords can be sniffed when being transmitted over a network. 
A)  Authentication cannot be established by the use of a password. 
B)  Password systems that are too rigorous may hinder employee productivity. 
C)  Passwords can be stolen through social engineering. 
D)  Passwords are often disregarded by employees. 
E)  Passwords can be sniffed when being transmitted over a network.

Question 13

A walkthrough is a type of software testing used before software is even written.

Accepted Answer

A) True 
 B)False

Question 14

You have just been hired as a security consultant by MegaMalls Inc., a national chain of retail malls, to make sure that the security of their information systems is up to par. Outline the steps you will take to achieve this.

Accepted Answer

(1) Establish what data and processes ar

Question 15

According to the 2015 Identity Fraud Study by Javelin Strategy & Research, how much did consumers lose to identity fraud in 2014?

Accepted Answer

A)  $1.6 million 
B)  $16 million 
C)  $160 million 
D)  $1.6 billion 
E)  $16 billion 
A)  $1.6 million 
B)  $16 million 
C)  $160 million 
D)  $1.6 billion 
E)  $16 billion

Question 16

Specific security challenges that threaten clients in a client/server environment include:

Accepted Answer

A)  tapping, sniffing, message alteration, and radiation. 
B)  hacking, vandalism, and denial of service attacks. 
C)  theft, copying, alteration of data, and hardware or software failure. 
D)  unauthorized access, errors, and spyware. 
E)  vandalism, message alteration, and errors. 
A)  tapping, sniffing, message alteration, and radiation. 
B)  hacking, vandalism, and denial of service attacks. 
C)  theft, copying, alteration of data, and hardware or software failure. 
D)  unauthorized access, errors, and spyware. 
E)  vandalism, message alteration, and errors.

Question 17

Which of the following is the single greatest cause of network security breaches?

Accepted Answer

A)  Viruses 
B)  User lack of knowledge 
C)  Trojan horses 
D)  Cyberwarfare 
E)  Bugs 
A)  Viruses 
B)  User lack of knowledge 
C)  Trojan horses 
D)  Cyberwarfare 
E)  Bugs

Question 18

Application controls:

Accepted Answer

A)  can be classified as input controls, processing controls, and output controls. 
B)  govern the design, security, and use of computer programs. 
C)  apply to all computerized applications and consist of a combination of hardware, software, and manual procedures that create an overall control environment. 
D)  include software controls, computer operations controls, and implementation controls. 
E)  govern the security of data files in general throughout the organization. 
A)  can be classified as input controls, processing controls, and output controls. 
B)  govern the design, security, and use of computer programs. 
C)  apply to all computerized applications and consist of a combination of hardware, software, and manual procedures that create an overall control environment. 
D)  include software controls, computer operations controls, and implementation controls. 
E)  govern the security of data files in general throughout the organization.

Question 19

Which of the following is a type of ambient data?

Accepted Answer

A)  Computer log containing recent system errors 
B)  A file deleted from a hard disk 
C)  A file that contains an application's user settings 
D)  A set of raw data from an environmental sensor 
E)  An email file 
A)  Computer log containing recent system errors 
B)  A file deleted from a hard disk 
C)  A file that contains an application's user settings 
D)  A set of raw data from an environmental sensor 
E)  An email file

Question 20

All of the following are currently being used as traits that can be profiled by biometric authentication except:

Accepted Answer

A)  fingerprints. 
B)  facial characteristics. 
C)  body odor. 
D)  retinal images. 
E)  voice. 
A)  fingerprints. 
B)  facial characteristics. 
C)  body odor. 
D)  retinal images. 
E)  voice.

The Sarbanes-Oxley Act:

Which of the following sued BJ's Wholesale Club for allowing hackers to access its systems and steal credit and debit card data for fraudulent purchases?

Which of the following defines acceptable uses of a firm's information resources and computing equipment?

Phishing is a form of:

All of the following have contributed to an increase in software flaws except:

What is the role of an information systems audit?

Biometric authentication is the use of physical characteristics such as retinal images to provide identification.

Wireless networks are more difficult to penetrate because radio frequency bands are hard to scan.

Which of the following is not an example of a computer used as a target of crime?

What is a digital certificate? How does it work?

How is the security of a firm's information system and data affected by its people, organization, and technology? Is the contribution of one of these dimensions any more important than the other? Why?

Which of the following statements about passwords is not true?

A walkthrough is a type of software testing used before software is even written.

You have just been hired as a security consultant by MegaMalls Inc., a national chain of retail malls, to make sure that the security of their information systems is up to par. Outline the steps you will take to achieve this.

According to the 2015 Identity Fraud Study by Javelin Strategy & Research, how much did consumers lose to identity fraud in 2014?

Specific security challenges that threaten clients in a client/server environment include:

Which of the following is the single greatest cause of network security breaches?

Application controls:

Which of the following is a type of ambient data?

All of the following are currently being used as traits that can be profiled by biometric authentication except:

Business Information Systems in Your Career

Global E-Business and Collaboration

Achieving Competitive Advantage With Information Systems

Ethical and Social Issues in Information Systems

It Infrastructure: Hardware and Software

Foundations of Business Intelligence: Databases and

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy:

E-Commerce: Digital Markets, Digital Goods

Improving Decision Making and Managing Knowledge

Building Information Systems and Managing Projects

Filters

Exam 8: Securing Information Systems

The Sarbanes-Oxley Act:

Which of the following sued BJ's Wholesale Club for allowing hackers to access its systems and steal credit and debit card data for fraudulent purchases?

Which of the following defines acceptable uses of a firm's information resources and computing equipment?

Phishing is a form of:

All of the following have contributed to an increase in software flaws except:

What is the role of an information systems audit?

Biometric authentication is the use of physical characteristics such as retinal images to provide identification.

Wireless networks are more difficult to penetrate because radio frequency bands are hard to scan.

Which of the following is not an example of a computer used as a target of crime?

What is a digital certificate? How does it work?

How is the security of a firm's information system and data affected by its people, organization, and technology? Is the contribution of one of these dimensions any more important than the other? Why?

Which of the following statements about passwords is not true?

A walkthrough is a type of software testing used before software is even written.

You have just been hired as a security consultant by MegaMalls Inc., a national chain of retail malls, to make sure that the security of their information systems is up to par. Outline the steps you will take to achieve this.

According to the 2015 Identity Fraud Study by Javelin Strategy & Research, how much did consumers lose to identity fraud in 2014?

Specific security challenges that threaten clients in a client/server environment include:

Which of the following is the single greatest cause of network security breaches?

Application controls:

Which of the following is a type of ambient data?

All of the following are currently being used as traits that can be profiled by biometric authentication except:

Business Information Systems in Your Career

Global E-Business and Collaboration

Achieving Competitive Advantage With Information Systems

Ethical and Social Issues in Information Systems

It Infrastructure: Hardware and Software

Foundations of Business Intelligence: Databases and

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy:

E-Commerce: Digital Markets, Digital Goods

Improving Decision Making and Managing Knowledge

Building Information Systems and Managing Projects

Filters