A(n) _______________ is an unintended communication path that can be used to violate a system security policy.

To protect its information assets, ABC Company purchases a safeguard that costs $60,000. The annual cost to maintain the safeguard is estimated to be $40,000. The aggregate Annualized Loss Expectancy for the risks the safeguard is expected to mitigate is $50,000.
At this rate of return, how long will it take ABC Company to recoup the cost of the safeguard?

Which of the following is the BEST method for managing users in an enterprise?

____________________ educate(s) security administrators and end users about organizations’ security policies.

Organizations _______ risk, when they convince another entity to assume the risk for them.

You are considering purchasing a VPN solution to protect your organization’s information assets. The solution you are reviewing uses RFC-compliant and open-standards encryption schemes. The vendor has submitted the system to a variety of recognized testing authorities. The vendor does not make the source code available to testing authorities. Does this solution adhere to the secure design principle of open design?

Why should each system user and administrator have individual accounts? (Choose TWO.)

A(n) _______ occurs when intrusion-detection measures fail to recognize suspicious traffic or activity.