Which of the following refers to a process that is used for implementing information security?

The Web resource collection is a security constraint element summarized in the Java Servlet
Specification v2.4. Which of the following elements does it include? Each correct answer
represents a complete solution. Choose two.

Which of the following activities are performed by the ‘Do’ cycle component of PDCA (plan-do-check-act)? Each correct answer represents a complete solution. Choose all that apply.

Numerous information security standards promote good security practices and define frameworks
or systems to structure the analysis and design for managing information security controls. Which
of the following are the international information security standards? Each correct answer
represents a complete solution. Choose all that apply.

The Data and Analysis Center for Software (DACS) specifies three general principles for software
assurance which work as a framework in order to categorize various secure design principles.
Which of the following principles and practices does the General Principle 1 include? Each correct
answer represents a complete solution. Choose two.

Fill in the blank with the appropriate security mechanism. is a computer hardware mechanism or
programming language construct which handles the occurrence of exceptional events.

In which of the following phases of the DITSCAP process does Security Test and Evaluation
(ST&E) occur?

Which of the following access control models uses a predefined set of access privileges for an
object of a system?

Martha works as a Project Leader for BlueWell Inc. She and her team have developed accounting
software. The software was performing well. Recently, the software has been modified. The users
of this software are now complaining about the software not working properly. Which of the
following actions will she take to test the software?

Which of the following sections come under the ISO/IEC 27002 standard?