PrepAway - Latest Free Exam Questions & Answers

what actually took place within their organizations?

Which of the following outlined how senior management are responsible for the computer and information
security decisions that they make and what actually took place within their organizations?

PrepAway - Latest Free Exam Questions & Answers

A.
The Computer Security Act of 1987.

B.
The Federal Sentencing Guidelines of 1991.

C.
The Economic Espionage Act of 1996.

D.
The Computer Fraud and Abuse Act of 1986.

Explanation:
Senior management could be responsible for monetary damages up to $10 million or twice the gain of the
offender for nonperformance of due diligence in accordance with the U.S. Federal Sentencing Guidelines of
1991.
Incorrect Answers:
A: The Computer Security Law of 1987 is not addressing senior management responsibility. The purpose is to
improve the security and privacy of sensitive information in federal computer systems and to establish a
minimum acceptable security practices for such systems.
C: The Economic Espionage Act of 1996 does not address senior management responsibility. Deals with a
wide range of issues, including not only industrial espionage, but the insanity defense, the Boys & Girls Clubs of
America, requirements for presentence investigation reports, and the United States Sentencing Commission
reports regarding encryption or scrambling technology, and other technical and minor amendments.
D: Computer Fraud and Abuse Act of 1986 concerns acts where computers of the federal government orcertain financial institutions are involved. It does not address senior management responsibility.

Stewart, James M., Ed Tittel, and Mike Chapple, CISSP: Certified Information Systems Security Professional
Study Guide, 5th Edition, Sybex, Indianapolis, 2011, p. 548


Leave a Reply