Which of the following can be defined as the process of rerunning a portion of the test scenario or test plan to
ensure that changes or corrections have not introduced new errors?

Which of the following test makes sure the modified or new system includes appropriate access controls and
does not introduce any security holes that might compromise other systems?

At what stage of the applications development process should the security department become involved?

Which of the following is best defined as a circumstance in which a collection of information items is required to
be classified at a higher security level than any of the individual items that comprise it?

Which of the following characteristics pertaining to databases is NOT true?

Which model, based on the premise that the quality of a software product is a direct function of the quality of its
associated software development and maintenance processes, introduced five levels with which the maturity of
an organization involved in the software process is evaluated?

Which of the following is used in database information security to hide information?

Which software development model is actually a meta-model that incorporates a number of the softwaredevelopment models?

Which of the following is not a defined maturity level within the Software Capability Maturity Model?

Why does compiled code pose more of a security risk than interpreted code?