What should a company do first when disposing of personal computers that once were used to

store confidential data?

Which of the following is not a critical security aspect of Operations Controls?

What tool is being used to determine whether attackers have altered system files of executables?

A system file that has been patched numerous times becomes infected with a virus. The anti-virus
software warns that disinfecting the file can damage it. What course of action should be taken?

In an on-line transaction processing system, which of the following actions should be taken when
erroneous or invalid transactions are detected?

Which of the following is not a good response to a detected intrusion?

Which of the following is a reasonable response from the intrusion detection system when it
detects Internet Protocol (IP) packets where the IP source address is the same as the IP
destination address?

Once an intrusion into your organizations information system has been detected, which of the
following actions should be performed first?

After an intrusion has been contained and the compromised systems having been reinstalled,
which of the following need not be reviewed before bringing the systems back to service?

Which of the following is used to monitor network traffic or to monitor host audit logs in order to
determine violations of security policy that have taken place?