The security policy that Tom is publishing could include all of the following initiatives except:
Tom has just completed the companys first-ever security policy after getting final sign-off from the executive committee. The security policy that Tom is publishing could include all of the following initiatives except:
Which of the following best describes why this is put into place?
A government contracting firm uses classification levels within its data networking environment. Which of the following best describes why this is put into place?
who is most likely the owner of this data?
In a heated debate between the IT department, operations, and the finance department, the issue of who "owns" the financial data in question is raised. Of the entities listed below, who is most likely the owner of this data?
Which of the following would provide the best results when carrying out a risk analysis?
Risk management can be very complex and overwhelming. It is virtually impossible to consider every possible scenario during a risk analysis, however, there are methods available that can produce better results. Which of the following would provide the best results when carrying out a risk analysis?
At the conclusion of her teams work, all of the following goals could be met, except:
Laura and her team are diligently working on a company-wide risk assessment initiative. At the conclusion of her teams work, all of the following goals could be met, except:
This degree of damage is referred to as:
Cary is working on a risk management project and must determine the degree of damage to a manufacturing facility downtown in the event of a flood. This degree of damage is referred to as:
which is the most important in determining an effective security policy?
Karen and her security team have been tasked with developing a security policy to be presented to senior management for a new start-up organization. Of the factors listed below, which is the most important in determining an effective security policy?
what John has done?
John covertly learns the user ID and password of a higher-ranked technician and uses the credentials to access certain areas of a network. What term describes what John has done?
which would not be considered an integrity violation?
Your companys security director calls a meeting to stress the importance of data integrity within the company. There is a concern because of several violations that have been noticed lately. Of the examples below, which would not be considered an integrity violation?
Which of the following objectives could not be achieved by a security policy?
A new security policy has recently been put into place to achieve many company objectives. Which of the following objectives could not be achieved by a security policy?