Detective controls are used to identify and react. Which of the following is not a detective control?

Employees are told that the use of e-mail can only be used for business purposes and their activities will be monitored. Violations will result in a verbal warning, then a written warning, and finally termination. What type of control is the company implementing?

Some organizations over-issue privileged access to ensure that users can have access to devices in emergency situations or unconventional scenarios. This practice violates what standard security principle?

Tara leaves her operations workstation when she is summoned by the front desk supervisor. In her rushed exit, Tara leaves her computer unlocked. Amy leans over and begins browsing through her personal folders and files. What is this security violation known as?

Which of the following has an incorrect change control definition mapping?

i.Request for a change to take place Requests should be presented to an individual or group that is responsible for approving changes and overseeing the activities of changes that take place within an environment.
ii. Approval of the change The individual requesting the change should not justify the reasons and clearly show the benefits and possible pitfalls of the change.
iii. Documentation of the change Once the change is approved, it should be entered into a change log. The log should be updated as the process continues toward completion.
iv. Tested and presented The change must be fully tested to uncover any unforeseen results.
v. Implementation Once the change is fully tested and approved, a schedule should be developed that outlines the projected phases of the change being implemented and the necessary milestones.
vi. Report change to management A full report summarizing the change should be submitted to management.

Removing sensitive data on media devices, including all pointers within the system, is one way to prevent _______.

Which would require the lowest level of protection?

Increased developmental testing and the use of only operational data are good remedies to what operational security threat?

Corruption/modification is one of the biggest threats to an operations environment. Which of the following is the typical culprit in this type of threat?

Bob is a new security administrator at a financial institution. The organization has experienced some suspicious activity on one of the critical servers that contain customer data. When reviewing how the systems are administered, he uncovers some concerning issues pertaining to remote administration. Which of the following should not be put into place to reduce these concerns?

i. Commands and data should not take place in cleartext
ii. SSH should be used, not Telnet.
iii. Truly critical systems should be administered locally instead of remotely.
iv. Only a small number of administrators should be able to carry out remote functionality.
v. Strong authentication should be in place for any administration activities.