18 Questions
What is a potential consequence of an employee having too much control over certain business functions?
Misuse of resources or fraud
What is the purpose of a mandatory annual leave policy in organizations with sensitive positions?
To detect errors or fraud during employee absence
What is the primary goal of the two-person rule in info assurance and security?
To reduce the risk of errors or fraud
What is a challenge posed by aggressive telework programs and BYOD initiatives in organizations?
Blurred lines between work and personal life
What is an example of a separation of duties control mechanism?
Split knowledge control
What is an important aspect of an employee's life that organizations should respect?
Personal privacy
What is the primary purpose of supervisory controls in an organization?
To ensure operations run smoothly and prevent human error
According to the National Computer Network Emergency Response Technical Team, what is the primary benefit of rotating duties?
It minimizes fraud
What should employers do if they suspect or identify criminal activity during monitoring?
Contact their legal counsel and appropriate law enforcement
What is a crucial consideration for employers when implementing employee monitoring?
The legal implications of monitoring employee activities
What is the primary purpose of defining and enforcing info assurance controls during employment?
To prevent personnel from misusing info facilities
What should be included in employment contract provisions regarding employee monitoring?
A clear policy about which activities are monitored
What is a potential benefit of employees bringing their own productivity tools to the workplace?
Increased innovation and productivity
What is a reason to avoid routine and undisclosed monitoring in the workplace?
It can trigger employees' uneasiness and feelings of distrust
What is the purpose of employee training and awareness programs in info assurance?
To meet organizational security objectives
What is a key characteristic of a successful info assurance training or awareness program?
It is tailored to specific groups
What is the reason for informing employees about potential monitoring?
To deter activities of potential fraud
What is the importance of periodic monitoring in info assurance?
It helps to discourage and deter activities of potential fraud
Test your knowledge of information assurance and security in employment organizations, including controls to prevent misuse and breaches, employee monitoring guidelines, and supervisory controls. Learn how to protect information systems from human error and other threats.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free