Information Security Project Analysis Quiz

Questions and Answers

PDF Questions PDF Answers

What is the primary function of the SecSDLC process?

Technology Evaluation

Legal Compliance

Risk Management (correct)

System Analysis

Who is responsible for the analysis of existing security policies or programs in the SecSDLC process?

System Designers

Risk Assessment Specialists (correct)

Senior Management

Technology Evaluators

What approach does upper management drive in the implementation of security?

Individual-driven approach

Top-down approach (correct)

Bottom-up approach

Grassroots effort

What is the primary focus during the design phase of the SecSDLC process?

Physical & Logical Design Functions

Which approach involves individuals choosing security implementation strategies?

Bottom-up approach

What does SecDLC stand for in the context of security implementation?

Security Development Life Cycle

Which type of malware disguises itself as a useful program?

Trojan Horse

Who is primarily responsible for performing Contingency Planning in the SecDLC approach?

System Administrators and Project Managers

During which phase of the SecDLC approach are security solutions acquired, tested, implemented, and presented to management for final approval?

Implementation SDLC

Which group is responsible for keeping the system up and running, continually monitoring and testing as threats evolve in the SecDLC approach?

Security Professionals and Technicians