Podcast
Questions and Answers
What is the most critical link in the InfoSec program?
What is the most critical link in the InfoSec program?
- Protection mechanisms
- Project management
- Security programs
- People (correct)
Which function is executed via a set of risk management activities in an organization?
Which function is executed via a set of risk management activities in an organization?
- Project management
- People management
- Security programs
- Protection mechanisms (correct)
What aspect do each safeguard or mechanism represent in an organization's overall InfoSec plan?
What aspect do each safeguard or mechanism represent in an organization's overall InfoSec plan?
- Software development
- Risk management of specific controls (correct)
- Incident response planning
- Security training programs
What is important in managing processes in an organization?
What is important in managing processes in an organization?
Which element involves the protection of employees and their information in an organization's security strategy?
Which element involves the protection of employees and their information in an organization's security strategy?
What does the SETA program typically focus on in an organization's security framework?
What does the SETA program typically focus on in an organization's security framework?
What does the Enterprise Information Security Policy (EISP) set for the InfoSec department and the InfoSec climate across the organization?
What does the Enterprise Information Security Policy (EISP) set for the InfoSec department and the InfoSec climate across the organization?
Which type of policies include both the managerial guidance for technology implementation and technical specifications for its configuration?
Which type of policies include both the managerial guidance for technology implementation and technical specifications for its configuration?
What is the purpose of an Incident Response Planning function in InfoSec?
What is the purpose of an Incident Response Planning function in InfoSec?
What is the main focus of Risk Management Planning in InfoSec?
What is the main focus of Risk Management Planning in InfoSec?
Which of the following is an example of a Security Program within InfoSec operations?
Which of the following is an example of a Security Program within InfoSec operations?
What is the role of Personnel Planning within InfoSec?
What is the role of Personnel Planning within InfoSec?
What are the unique functions of InfoSec management group known as?
What are the unique functions of InfoSec management group known as?
In InfoSec planning model, what activities are necessary to support the design, creation, and implementation of InfoSec strategies?
In InfoSec planning model, what activities are necessary to support the design, creation, and implementation of InfoSec strategies?
Who must work closely with other managers to develop InfoSec strategy according to the text?
Who must work closely with other managers to develop InfoSec strategy according to the text?
What is translated into the IT strategy and then used to develop the InfoSec strategy?
What is translated into the IT strategy and then used to develop the InfoSec strategy?
What is the overall goal of creating plans in InfoSec management?
What is the overall goal of creating plans in InfoSec management?
Which of the following is NOT one of the unique functions of InfoSec management group?
Which of the following is NOT one of the unique functions of InfoSec management group?
