Untitled Quiz

Questions and Answers

All of the following items should be included in a Business Impact Analysis (BIA) questionnaire EXCEPT questions that

determine the risk of a business interruption occurring

determine the technological dependence of the business processes

Identify the financial impacts of a business interruption (correct)

Identify the operational impacts of a business interruption

Which of the following actions will reduce risk to a laptop before traveling to a high-risk area?

Change access codes

Implement more stringent baseline configurations

Purge or re-image the hard disk drive (correct)

Examine the device for physical tampering

A company whose Information Technology (IT) services are being delivered from a Tier 4 data centre, is preparing a companywide Business Continuity Planning (BCP). Which of the following failures should the IT manager be concerned with?

Storage

Network (correct)

Power

Application

Which of the following represents the GREATEST risk to data confidentiality?

Backup tapes are generated unencrypted

What is the MOST important consideration from a data security perspective when an organization plans to relocate?

Conduct a gap analysis of a new facilities against existing security requirements

International Organization for Standardization (ISO) 27001 and 27002, when can management responsibilities be defined?

Only when assets are clearly defined

Which of the following types of technologies would be the MOST cost-effective method to provide a reactive control for protecting personnel in public areas?

Supply a duress alarm for personnel exposed to the public

Which of the following is MOST important when assigning ownership of an asset to a department?

Individual accountability should be ensured

Which one of the following affects the classification of data?

Assigned security label

An organization has doubled in size due to a rapid market share increase. The size of the Information Technology (IT) staff has maintained pace with this growth. The organization hires several contractors whose onsite time is limited. The IT department has pushed its limits building servers and rolling out workstations and has a backlog of account management requests. Which contract is BEST in offloading the task from the IT staff?

Software as a Service (SaaS)

In a data classification scheme, the data is owned by the

business managers

Which of the following is an initial consideration when developing an information security management system?

Understand the value of the information assets

Which technique can be used to make an encryption scheme more resistant to a known plaintext attack?

Hashing the data before encryption

Which component of the Security Content Automation Protocol (SCAP) specification contains the data required to estimate the severity of vulnerabilities identified automated vulnerability assessments?

Common Vulnerability Scoring System (CVSS)

Who in the organization is accountable for classification of data information assets?

Data owner

The use of private and public encryption keys is fundamental in the implementation of which of the following?

Secure Sockets Layer (SSL)

At what level of the Open System Interconnection (OSI) model is data at rest on a Storage Area Network (SAN) located?

Physical layer

In a Transmission Control Protocol/Internet Protocol (TCP/IP) stack, which layer is responsible for negotiating and establishing a connection with another node?

Transport layer

Which of the following is used by the Point-to-Point Protocol (PPP) to determine packet formats?

Link Control Protocol (LCP)

Which of the following operates at the Network Layer of the Open System Interconnection (OSI) model?

Packet filtering

An input validation and exception handling vulnerability has been discovered on a critical web-based system. Which of the following is MOST suited to quickly implement a control?

Add a new rule to the application layer firewall

Which of the following is the BEST network defence against unknown types of attacks or stealth attacks in progress?

Intrusion Prevention Systems (IPS)

Which of the following factors contributes to the weakness of Wired Equivalent Privacy (WEP) protocol?

WEP uses a small range Initialization Vector (IV)

An external attacker has compromised an organization’s network security perimeter and installed a sniffer onto an inside computer. Which of the following is the MOST effective layer of security the organization could have implemented to mitigate the attacker’s ability to gain further information?

Implement logical network segmentation at the switches

Users require access rights that allow them to view the average salary of groups of employees. Which control would prevent the users from obtaining an individual employee’s salary?

Implement Role Based Access Control (RBAC)

Which one of the following transmission media is MOST effective in preventing data interception?

Fiber optic

Which security action should be taken FIRST when computer personnel are terminated from their jobs?

Remove their computer access

The type of authorized interactions a subject can have with an object is

control

Why MUST a Kerberos server be well protected from unauthorized access?

It contains the keys of all clients.

Which one of the following effectively obscures network addresses from external exposure when implemented on a firewall or router?

Network Address Translation (NAT)

While impersonating an Information Security Officer (ISO), an attacker obtains information from company employees about their User IDs and passwords. Which method of information gathering has the attacker used?

Social engineering

Why must all users be positively identified prior to using multi-user computers?

To ensure that unauthorized persons cannot access the computers

An advantage of link encryption in a communications network is that it

protects data from start to finish through the entire network.

What is the term commonly used to refer to a technique of authenticating one machine to another by forging packets from a trusted source?

Spoofing

The PRIMARY purpose of a security awareness program is to

ensure that everyone understands the organization's policies and procedures.

The process of mutual authentication involves a computer system authenticating a user and authenticating the

computer system to the user.

The FIRST step in building a firewall is to

perform a risk analysis to identify issues to be addressed.

A system has been scanned for vulnerabilities and has been found to contain a number of communication ports that have been opened without authority. To which of the following might this system have been subjected?

Trojan horse

An organization is found lacking the ability to properly establish performance indicators for its Web hosting solution during an audit. What would be the MOST probable cause?

Insufficient Service Level Agreement (SLa)

Which of the following types of business continuity tests includes assessment of resilience to internal and external risks without endangering live operations?

Parallel

What is the PRIMARY reason for implementing change management?

Ensure accountability for changes to the environment

What should be the FIRST action to protect the chain of evidence when a desktop computer is involved?

Turn off the computer

What is the MOST important step during forensic analysis when trying to learn the purpose of an unknown application?

Ensure chain of custody

A Business Continuity Plan/Disaster Recovery Plan (BCP/DRP) will provide which of the following?

Minimization of the need decision making during a crisis

What would be the MOST cost effective solution for a Disaster Recovery (DR) site given that the organization’s systems cannot be unavailable for more than 24 hours?

Warm site

Which of the following is the PRIMARY risk with using open-source software in a commercial software construction?

License agreements requiring release of modified code

When in the Software Development Life Cycle (SDLC) MUST software security functional requirements be defined?

After the system preliminary design has been developed and the data security categorization has been performed

Which of the following is the BEST method to prevent malware from being introduced into a production environment?

Test all new software in a segregated environment

Which of the following methods protects Personally Identifiable Information (PII) by use of a full replacement of the data element?

Data tokenization

What is the MOST effective countermeasure to a malicious code attack against a mobile system?

Sandbox

Which of the following is ensured when hashing files during chain of custody handling?

Integrity

Which of the following statements is TRUE of black box testing?

Only the functional specifications are known to the test planner.

Study Notes

No Topic Provided

• Insufficient information to generate study notes. Please provide the text or questions.