Which of the following methods for identifying appropriate BIA interviewees' includes examining the organizational chart of the enterprise to understand the functional positions?
A. Organizational chart reviews
B. Executive management interviews
C. Overlaying system technology
D. Organizational process models
Which of the following statements is true about auditing?
A. It is used to protect the network against virus attacks.
B. It is used to track user accounts for file and object access, logon attempts, etc.
C. It is used to secure the network or the computers on the network.
D. It is used to prevent unauthorized access to network resources.
Which of the following signatures watches for the connection attempts to well-known, frequently attacked ports?
A. Port signatures
B. Digital signatures
C. Header condition signatures
D. String signatures
You are the project manager for TTX project. You have to procure some electronics gadgets for the project. A relative of yours is in the retail business of those gadgets. He approaches you for your favor to get the order. This is the situation of ____.
A. Conflict of interest
B. Bribery
C. Illegal practice
D. Irresponsible practice
Which of the following measurements of an enterprise's security state is the process whereby an organization establishes the parameters within which programs, investments, and acquisitions reach the desired results?
A. Information sharing
B. Ethics
C. Performance measurement
D. Risk management
Which of the following governance bodies provides management, operational and technical controls to satisfy security requirements?
A. Senior Management
B. Business Unit Manager
C. Information Security Steering Committee
D. Chief Information Security Officer
Which of the following analysis provides a foundation for measuring investment of time, money and human resources required to achieve a particular outcome?
A. Vulnerability analysis
B. Cost-benefit analysis
C. Gap analysis
D. Requirement analysis
Which of the following contract types is described in the statement below? "This contract type provides no incentive for the contractor to control costs and hence is rarely utilized."
A. Cost Plus Fixed Fee
B. Cost Plus Percentage of Cost
C. Cost Plus Incentive Fee
D. Cost Plus Award Fee
Which of the following security models focuses on data confidentiality and controlled access to classified information?
A. Bell-La Padula model
B. Take-Grant model
C. Clark-Wilson model
D. Biba model
Which of the following are examples of physical controls used to prevent unauthorized access to sensitive materials?
A. Thermal alarm systems
B. Closed circuit cameras
C. Encryption
D. Security Guards