Question 1
2 out of 2 points
___________________ are responsible for the monitoring of activities the pre,
middle, and post stages of goal implementation, whereas
__________________are responsible for the monitoring of activities following
the implementation and are called upon to evaluate whether or not the
goals have been achieved.
Selected
Answer:
Management committees, government
committees
Correct
Answer:
Management committees, government
committees
Question 2
2 out of 2 points
The Gramm-Leach-Bliley Act (GLBA) was created to protect confidentiality
and security of customer information. Thus, under GLBA, organizations are
required to inform regulators quickly if any unauthorized access or breach
has occurred. Consider this scenario: A bank teller accesses a customer
account out of curiosity. What is best course of action following this event?
Selected
Answer:
The bank should notify the regulator based on the threshold set
for the how many records can be subject to unauthorized access.
Correct
Answer:
The bank should notify the regulator based on the threshold set
for the how many records can be subject to unauthorized access.
Question 3
2 out of 2 points
The executive management has the responsibility of connecting many lines
of business to bring resolution to strategy business issues. However, their
ultimate responsibility is to ___________________________.
Selected
Answer:
enforce policies at the executive and
enterprise levels
Correct
Answer:
enforce policies at the executive and
enterprise levels
Question 4
2 out of 2 points
While there are many valid reasons to monitor users’ computer activities,
which of the following is an invalid reason?
Selected
Answer:
detecting whether employees are listening to music that is
inappropriate for the workplace
Correct
Answer:
detecting whether employees are listening to music that is
inappropriate for the workplace
Question 5
0 out of 2 points
It is important that partnership exists between the ___________________,
which needs to review the standing legislation that governs their business,
and the ____________________, which needs to review all recent or significant
policy changes.
Selected
Answer:
CISO, legal department
Correct
Answer:
information security team, legal
department
Question 6
2 out of 2 points
Depending on staffing availability, the complexity of implementation,
backlog, and how many approvals are needed, manual access requests can
take weeks or days. Thus, automation can make the process far more
efficient and minimize the time required. Which of the following is not
one
of the areas in which the time required can be reduced through
automation?
Selected
Answer:
Employee verifications—automated controls can be put in place
to verify information on a employee’s background.
Correct
Answer:
Employee verifications—automated controls can be put in place
to verify information on a employee’s background.
You've reached the end of your free preview.
Want to read all 15 pages?
- Fall '12
- Final Exam, IRT
