True correct correct false 5 5 pts question 9 ricky

This preview shows page 4 - 9 out of 16 pages.

True Correct! Correct! False 5 / 5 pts Question 9 Ricky is reviewing security logs to independently assess security controls. Which security review process is Ricky engaging in? Audit Correct! Correct! Improve Secure Monitor 5 / 5 pts Question 10
Image of page 4

Subscribe to view the full document.

3/5/2019 Chapter 7 Quiz: COMPUTER SECURITY 5/16 The four main types of logs that you need to keep to support security auditing include event, access, user, and security. False Correct! Correct! True 5 / 5 pts Question 11 During an audit, an auditor compares the current setting of a computer or device with a benchmark to help identify differences. False True Correct! 5 / 5 pts Question 12 An SOC 1 report primarily focuses on security. False Correct! Correct! True 5 / 5 pts Question 13 Data loss prevention (DLP) uses business rules to classify sensitive information to prevent unauthorized end users from sharing it.
Image of page 5
3/5/2019 Chapter 7 Quiz: COMPUTER SECURITY 6/16 True Correct! Correct! False 5 / 5 pts Question 14 What is a set of concepts and policies for managing IT infrastructure, development, and operations? Control Objectives for Information and related Technology (COBIT) ISO 27002 NIST Cybersecurity Framework (CSF) IT Infrastructure Library (ITIL) Correct! Correct! 5 / 5 pts Question 15 Jacob is conducting an audit of the security controls at an organization as an independent reviewer. Which question would NOT be part of his audit? Is the security control effective in addressing the risk it was designed to address? Is the security control likely to become obsolete in the near future? Correct! Correct! Is the security control in the right place and working well? Is the level of security control suitable for the risk it addresses?
Image of page 6

Subscribe to view the full document.

3/5/2019 Chapter 7 Quiz: COMPUTER SECURITY 7/16 5 / 5 pts Question 16 Isaac is responsible for performing log reviews for his organization in an attempt to identify security issues. He has a massive amount of data to review. What type of tool would best assist him with this work? Intrusion prevention system (IPS) Security information and event management (SIEM) Correct! Correct! Data loss prevention (DLP) Virtual private network (VPN) 5 / 5 pts Question 17 An SOC 1 report is commonly implemented for organizations that must comply with Sarbanes­Oxley (SOX) or the Gramm­Leach­Bliley Act (GLBA). False True Correct! 5 / 5 pts Question 18 Fran is conducting a security test of a new application. She does not have any access to the source code or other details of the application she is testing. What type of test is Fran conducting? Black­box test Correct! Correct!
Image of page 7
3/5/2019 Chapter 7 Quiz: COMPUTER SECURITY 8/16 Grey­box test Blue­box test White­box test 5 / 5 pts Question 19 Anthony is responsible for tuning his organization's intrusion detection system. He notices that the system reports an intrusion alert each time that an administrator connects to a server using Secure Shell (SSH). What type
Image of page 8

Subscribe to view the full document.

Image of page 9

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern

Ask Expert Tutors You can ask 0 bonus questions You can ask 0 questions (0 expire soon) You can ask 0 questions (will expire )
Answers in as fast as 15 minutes