{[ promptMessage ]}

Bookmark it

{[ promptMessage ]}

True the is an effective attribute for tracking

Info iconThis preview shows pages 1–3. Sign up to view the full content.

View Full Document Right Arrow Icon
True The ____ is an effective attribute for tracking network devices and servers, but rarely applies to software. IP address Examples of technical software failures or errors include code problems, unknown loopholes, and ____. bugs Risk is the likelihood of the occurrence of a vulnerability multiplied by the value of the information asset minus the percentage of risk mitigated by current controls plus the uncertainty of current knowledge of the vulnerability True The amount of danger posed by a threat is sometimes difficult to assess. It may be simply the impact of a threat attacking the organization, or it may reflect the amount of damage that the threat could create or the frequency with which an attack can occur. True A press release is likely to fall under the ____ data classification scheme. public The data classification scheme for an information asset could include confidential, internal, and private. Each of these classification categories designates the level of protection needed for a particular information asset. False Risk Analysis is the process of discovering and assessing the risks to an organization's operations and determining how those risks can be controlled or mitigated. False The first stage in the Risk Identification process is to develop an inventory of information assets. False A(n) ____________________ number uniquely identifies a specific device. serial
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Classification categories must be ____________________ and mutually exclusive. comprehensive The sample classification scheme for an information asset of confidential, ____ and public, designates the level of protection needed for a particular information asset. internal Assessing risks includes determining the ____________________ that vulnerable systems will be attacked by specific threats. likelihood Which of the following activities is part of the risk identification process? Assigning a value to
Background image of page 2
Image of page 3
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}