QUESTION 881.A baseline is a point of departure that guarantees that systems comply with security requirements when they are enacted. However, it is not an uncommon occurrence that systems are changed in a way that means they are no longer in compliance. Thus, it is necessary to use an accepted method to ensure that settings have not been changed. Which of the following is notone of these methods? automated systemsdepartmental compliance and random audits
broad organizational report cards to ensure policy compliancepatch management 10 points QUESTION 891.A company that discusses the architecture operating model is well-equipped to identify areas of discord and create a shared set of beliefs on the proper placement and implementation of controls. 10 points QUESTION 901.There are particular tools and techniques that the IRT utilizes to gather forensic evidence, including ____________________, which articulates the manner used to document and protect evidence. 10 points QUESTION 911.The business impact analysis (BIA) is utilized for the purposes of both information security and non-information security. In general, it is employed for the recovery of many incidents that include, but are not limited to, security breaches. 10 points QUESTION 921.A ______________________ is an apparatus for risk management that enables the organization to comprehend its risks and how those risks might impact the business. risk and control self-assessment (RCSA)risk avoidance self-assessment (RASA)risk transference self-assessment (RTSA)risk mitigation assess self-assessment (RMASA) 10 points QUESTION 93
1.It is human nature to resist working hard unless there is a material outcome to begained, so the concept of organizational cultureis used to identify shared beliefs that employees have regarding financial success. 10 points QUESTION 941.It is important to test automated tools for the purpose of determining their effectiveness. One thing to look for in a tool is whether it has failed to catch existing problems, such as whether or not a patch is missing. Such a test would be monitoring a tool’s assessment capabilities . 10 points QUESTION 951.A ____________________ can be used to hierarchically represent a classification for a given set of objects or documents. 10 points
You've reached the end of your free preview.
Want to read all 12 pages?
- Winter '18
- Computer Security