View the step-by-step solution to:

need help in answering the questions , was trying to read from text book i wanted to conform the right answers QUESTION 1 According to the "Risk

need help in answering the questions , was trying to read from text book i wanted to conform the right answers


QUESTION 1

According to the "Risk Impact Assessment and Prioritization" article you read in the lab, which of the following represents the Risk Management process?

a.Risk Identification > Risk Impact Assessment > Risk Prioritization Analysis > Risk Mitigation Planning and Tracking

b.Risk Identification > Risk Prioritization Analysis > Risk Impact Assessment > Risk Tracking

c.Risk Identification > Risk Prioritization Analysis > Risk Impact Assessment > Risk Monitoring

d.Risk Identification > Risk Impact Assessment > Risk Prioritization Analysis > Risk Mitigation Planning, Implementation, and Progress Monitoring

1 points  

QUESTION 2

The purpose of a risk-mitigation plan is to define and document procedures and processes to establish a __________ for ongoing mitigation of risks in the seven domains of an IT

a.quantitative risk assessment

b.training and development program

c.security baseline definiation

d.liability protection plan

1 points  

QUESTION 3

Which of the seven domains of a typical IT infrastructure is the most difficult to monitor and track effectiveness?

a.Workstation Domain

b.LAN Domain

c.System/Application Domain

d.User Domain

1 points  

QUESTION 4

In the real world, some managers worry that the changes required to mitigate a risk will be more disruptive than treating the risk. How can you alleviate that concern?

a.Anticipate the manager's "what if" questions in your recommendations.

b.Ignore the concern and treat the risk anyway.

c.Hope a risk goes unnoticed.

d.Do not bother the manager with anything but the most critical risk.

1 points  

QUESTION 5

Which of the seven domains of a typical IT infrastructure can access privacy data and also store it on local hard drives and disks?

a.User Domain

b.System/Application Domain

c.Workstation Domain

d.LAN Domain

1 points  

QUESTION 6

In the lab, how many critical "1" risks, threats, and vulnerabilities impacted the LAN-to-WAN Domain?

a.1

b.0

c.3

d.2

1 points  

QUESTION 7

After you've addressed a risk, it is important to appoint someone to make certain that the risk treatment is being regularly applied so that if a security incident arises, that person can:

a.alert supervisors and any appropriate law-enforcement agencies

b.assume blame and responsibility

c.assign fault and liability accurately

d.ensure that any corrective action aligns with the risk mitigation plan.

1 points  

QUESTION 8

Which of the following statements is true regarding treating risks?

a.Treating risk is identical to identical to identifying and assessing risks.

b.Treating risks means making changes based on a risk assessment and a few difficult decisions.

c.Documenting the steps you are taking to mitigate a risk is only necessary for the most critical risks.

d.Documenting a change and the reasoning behind it usually results in the mitigation being reversed and the risk being introduced.

1 points  

QUESTION 9

In the lab, you created a Risk Mitigation Plan that included __________ for remediation.

a.implementation plans

b.impact plans

c.probability estimates

d.liability estimates

1 points  

QUESTION 10

In the lab, what risk impact/factor (Step 4) did you assign to "User downloads and clicks on an unknown e-mail attachment"?

a.None

b.3

c.2

d.1

Recently Asked Questions

Why Join Course Hero?

Course Hero has all the homework and study help you need to succeed! We’ve got course-specific notes, study guides, and practice tests along with expert tutors.

-

Educational Resources
  • -

    Study Documents

    Find the best study resources around, tagged to your specific courses. Share your own to gain free Course Hero access.

    Browse Documents
  • -

    Question & Answers

    Get one-on-one homework help from our expert tutors—available online 24/7. Ask your own questions or browse existing Q&A threads. Satisfaction guaranteed!

    Ask a Question