ETA5 Ayu&Tya

8/10/2019 ETA5 Ayu&Tya

1/29

Question 1

CompleteMark 1.00 out of 1.00

Question text

Which of the following is not a part of risk analysis?Select one:

a. Choose the best countermeasure

b. I entify risks

c. !uantify the impact of potential threats

. "ro#i e an economic balance between the impact of the risk an the cost of theassociate countermeasures

Question 4


Question text

What is the $%S& metho for mitigating against network enial of ser#ice '(oS) attacks?

Select one:a. %nsure all ser#ers are up*to* ate on as patches

b. %mploy packet filtering to rop suspect packets

c. Implement loa balancing for Internet facing e#ices

. Implement network a ress translation to make internal a resses nonroutable

Question 5


Question text

+ou work in the office of a large company. +ou recei#e a call from a person claiming to befrom the ,elp esk. ,e asks you for your passwor . What kin of threat is this?Select one:

a. -atural threat

b. Social %ngineering

c. rgani/ational threat


2/29

Question 6


Question text

Most computer attacks result in #iolation of which of the following security properties?Select one:

a. ll of the choices

b. Confi entiality

c. Integrity an control

. #ailability

Question 8


Question text

Which one of the following is not one of the outcomes of a #ulnerability analysis?

Select one:a. ormal appro#al of $C" scope an initiation ocument

b. (efining critical support areas

c. !ualitati#e loss assessment

. !uantati#e loss assessment

Question 9


Question text

new worm has been release on the Internet. fter in#estigation2 you ha#e not been able toetermine if you are at risk of e3posure. Management is concerne as they ha#e hear that a

number of their counterparts are being affecte by the worm. ,ow coul you etermine ifyou are at risk?Select one:

a. Contact your anti*#irus #en or

b. (iscuss threat with a peer in another organi/ation


3/29

c. %#aluate e#ol#ing en#ironment.

. Wait for notification from an anti*#irus #en or

Question 10


Question text

Which of the following is a key area of the IS 45001 framework?Select one:

a. perational risk assessment

b. inancial crime metrics

c. $usiness continuity management

. Capacity management

Question 15


Question text

Making sure that the ata is accessible when an where it is nee e is which of thefollowing?Select one:

a. Integrity

b. Confi entiality

c. #ailability

. cceptability

Question 16


Question text

Which of the following choices is - & part of a security policy?Select one:

a. efinition of general an specific responsibilities for information security management

b. escription of specific technologies use in the fiel of information security


4/29

c. statement of management inten 2 supporting the goals an principles of informationsecurity

. efinition of o#erall steps of information security an the importance of security

Question 17


Question text

Security is a process that is:Select one:

a. bnormal

b. %3amine

c. In icati#e

. Continuous

Question 18


Question text

Information security is the protection of ata. Information will be protecte mainly baseon:Select one:

a. Its #alue

b. Its confi entiality

c. ll of the choices

. Its sensiti#ity to the company

Question 23


Question text

&he computer room is protecte by a pass rea er. nly the System Management epartmenthas a pass. What type of security measure is this?Select one:

a. a physical security measure


5/29

b. a repressi#e security measure

c. a logical security measure

. a correcti#e security measure

Question 24


lag 6uestion

Question text

Why is it necessary to keep a isaster reco#ery plan up to ate an to test it regularly?Select one:

a. $ecause otherwise2 in the e#ent of a far*reaching isruption2 the measures taken anthe inci ent proce ures planne may not be a e6uate or may be out ate .

b. In or er to be able to cope with aily occurring faults.

c. In or er to always ha#e access to recent backups that are locate outsi e the office.

. $ecause this is re6uire by "ersonal (ata "rotection legislation.

Started on Wednesday, 14 January 2015, 5:00 PM

State Finished

Completed on Wednesday, 14 January 2015, 5:18 PM

Time taken 18 mins 1 sec

Overdue 3 mins 1 sec

Marks 9.00/25.00

Grade 36.00 ou o! 100.00Question 1"om#$e e

Mar% 1.00 ou o! 1.00F$a& 'ues ion


6/29

(ues ion e)Which o! he !o$$o*in& *ou$d +e he rs s e# in es a+$ishin& anin!orma ion securi y#ro&ram-

e$ec one:a. e e$o#men and im#$emen a ion o! an in!orma ion securi ys andards manua$+. do# ion o! a cor#ora e in!orma ion securi y #o$icys a emenc. Purchase o! securi y access con ro$ so! *ared. e e$o#men o! a securi y a*areness rainin& #ro&ramQuestion 2"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ion(ues ion e)

ou are he o*ner o! he courier com#any #ee e$i ery. ouem#$oy a !e* #eo#$e *ho, *hi$e *ai in& o ma%e a de$i ery, cancarry ou o her as%s. ou no ice, ho*e er, ha hey use his

ime o send and read heir #ri a e mai$ and sur! he n erne .n $e&a$ erms, in *hich *ay can he use o! he n erne and e

mai$ !aci$i ies +e +es re&u$a ed-e$ec one:

a. ns a$$in& an a##$ica ion ha ma%es cer ain *e+si es no$on&er accessi+$e and ha $ ers a achmen s in e mai$s+. ra! in& a code o! conduc !or he use o! he n erne and emai$ in *hich he ri&h s and o+$i&a ions o! +o h he em#$oyerand s a are se do*nc. ns a$$in& a irus scannerd. m#$emen in& #ri acy re&u$a ionsQuestion 3"om#$e e

Mar% 0.00 ou o! 1.00F$a& 'ues ion(ues ion e)Which mus +ear he #rimary res#onsi+i$i y !or de erminin& he$e e$ o! #ro ec ion needed!or in!orma ion sys ems resources-

e$ec one:a. ecuri y #ecia$is s+. enior Mana&emenc. ys em udi orsd. eniors ecuri y na$ys s


7/29

Question 4"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ion(ues ion e)Wi hin he or&ani6a iona$ en ironmen , he securi y !unc ionshou$d re#or o an or&ani6a iona$ $e e$ ha

e$ec one:a. Pro ides he in erna$ audi !unc ion+. s an e) erna$ o#era ionc. 7as in!orma ion echno$o&y o ersi&hd. 7as au onomy !rom o her $e e$sQuestion 5"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ion(ues ion e)

nder *hich condi ion is an em#$oyer #ermi ed o chec% i!n erne and e mai$ ser ices in he *or%#$ace are +ein& used !or

#ri a e #ur#oses-e$ec one:

a. he em#$oyer is #ermi ed o chec% his i! a re*a$$ is a$soins a$$ed.

+. he em#$oyer is #ermi ed o chec% his i! he em#$oyees area*are ha his cou$d ha##en.c. he em#$oyer is #ermi ed o chec% his i! he em#$oyee isin!ormed a! er each ins ance o! chec%in&.Question 6"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ion(ues ion e)

ron& au hen ica ion is needed o access hi&h$y #ro ec edareas. n case o! s ron& au hen ica ion he iden i y o! a #ersonis eri ed +y usin& hree !ac ors. Which !ac or is eri ed *hen*e mus sho* our access #ass-

e$ec one:a. some hin& you are+. some hin& you %no*c. some hin& you ha eQuestion"om#$e e

Mar% 1.00 ou o! 1.00F$a& 'ues ion


8/29

(ues ion e)r&ani6a ions de e$o# chan&e con ro$ #rocedures o ensurehae$ec one:

a. Mana&emen is ad ised o! chan&es made o sys ems+. "han&es are con ro$$ed +y he Po$icy "on ro$ ;oard


9/29

e$ec one:a. Persona$ da a #ro ec ion $e&is$a ion+. "om#u er crimina$i y $e&is$a ionc. Pu+$ic records $e&is$a ion

d. @o ernmen in!orma ion


10/29

Question 14"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ion(ues ion e)Which o! he !o$$o*in& is he M re$e an me ric o inc$ude inan in!orma ion securi y 'uar er$y re#or o he e)ecu i ecommi ee-

e$ec one:a. ecuri y com#$ian ser ers rend re#or+. >um+er o! securi y #a ches a##$iedc. ecuri y #a ches a##$ied rend re#ord. Percen a&e o! securi y com#$ian ser ersQuestion 15"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)

ou *or% in he de#ar men o! a medium si6ed com#any."on den ia$ in!orma ion has come in o he *ron& hands se era$

imes. his has hur he ima&e o! he com#any. ou ha e +eenas%ed o #ro#ose or&ani6a iona$ securi y measures !or $a# o#sa your com#any. Wha is he rs s e# ha you shou$d a%e-

e$ec one:a. Formu$a e a #o$icy re&ardin& mo+i$e media

o ans*eredMar%ed ou o! 1.00F$a& 'ues ion

(ues ion e)Which o! he !o$$o*in& em+odies a$$ he de ai$ed ac ions ha#ersonne$ are re'uired o!o$$o*-

e$ec one:a. Procedures+. @uide$inesc. andardsd. ;ase$inesQuestion 1>o ans*ered


11/29

Mar%ed ou o! 1.00F$a& 'ues ion(ues ion e)Mos com#u er a ac%s resu$ in io$a ion o! *hich o! he!o$$o*in& securi y #ro#er ies-

e$ec one:a. ai$a+i$i y+. "on den ia$i yc. $$ o! he choicesd. n e&ri y and con ro$Question 1!>o ans*eredMar%ed ou o! 1.00F$a& 'ues ion

(ues ion e)Wha is he #ur#ose o! ris% mana&emen -e$ec one:

a. o de ermine he #ro+a+i$i y ha a cer ain ris% *i$$ occur.+. o de ermine he dama&e caused +y #ossi+$e securi yinciden s.c. o ou $ine he hrea s o *hich resources are e)#osed.d. o im#$emen measures o reduce ris%s o an acce# a+$e$e e$.

Question 1">o ans*eredMar%ed ou o! 1.00F$a& 'ues ion(ues ion e)Which o! he !o$$o*in& are o+Aec i es o! an in!orma ion sys emssecuri y #ro&ram-

e$ec one:a. hrea s, u$nera+i$i ies, and ris%s+. n e&ri y, con den ia$i y, and a ai$a+i$i yc. u hen ici y, u$nera+i$i ies, and cos sd. ecuri y, in!orma ion a$ue, and hrea sQuestion 20>o ans*eredMar%ed ou o! 1.00F$a& 'ues ion(ues ion e)

securi y #o$icy *ou$d inc$ude a$$ o! he !o$$o*in& ?B"?Pe$ec one:

a. en!orcemen+. audi re'uiremen s


12/29

c. +ac%&roundd. sco#e s a emenQuestion 21>o ans*ered

Mar%ed ou o! 1.00F$a& 'ues ion(ues ion e)Wi hin an or&ani6a ion he securi y oCcer de ec s ha a*or%s a ion o! an em#$oyee is in!ec ed *i h ma$icious so! *are.

he ma$icious so! *are *as ins a$$ed due o a ar&e ed Phishin&a ac%. Which ac ion is he mos +ene cia$ o #re en suchinciden s in he !u ure-

e$ec one:a. m#$emen in& M " echno$o&y+. ar a securi y a*areness #ro&ramc. #da e he re*a$$ ru$esd. #da e he si&na ures o! he s#am $ erQuestion 22>o ans*eredMar%ed ou o! 1.00F$a& 'ues ion(ues ion e)

n order o a%e ou a re insurance #o$icy, an adminis ra ion

oCce mus de ermine he a$ue o! he da a ha i mana&es.Which !ac or is no im#or an !or de erminin& he a$ue o! da a!or an or&ani6a ion-

e$ec one:a. he con en o! da a.+. he indis#ensa+i$i y o! da a !or he +usiness #rocesses.c. he im#or ance o! he +usiness #rocesses ha ma%e use o!

he da a.d. he de&ree o *hich missin&, incom#$e e or incorrec da a

can +e reco ered.Question 23>o ans*eredMar%ed ou o! 1.00F$a& 'ues ion(ues ion e)Which o! he !o$$o*in& is mos re$e an o de erminin& hema)imum e ec i e cos o! access con ro$-

e$ec one:a. mana&emen Ds #erce# ions re&ardin& da a im#or ance+. he cos o re#$ace $os da a


13/29

c. he a$ue o! in!orma ion ha is #ro ec edd. +ud&e #$annin& re$a ed o +ase ersus incremen a$ s#endin&Question 24>o ans*ered

Mar%ed ou o! 1.00F$a& 'ues ion(ues ion e)Wha is an e)am#$e o! a human hrea -

e$ec one:a. a $i&h nin& s ri%e+. #hishin&c. reQuestion 25>o ans*eredMar%ed ou o! 1.00F$a& 'ues ion(ues ion e)Wha is he !unc ion o! a cor#ora e in!orma ion securi y #o$icy-

e$ec one:a. e ne he main securi y o+Aec i es *hich mus +e achie edand he securi y !rame*or% o mee +usiness o+Aec i es+. ssue cor#ora e s andard o +e used *hen addressin&s#eci c securi y #ro+$ems

c. ssue &uide$ines in se$ec in& e'ui#men , con &ura ion,desi&n, and secure o#era ionsd. e ne he s#eci c asse s o +e #ro ec ed and iden i!y he

s#eci c as%s *hich mus +e com#$e ed o secure hem

7? PE? >?B ? ? Prei >e)us57ome My courses es ;idan& >F EM G > G MP ?E

PE? ? 005 @enera$ es Pro siensi Pen&e ahuan ;


14/29

S stem Se urit% pertStarted on Wednesday, 14 January 2015, 3:1H PMState FinishedCompleted on Wednesday, 14 January 2015, 3:31 PMTime taken 15 minsMarks 12.00/25.00Grade 4!.00 ou o! 100.00Question 1"om#$e eMar% 1.00 ou o! 1.00

F$a& 'ues ione e$o#in& a success!u$ +usiness case !or he ac'uisi ion o!

in!orma ion securi y so! *are#roduc s can ;? +e assis ed +y:

e$ec one:a. assessin& he !re'uency o! inciden s.+. 'uan i!yin& he cos o! con ro$ !ai$ures.c. com#arin& s#endin& a&ains simi$ar or&ani6a ions.d. ca$cu$a in& re urn on in es men


15/29

a. he con en o! da a.+. he indis#ensa+i$i y o! da a !or he +usiness #rocesses.c. he im#or ance o! he +usiness #rocesses ha ma%e use o!

he da a.

d. he de&ree o *hich missin&, incom#$e e or incorrec da acan +e reco ered.Question 4"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ionWho is au hori6ed o chan&e he c$assi ca ion o! a documen -

e$ec one:a. he adminis ra or o! he documen+. he au hor o! he documenc. he mana&er o! he o*ner o! he documend. he o*ner o! he documenQuestion 5"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion

r&ani6a ions de e$o# chan&e con ro$ #rocedures o ensurehae$ec one:

a. "han&es are con ro$$ed +y he Po$icy "on ro$ ;oard


16/29


17/29

Question 11"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ionWhich securi y measure is a echnica$ measure-

e$ec one:a. "rea in& a #o$icy de nin& *ha is and is no a$$o*ed in e mai$+. orin& sys em mana&emen #ass*ords in a sa!ec. $$oca in& in!orma ion o an o*nerd. ?ncry# ion o! $esQuestion 12"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ion

When an or&ani6a ion is usin& an au oma ed oo$ o mana&eand house i s +usiness con inui y#$ans, *hich o! he !o$$o*in& is he PE M E concern-

e$ec one:a. ersionin& con ro$ as #$ans are modi ed+. ?nsurin& accessi+i$i y shou$d a disas er occurc. ;ro%en hy#er$in%s o resources s ored e$se*hered. rac%in& chan&es in #ersonne$ and #$an asse sQuestion 13"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion

securi y inciden re&ardin& a *e+ser er is re#or ed o ahe$#des% em#$oyee. 7is co$$ea&ue hasmore e)#erience on *e+ser ers, so he rans!ers he case oher. Which erm descri+es his

rans!er-e$ec one:

a. 7ierarchica$ esca$a ion+. Func iona$ esca$a ionQuestion 14"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ionWha is a re#ressi e measure in case o! a re-

e$ec one:a. Ee#airin& dama&e caused +y he re+. Pu in& ou a re a! er i has +een de ec ed +y a re de ec or

c. a%in& ou a re insuranceQuestion 15


18/29

"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ionWhich y#e o! ma$*are +ui$ds a ne *or% o! con amina edcom#u ers-

e$ec one:a. #y*are+. orm Worm or ;o nec. roAand. Io&ic ;om+Question 16"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ion

Which o! he !o$$o*in& is he M re$e an me ric o inc$ude inan in!orma ion securi y 'uar er$yre#or o he e)ecu i e commi ee-

e$ec one:a. Percen a&e o! securi y com#$ian ser ers+. ecuri y com#$ian ser ers rend re#orc. ecuri y #a ches a##$ied rend re#ord. >um+er o! securi y #a ches a##$iedQuestion 1"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ionWha is he &oa$ o! c$assi ca ion o! in!orma ion-

e$ec one:a. o crea e a manua$ a+ou ho* o hand$e mo+i$e de ices+. ##$yin& $a+e$s ma%in& he in!orma ion easier o reco&ni6ec. ruc urin& in!orma ion accordin& o i s sensi i i yQuestion 1!"om#$e e

Mar% 1.00 ou o! 1.00F$a& 'ues ionn de e$o#in& a securi y a*areness #ro&ram, i is M

im#or an oe$ec one:

a. nders and em#$oyees #re!erences !or in!orma ion securi y+. Gno* *ha securi y a*areness #roduc s are a ai$a+$ec. den i!y *ea%ness in $ine mana&emen su##ord. nders and he cor#ora e cu$ ure and ho* i *i$$ a ecsecuri yQuestion 1"


19/29

"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ionWhen de e$o#in& an in!orma ion securi y #o$icy, *ha is heF E s e# ha shou$d +e a%en-

e$ec one:a. ?nsure #o$icy is com#$ian *i h curren *or%in& #rac ices+. + ain co#ies o! manda ory re&u$a ionsc. @ain mana&emen a##ro a$d. ee% acce# ance !rom o her de#ar men sQuestion 20"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion

*e$$ e)ecu ed ris% ana$ysis #ro ides a &rea dea$ o! use!u$in!orma ion. ris% ana$ysis has !ourmain o+Aec i es. Wha is no one o! he !our main o+Aec i es o!a ris% ana$ysis-

e$ec one:a. e erminin& re$e an u$nera+i$i ies and hrea s+. m#$emen in& coun er measuresc. den i!yin& asse s and heir a$ued. ?s a+$ishin& a +a$ance +e *een he cos s o! an inciden and

he cos s o! a securi ymeasureQuestion 21"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ion

cou#$e o! years a&o you s ar ed your com#any *hich has no*&ro*n !rom 1 o 20 em#$oyees.

our com#anyDs in!orma ion is *or h more and more and &oneare he days *hen you cou$d

%ee# con ro$ yourse$!. ou are a*are ha you ha e o a%emeasures, +u *ha shou$d hey +e-

ou hire a consu$ an *ho ad ises you o s ar *i h a 'ua$i a i eris% ana$ysis. Wha is a'ua$i a i e ris% ana$ysis-

e$ec one:a. his ana$ysis is +ased on scenarios and si ua ions and#roduces a su+Aec i e ie* o! he#ossi+$e hrea s.

+. his ana$ysis !o$$o*s a #recise s a is ica$ #ro+a+i$i yca$cu$a ion in order o ca$cu$a e e)ac


20/29

$oss caused +y dama&e.Question 22"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ionWhich o! he !o$$o*in& em+odies a$$ he de ai$ed ac ions ha#ersonne$ are re'uired o!o$$o*-

e$ec one:a. Procedures+. andardsc. ;ase$inesd. @uide$inesQuestion 23"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ion

here *as a re in a +ranch o! he com#any Mid*es nsurance. he re de#ar men 'uic%$yarri ed a he scene and cou$d e) in&uish he re +e!ore is#read and +urned do*n he en ire#remises. he ser er, ho*e er, *as des royed in he re. he+ac%u# a#es %e# in ano her room

had me$ ed and many o her documen s *ere $os !or &ood.Wha is an e)am#$e o! he indirecdama&e caused +y his re-

e$ec one:a. ;urned documen s+. ;urned com#u er sys emsc. Wa er dama&e due o he re e) in&uishersd. Me$ ed +ac%u# a#esQuestion 24"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ion

nder *hich condi ion is an em#$oyer #ermi ed o chec% i!n erne and e mai$ ser ices in he

*or%#$ace are +ein& used !or #ri a e #ur#oses-e$ec one:

a. he em#$oyer is #ermi ed o chec% his i! he em#$oyees area*are ha his cou$dha##en.+. he em#$oyer is #ermi ed o chec% his i! he em#$oyee isin!ormed a! er each ins ance o!


21/29

chec%in&.c. he em#$oyer is #ermi ed o chec% his i! a re*a$$ is a$soins a$$ed.Question 25"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ionWha is Des a+$ishin& *he her someoneDs iden i y is correc Dca$$ed-

e$ec one:a. den i ca ion+. u hen ica ionc. u hori6a ionFinish re ie*

Started on Wednesday, 14 January 2015, H:09 PM

State Finished

Completed on Wednesday, 14 January 2015, H:24 PM

Time taken 15 mins 12 secs

Marks 19.00/25.00

Grade 6.00 ou o! 100.00Question 1"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)

n de e$o#in& a securi y a*areness #ro&ram, i is Mim#or an o

e$ec one:a. den i!y *ea%ness in $ine mana&emen su##or+. nders and he cor#ora e cu$ ure and ho* i *i$$ a ecsecuri yc. Gno* *ha securi y a*areness #roduc s are a ai$a+$ed. nders and em#$oyees #re!erences !or in!orma ion securi yQuestion 2"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)


22/29

ou *or% in he oCce o! a $ar&e com#any. ou recei e a ca$$!rom a #erson c$aimin& o +e !rom he 7e$#des%. 7e as%s you!or your #ass*ord. Wha %ind o! hrea is his-

e$ec one:

a. >a ura$ hrea+. r&ani6a iona$ hreac. ocia$ ?n&ineerin&Question 3"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)

n order o a%e ou a re insurance #o$icy, an adminis ra ionoCce mus de ermine he a$ue o! he da a ha i mana&es.Which !ac or is no im#or an !or de erminin& he a$ue o! da a!or an or&ani6a ion-

e$ec one:a. he con en o! da a.+. he indis#ensa+i$i y o! da a !or he +usiness #rocesses.c. he im#or ance o! he +usiness #rocesses ha ma%e use o!

he da a.d. he de&ree o *hich missin&, incom#$e e or incorrec da acan +e reco ered.Question 4"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)Which o! he !o$$o*in& *ou$d +e he rs s e# in es a+$ishin& anin!orma ion securi y#ro&ram-

e$ec one:

a. e e$o#men o! a securi y a*areness rainin& #ro&ram+. Purchase o! securi y access con ro$ so! *arec. e e$o#men and im#$emen a ion o! an in!orma ion securi ys andards manua$d. do# ion o! a cor#ora e in!orma ion securi y #o$icys a emenQuestion 5"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion

(ues ion e)nder *hich condi ion is an em#$oyer #ermi ed o chec% i!


23/29

n erne and e mai$ ser ices in he *or%#$ace are +ein& used !or#ri a e #ur#oses-

e$ec one:a. he em#$oyer is #ermi ed o chec% his i! he em#$oyees are

a*are ha his cou$d ha##en.+. he em#$oyer is #ermi ed o chec% his i! he em#$oyee isin!ormed a! er each ins ance o! chec%in&.c. he em#$oyer is #ermi ed o chec% his i! a re*a$$ is a$soins a$$ed.Question 6"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)Eis% is common$y e)#ressed as a !unc ion o! he

e$ec one:a. Ii%e$ihood ha he harm *i$$ occur and i s #o en ia$ im#ac+. "om#u er sys em re$a ed asse s and heir cos sc. ys ems u$nera+i$i ies and he cos o mi i&a ed. y#es o! coun ermeasures needed and he sys emDs

u$nera+i$i iesQuestion"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)

he com#u er room is #ro ec ed +y a #ass reader. n$y heys em Mana&emen de#ar men has a #ass. Wha y#e o!

securi y measure is his-e$ec one:

a. a #hysica$ securi y measure+. a re#ressi e securi y measure

c. a correc i e securi y measured. a $o&ica$ securi y measureQuestion !"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)Who is res#onsi+$e !or raisin& a*areness o! he need !orade'ua e !undin& !or ris% ac ion #$ans-

e$ec one:a. ;usiness uni mana&emen+. "hie! nancia$ oCcer


24/29

c. n!orma ion securi y mana&erd. "hie! in!orma ion oCcer


25/29

F$a& 'ues ion(ues ion e)7o* is he #ur#ose o! in!orma ion securi y #o$icy +esdescri+ed-

e$ec one:a. n in!orma ion securi y #o$icy #ro ides direc ion and su##oro he mana&emen re&ardin& in!orma ion securi y.

+. n in!orma ion securi y #o$icy #ro ides insi&h in o hrea sand he #ossi+$e conse'uences.c. n in!orma ion securi y #o$icy documen s he ana$ysis o!ris%s and he search !or coun ermeasures.d. n in!orma ion securi y #o$icy ma%es he securi y #$anconcre e +y #ro idin& i *i h he necessary de ai$s.

Question 13>o ans*eredMar%ed ou o! 1.00F$a& 'ues ion(ues ion e)

n an or&ani6a ion, an n!orma ion echno$o&y securi y !unc ionshou$d:

e$ec one:a. ;e $ead +y a "hie! ecuri y Ccer and re#or direc $y o he"?

+. ;e a !unc ion *i hin he in!orma ion sys ems !unc ions o! anor&ani6a ionc. ;e inde#enden +u re#or o he n!orma ion ys ems!unc iond. Ee#or direc $y o a s#ecia$i6ed +usiness uni such as $e&a$,cor#ora e securi y or insuranceQuestion 14"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)

securi y inciden re&ardin& a *e+ser er is re#or ed o ahe$#des% em#$oyee. 7is co$$ea&ue has more e)#erience on*e+ser ers, so he rans!ers he case o her. Which ermdescri+es his rans!er-

e$ec one:a. 7ierarchica$ esca$a ion+. Func iona$ esca$a ionQuestion 15"om#$e eMar% 1.00 ou o! 1.00


26/29

F$a& 'ues ion(ues ion e)Wha is he &oa$ o! c$assi ca ion o! in!orma ion-

e$ec one:

a. o crea e a manua$ a+ou ho* o hand$e mo+i$e de ices+. ruc urin& in!orma ion accordin& o i s sensi i i yc. ##$yin& $a+e$s ma%in& he in!orma ion easier o reco&ni6eQuestion 16"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)

ou are he o*ner o! he courier com#any #ee e$i ery. ouha e carried ou a ris% ana$ysis and no* *an o de ermineyour ris% s ra e&y. ou decide o a%e measures !or he $ar&eris%s +u no !or he sma$$ ris%s. Wha is his ris% s ra e&yca$$ed-

e$ec one:a. Eis% +earin&+. Eis% neu ra$c. Eis% a oidanceQuestion 1>o ans*ered

Mar%ed ou o! 1.00F$a& 'ues ion(ues ion e)Which o! he !o$$o*in& is charac eris ic o! decen ra$i6edin!orma ion securi y mana&emen across a &eo&ra#hica$$ydis#ersed or&ani6a ion-

e$ec one:a. ;e er adherence o #o$icies+. More uni!ormi y in 'ua$i y o! ser icec. More sa in&s in o a$ o#era in& cos sd. ;e er a$i&nmen o +usiness uni needsQuestion 1!"om#$e eMar% 0.00 ou o! 1.00F$a& 'ues ion(ues ion e)When de e$o#in& an in!orma ion securi y #o$icy, *ha is heF E s e# ha shou$d +e a%en-

e$ec one:

a. @ain mana&emen a##ro a$+. ee% acce# ance !rom o her de#ar men s


27/29

c. + ain co#ies o! manda ory re&u$a ionsd. ?nsure #o$icy is com#$ian *i h curren *or%in& #rac icesQuestion 1""om#$e e

Mar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)

r&ani6a ions de e$o# chan&e con ro$ #rocedures o ensurehae$ec one:

a. Mana&emen is ad ised o! chan&es made o sys ems+. $$ chan&es are re'ues ed, schedu$ed, and com#$e ed on

imec. "han&es are con ro$$ed +y he Po$icy "on ro$ ;oard an acce# a+$e socia$ en&ineerin& #rac ice-

e$ec one:a. Misre#resen a ion+. u+ ersionc. um#s er di in&d. hou$der sur n&Question 22"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion

(ues ion e)When an or&ani6a ion is usin& an au oma ed oo$ o mana&e


28/29

and house i s +usiness con inui y #$ans, *hich o! he !o$$o*in&is he PE M E concern-

e$ec one:a. ersionin& con ro$ as #$ans are modi ed

+. ?nsurin& accessi+i$i y shou$d a disas er occurc. ;ro%en hy#er$in%s o resources s ored e$se*hered. rac%in& chan&es in #ersonne$ and #$an asse sQuestion 23>o ans*eredMar%ed ou o! 1.00F$a& 'ues ion(ues ion e)Which o! he !o$$o*in& *ou$d +e +es sui ed o #ro idein!orma ion durin& a re ie* o! hecon ro$s o er he #rocess o! de nin& ser ice $e e$s-

e$ec one:a. ys ems Pro&rammer+. Ie&a$ u c. ;usiness ni Mana&erd. Pro&rammerQuestion 24>o ans*eredMar%ed ou o! 1.00

F$a& 'ues ion(ues ion e)Which one o! he !o$$o*in& ris% ana$ysis erms charac eri6es hea+sence or *ea%ness o! ris% reducin& sa!e&aurd-

e$ec one:a. Ioss e)#ec ancy+. Pro+a+i$i yc. u$nera+i$i y

d. hreaQuestion 25"om#$e eMar% 1.00 ou o! 1.00F$a& 'ues ion(ues ion e)Which one o! he !o$$o*in& is an im#or an charac eris ic o! anin!orma ion securi y #o$icy-

e$ec one:a. Ee'uires he iden i ca ion o! in!orma ion o*ners+. (uan i es he e ec o! he $oss o! he in!orma ionc. den i es maAor !unc iona$ areas o! in!orma ion


29/29

d. Iis s a##$ica ions ha su##or he +usiness !unc ion

ETA5 Ayu&Tya

Documents

Transcript of ETA5 Ayu&Tya