Information Security Governance & Risk Management
SKILLSET
To maintain and enforce policies to ensure the preservation of information security, and to have plans to account for applicable risks.
Related Questions
- You are advising a school district on disaster recovery plans. In case a disaster affects the main IT centers for the district they will need to be able to work from an alternate location. However, budget is an issue. Which of the following is most appropriate for this client?
- Which of the following plans is a comprehensive statement of consistent actions to be taken before, during, and after a disruptive event that causes a significant loss of information systems resources?
- Which of the following vulnerabilities occurs when an application directly uses or concatenates potentially hostile input with data file or stream functions?
- Which of the following security issues does the Bell-La Padula model focus on?
- In which of the following phases of the SDLC does the software and other components of the system faithfully incorporate the design specifications and provide proper documentation and training?
- What are the various benefits of a software interface according to the "Enhancing the Development Life Cycle to Produce Secure Software" document? Each correct answer represents a complete solution. Choose three.
- On a Linux system, what would be the appropriate option to use with netstat to display the interface table?
- Which of the following acts is used to recognize the importance of information security to the economic and national security interests of the United States?
- Which of the following ensures that a party to a dispute cannot deny the authenticity of their signature on a document or the sending of a message that they originated?
- Della works as a security engineer for BlueWell Inc. She wants to establish configuration management and control procedures that will document proposed or actual changes to the information system. Which of the following phases of NIST SP 800-37 C&A methodology will define the above task?