Information Security Governance & Risk Management
SKILLSET
To maintain and enforce policies to ensure the preservation of information security, and to have plans to account for applicable risks.
Related Questions
- Which of the following steps of the LeGrand Vulnerability-Oriented Risk Management method determines the necessary compliance offered by risk management practices and assessment of risk levels?
- You work as the Senior Project manager in Dotcoiss Inc. Your company has started a software project using configuration management and has completed 70% of it. You need to ensure that the network infrastructure devices and networking standards used in this project are installed in accordance with the requirements of its detailed project design documentation. Which of the following procedures will you employ to accomplish the task?
- What NIACAP certification levels are recommended by the certifier? Each correct answer represents a complete solution. Choose all that apply.
- In which of the following testing methodologies do assessors use all available documentation and work under no constraints, and attempt to circumvent the security features of an information system?
- Which of the following types of attacks occurs when an attacker successfully inserts an intermediary software or program between two communicating hosts?
- Which of the following security models focuses on data confidentiality and controlled access to classified information?
- You are advising a school district on disaster recovery plans. In case a disaster affects the main IT centers for the district they will need to be able to work from an alternate location. However, budget is an issue. Which of the following is most appropriate for this client?
- The NIST Information Security and Privacy Advisory Board (ISPAB) paper "Perspectives on Cloud Computing and Standards" specifies potential advantages and disdvantages of virtualization. Which of the following disadvantages does it include? Each correct answer represents a complete solution.Choose all that apply.
- Which of the following refers to the ability to ensure that the data is not modified or tampered with?
- Which of the following are the basic characteristics of declarative security? Each correct answer represents a complete solution. Choose all that apply.