Cyber Policy quiz 4

Lee is late for a meeting due to a personal issue. She requests her colleague to login on her behalf to record a meeting since her attendance is really critical. What do you think of this scenario?

High risk UNSW Information Services must be configured to fail: (Select multiple correct answers)

Privileged accounts (including any privileged accounts used by suppliers or service providers, any service accounts, shared accounts or generic accounts) must have their business requirements documented and stored in a searchable format. The information stored must include: (Select multiple correct answers)

Gary is designing a high risk HR system and intends to use an account with username 'unswHR' as login. Is he permitted to do the same?

Unauthenticated access must only be provided for ​ (a)   digital information

Rachel is the Business Owner of procurement software for the University of New South Wales (UNSW). She is responsible for ensuring that appropriate recovery strategies and processes are defined and implemented for UNSW Information Services to restore services in the required time. What must she do to ensure that the Disaster Recovery plan is effective?

How often must Rachel's system Disaster Recovery plan be tested?

Arun is a business owner of Finance application that is designed in a way it requires 5 privileged accounts. For each of these accounts. Which of the following business requirements must be documented by him as the business owner? (multiple correct answers)

Jake needs to install service account to perform a system function for a high risk system. He insists on having an interactive login for himself for this account. What is you advise to Jake?

Cindy is working on the design of IDAM controls for a student accommodation management system. She wants to understand appropriate password parameters for the system. Which of the following must be include? (multiple correct answers)