Which of the following best defines confidentiality in the context of information security?

B. Protecting data from unauthorized access

A. Ensuring data is always available

C. Ensuring data is always accurate

What are the three primary components of the CIA triad in information security?

B. Confidentiality, Integrity, Availability

A. Confidentiality, Integrity, Authentication

C. Confidentiality, Availability, Authorization

D. Availability, Authorization, Authentication

Which of the following is an example of a confidentiality threat?

C. A hacker gaining unauthorized access to sensitive data

A. A server outage preventing access to data

D. Accidental deletion of a file by an employee

What is the primary goal of confidentiality controls?

C. To protect data from unauthorized access

A. To make data always available

B. To ensure data is never altered

D. To ensure data is always accurate

What is the purpose of a confidentiality risk assessment?

B. To identify and evaluate potential threats to confidentiality

A. To eliminate all security risks

C. To prioritize the implementation of security controls

D. To recover from security incidents

What is the primary objective of confidentiality risk assessments?

B. To identify and evaluate potential risks to confidentiality

A. To prevent all security threats

D. To maximize data availability

What is the primary goal of data integrity in information security?

C. To prevent data from being altered or corrupted

A. To protect data from unauthorized access

B. To ensure data is always available

D. To recover data in case of loss

Which of the following is an example of an integrity threat?

D. A computer virus corrupting a document

A. A server crash resulting in temporary data unavailability

B. A hacker gaining unauthorized access to confidential files

C. A power outage leading to data loss

What does data hashing contribute to data integrity?

B. It verifies data has not been tampered with

A. It ensures data is always available

C. It prevents unauthorized access to data

D. It encrypts data for confidentiality

In the context of data integrity, what does "checksum" refer to?

B. A value calculated from data to verify its integrity

A. A method of ensuring data confidentiality

D. A type of data access control

What is the primary purpose of an integrity risk assessment?

A. To identify and evaluate potential threats to data integrity

B. To ensure data is always available

C. To assign blame for data corruption incidents

D. To maximize data confidentiality

Which of the following is an example of a control measure to maintain data integrity?

A. Conducting regular security audits

C. Training employees on company policies

What is the primary goal of availability in information security?

D. To ensure data is always available

A. To protect data from unauthorized access

B. To ensure data is always accurate

C. To prevent data from being altered or corrupted

Which of the following is an example of an availability control measure?

D. Implementing a backup and recovery strategy

A. Conducting regular security audits

What does the term "high availability" refer to in information security?

A. Ensuring data is always available

B. Protecting data from unauthorized access

C. Preventing data from being altered or corrupted

D. Maximizing data confidentiality

In the context of availability, what does "failover" mean?

B. A backup system taking over when the primary system fails

A. A method of ensuring data confidentiality

D. A type of data access control

What is the primary purpose of an availability risk assessment?

A. To identify and evaluate potential threats to data availability

B. To ensure data is always available

C. To assign blame for availability incidents

D. To maximize data confidentiality

In the context of information security, what does "uptime" refer to?

B. The time a system is available and operational

A. The time it takes to recover from a security incident

C. The time it takes to encrypt data

D. The time it takes to conduct a security audit

What is the primary goal of authentication in information security?

A. To protect data from unauthorized access

B. To ensure data is always available

C. To prevent data from being altered or corrupted

D. To maximize data confidentiality

What does "access control" refer to in information security?

D. The process of regulating user access to resources

A. The process of verifying user identity

B. The process of monitoring data integrity

C. The process of protecting data confidentiality

In the context of access control, what does "RBAC" stand for?

B. Rapid Biometric Authentication Check

C. Remote Backup and Archiving Center

What is the primary purpose of a password policy in an organization?

C. To provide guidelines for creating and managing passwords

A. To eliminate the use of passwords

B. To dictate the password of every user

D. To ensure data is always available

Which of the following is an example of a single sign-on (SSO) solution?

C. Using a single password to access multiple applications

A. Using different passwords for email and network access

B. Requiring a fingerprint scan for access to a secure area

D. Accessing a secure server with a smart card

What is the primary goal of multi-factor authentication (MFA)?

C. To enhance security by requiring multiple authentication factors

A. To use only one authentication factor for simplicity

B. To provide a single point of access to all resources

D. To maximize data availability

What does the term "access token" refer to in authentication and access control?

B. A unique identifier associated with a user's session

A. A password used for authentication

C. A type of biometric authentication factor

D. A smart card used for access

A software development company is assessing the potential risks associated with a new project. Which of the following best describes the purpose of this risk assessment?

B. To identify and evaluate potential project risks

A. To eliminate all project risks

C. To assign blame for project failures

D. To maximize project efficiency

A cybersecurity analyst is conducting a risk assessment for an organization. During the assessment, the analyst identifies vulnerabilities in the network infrastructure. What is the next step in the risk management process?

A. Implement risk mitigation measures

C. Assess the likelihood of threats

D. Assign blame for vulnerabilities

A manufacturing company is analyzing the risk of a supply chain disruption due to a natural disaster. What type of risk assessment is this?

C. Business continuity risk assessment

An organization conducts a financial risk assessment and identifies a risk related to currency exchange rate fluctuations. What is the primary objective of risk assessment in this scenario?

B. To identify and evaluate potential financial risks

A. To eliminate all financial risks

C. To maximize financial returns

D. To assign blame for financial losses

A risk manager is evaluating the potential impact of a data breach on an organization. What aspect of risk assessment does this represent?

D. Assessing the impact of threats

A. Identifying potential threats

B. Assessing the vulnerability of systems

C. Calculating the likelihood of threats

You are the chief information security officer (CISO) of a bank. You receive an alert that the bank's online banking portal is under a distributed denial of service (DDoS) attack. What immediate action should you take to address this situation?

C. Deploy additional security measures to mitigate the DDoS attack.

A. Shut down the online banking portal to prevent further attacks.

B. Investigate the source of the attack to determine its origin.

D. Inform customers about the attack and advise them to change their passwords.

A company is migrating its data to a cloud storage provider. As the information security manager, what key considerations should you evaluate to ensure data security during this transition?

B. The cloud provider's encryption methods and data storage security.

A. The cost savings associated with the cloud migration.

C. The availability of unlimited storage space in the cloud.

D. The company's historical data usage patterns.

You work for a government agency that handles classified information. An employee accidentally leaves a classified document on their desk while they go to lunch. What immediate action should be taken to uphold confidentiality?

C. Secure the document and investigate any potential security breaches.

A. Notify the employee about the mistake and provide additional training.

B. Report the incident to higher authorities for disciplinary action.

D. Share the document with colleagues to ensure its safekeeping.

A healthcare organization has experienced a breach where patient records were accessed by unauthorized personnel. What steps should the organization take to maintain confidentiality and comply with data breach notification laws?

A. Notify affected patients, regulatory authorities, and the media immediately.

B. Keep the breach confidential to avoid damaging the organization's reputation.

C. Conduct an internal investigation without informing patients.

D. Wait for the patients to discover the breach themselves.

A financial institution recently discovered that an employee has been altering financial records to embezzle funds. What measures should the institution take to address this integrity breach?

B. Terminate the employee and conduct a thorough financial audit.

A. Ignore the situation as it might be an isolated incident.

C. Promote the employee to avoid further suspicion.

D. Notify other employees about the incident to prevent similar behavior.

An e-commerce platform has identified a flaw in its payment processing system that occasionally results in incorrect billing amounts. What should the company prioritize to maintain the integrity of its financial transactions?

B. Address the system flaw promptly and refund any overcharges.

A. Continuously charge customers extra to compensate for the errors.

C. Keep the flaw secret to avoid alarming customers.

D. Implement additional advertisements to distract customers from the issue.

A popular social media platform is experiencing frequent outages, causing frustration among its users. As the chief technology officer (CTO), what should you do to improve availability?

B. Investigate the root causes of the outages and implement solutions.

A. Ignore the outages as they are common in the industry.

C. Shift user attention to other features to divert them from the outages.

D. Increase subscription fees to fund better infrastructure.

INFORMATION ASSURANCE AND SECURITY / REVIEW

Authored by MARK SANIG

Social Studies

University

Used 1+ times

INFORMATION ASSURANCE AND SECURITY / REVIEW

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

55 questions

Show all answers

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

What is the primary goal of Information Assurance and Security?

A. To protect against all cyber threats

B. To achieve 100% availability of data

C. To ensure the confidentiality, integrity, and availability of information

D. To maximize network speed

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Which of the following is not one of the three pillars of information assurance?

A. Confidentiality

B. Integrity

C. Availability

D. Accountability

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

What is the primary purpose of a risk assessment in Information Assurance and Security?

A. To eliminate all risks

B. To identify and prioritize potential risks

C. To assign blame for security incidents

D. To increase data availability

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

In the context of Information Assurance and Security, what is the primary goal of incident response?

A. To prevent all security incidents

B. To identify and address security incidents in a timely manner

C. To hold individuals accountable for incidents

D. To ensure 100% data integrity

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

A company conducts a thorough assessment to determine the likelihood and potential impact of a security breach. This assessment is part of:

A. Risk management

B. Incident response

C. Security controls

D. Confidentiality protection

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Which of the following is NOT considered a security control?

A. Intrusion Detection System (IDS)

B. Password policy

C. Security awareness training

D. Antivirus software

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

A situation where an employee accidentally sends a sensitive document to the wrong recipient is an example of:

A. A security control failure

B. An incident response success

C. An integrity breach

D. A risk assessment

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

50 questions

PIL GANDA LAT PSA XI BR GENAP

Quiz

•

University

50 questions

English Colonization of North America

Quiz

•

8th Grade - University

51 questions

Unit 6 Review: Economics

Quiz

•

9th Grade - University

50 questions

Primer parcial de Psicotécnica pedagógica

Quiz

•

1st Grade - University

57 questions

FPE 101 MODULE 1 & 2 Prelim Exam

Quiz

•

University

60 questions

Penjelajahan Samudera dan Pergerakan Kebangsaan

Quiz

•

8th Grade - University

50 questions

Penialain Sumatif IPS Kelas IX

Quiz

•

9th Grade - University

53 questions

Arte y Cultura

Quiz

•

6th Grade - University

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

22 questions

School Wide Vocab Group 1 Master

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

12 questions

What makes Nebraska's government unique?

Quiz

•

4th - 5th Grade

Discover more resources for Social Studies

41 questions

Unit 8 Key Terms

Quiz

•

11th Grade - University