The first priority of the CISO and the InfoSec management team should be the __________.

implementation of a risk management program

development of a security policy

adoption of an incident response plan

The letters GRC represent an approach to information security strategic guidance from a board of directors or senior management perspective. The letters stand for __________, __________, and __________.

governance, risk management, compliance

government, regulation, classification

generalization, risk assessment, cryptography

governance, risk control, confidentiality

c251-3b

Authored by David Berryman

Computers

University

Used 2+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

30 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Individuals who control, and are therefore responsible for, the security and use of a particular set of information are known as ____________.

data owners

data custodians

data users

data generators

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the first phase of the SecSDLC?

analysis

investigation

logical design

physical design

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The individual responsible for the assessment, management, and implementation of information-protection activities in the organization is known as a(n) ____________.

chief information security officer

security technician

security manager

chief technology officer

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

In which phase of the SecSDLC does the risk management task occur?

physical design

implementation

investigation

analysis

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

An example of a company stakeholder includes all of the following EXCEPT:

employees

the general public

stockholders

management

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A project manager who understands project management, personnel management, and InfoSec technical requirements is needed to fill the role of a(n) ____________.

champion

auditor

team leader

policy developer

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The individual accountable for ensuring the day-to-day operation of the InfoSec program, accomplishing the objectives identified by the CISO, and resolving issues identified by technicians is known as a(n) ____________.

chief information security officer

security technician

security manager

chief technology officer

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

25 questions

DEL Test

Quiz

•

University

25 questions

Algorithms are not magic - AQA A Level Computer Science

Quiz

•

8th Grade - University

25 questions

Aptitude Competition(FY)

Quiz

•

University

26 questions

Typescript class 02

Quiz

•

University

25 questions

Information Technology Basic

Quiz

•

University

25 questions

Atividade sobre Modelos de Processo de Software

Quiz

•

University

25 questions

SDN & VMWare

Quiz

•

University

25 questions

Module 3 - Security Architecture

Quiz

•

University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

20 questions

CompTIA Network+ - Ports and Protocols

Quiz

•

University

c251-3b

Individuals who control, and are therefore responsible for, the security and use of a particular set of information are known as ____________.

What is the first phase of the SecSDLC?

The individual responsible for the assessment, management, and implementation of information-protection activities in the organization is known as a(n) ____________.

In which phase of the SecSDLC does the risk management task occur?

An example of a company stakeholder includes all of the following EXCEPT:

A project manager who understands project management, personnel management, and InfoSec technical requirements is needed to fill the role of a(n) ____________.

The individual accountable for ensuring the day-to-day operation of the InfoSec program, accomplishing the objectives identified by the CISO, and resolving issues identified by technicians is known as a(n) ____________.

A senior executive who promotes the project and ensures its support, both financially and administratively, at the highest levels of the organization is needed to fill the role of a(n) ____________ on a development team.

When using the Governing for Enterprise Security (GES) program, an Enterprise Security Program (ESP) should be structured so that governance activities are driven by the organization's executive management, and so that it selects key stakeholders as well as the ____________.

A formal approach to solving a problem based on a structured sequence of procedures, the use of which ensures a rigorous process and increases the likelihood of achieving the desired final objective, is known as a(n) ____________.

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers