A number of technical mechanisms—digital watermarks, embedded code, copyright codes, and even the intentional placement of bad sectors on software media—have been used to enforce copyright laws.

Copyright Protection and User Registration

Other utility services can affect organizations as well. Among these are telephone, water, wastewater, trash pickup, cable television, natural or propane gas, and custodial services. The loss of these services can impair the ability of an organization to function.

Communications and Other Provider Issues

Utility services are always reliable.

Loss of utility services has no impact on organizations.

Organizations thrive without any utility services.

are common and can lead to fluctuations such as power excesses, power shortages, and power losses. These fluctuations can pose problems for organizations that provide inadequately conditioned power for their information systems equipment.

Power shortages are beneficial for organizations.

Power stability is guaranteed in all situations.

Power fluctuations improve organizational efficiency.

A far more sophisticated and potentially much faster password attack is possible if the attacker can gain access to an encrypted password file, such as the Security Account Manager (SAM) data file.

Access to an encrypted password file allows for faster password attacks.

Access to an encrypted password file makes attacks impossible.

Access to an encrypted password file slows down password attacks.

While social engineering is discussed in detail later in the section called “Human Error or Failure,” it is worth mentioning here as a mechanism to gain password information.

Social Engineering Password Attacks

Social engineering is a method to enhance security.

Social engineering is a technique for improving user awareness.

Social engineering is unrelated to password security.

There are innumerable reports of hackers accessing systems and damaging or destroying critical data. Hacked Web sites once made front-page news, as the perpetrators intended. The impact of these acts has lessened as the volume has increased.

Hacking incidents have become less frequent over time.

The impact of hacking has increased despite fewer incidents.

Hacked websites are now more secure than before.

A much more sinister form of hacking is _____. The United States and other governments are developing security measures intended to protect critical computing and communications networks as well as physical and power utility infrastructures.

Cyberterrorism and Cyberwarfare

Not all online activism is negative. Social media outlets, such as Facebook, MySpace, Twitter, and YouTube, are commonly used to perform fundraising, raise awareness of social issues, gather support for legitimate causes, and promote involvement.

Social media is only used for entertainment.

All online activism is harmful.

Fundraising is not a part of online activism.

when a manufacturer distributes equipment containing a known or unknown flaw. These defects can cause the system to perform outside of expected parameters, resulting in unreliable service or lack of availability.

Technical Hardware Failures or Errors

Quality assurance testing procedures

Manufacturer warranty for equipment

Antiquated or outdated infrastructure can lead to unreliable and untrustworthy systems. Management must recognize that when technology becomes outdated, there is a risk of losing data integrity from attacks.

Outdated infrastructure enhances data integrity.

Modern infrastructure is always secure.

Data integrity is unaffected by technology updates.

Originates from an executive branch or authorized regulatory agency, and includes executive orders and regulations. refers to secondary legislation, including regulations, promulgated by an executive branch agency under a delegation from a legislature.

Regulatory or Administrative Law

Originates from a judicial branch or oversight board and involves the interpretation of law based on the actions of a previous and/or higher court or board.

Common Law, Case Law, and Precedent

is a respected professional society that was established in 1947 as “the world’s first educational and scientific computing society.”

Association for Computing Machinery (ACM)

Institute of Electrical and Electronics Engineers (IEEE)

International Association for Computing (IAC)

is a nonprofit organization that focuses on the development and implementation of information security certifications and credentials.

International Information Systems Security Certification Consortium, Inc.

is a professional association that focuses on auditing, control, and security. The membership comprises both technical and managerial professionals.

Information Systems Audit and Control Association (ISACA)

is a nonprofit society of more than 10,000 information security professionals in over 100 countries. As a professional association, its primary mission is to bring together qualified information security practitioners for information exchange and educational development.

ISSA (Information Systems Security Association)

(ISC)² (International Information System Security Certification Consortium)

ISACA (Information Systems Audit and Control Association)

describes the entire function of controlling, or governing, the processes used by a group to accomplish some objective. It represents the strategic controlling function of an organization’s senior management, which is designed to ensure informed, prudent strategic decisions made in the best interest of the organization.

Operational control function of middle management

Tactical oversight function of junior staff

Financial management function of external auditors

is also known as a general security policy, organizational security policy, IT security policy, or information security policy.

enterprise information security policy (EISP)

While issue-specific policies are formalized as written documents readily identifiable as policy, _________ sometimes have a different look.

Systems-Specific Security Policy (SysSP)

The next phase in developing the contingency planning process, after developing the CP policy, is

business impact analysis (BIA).

Once the organization has created a prioritized list of its mission and business processes, it needs to determine which resources would be required to recover those processes and associated assets.

Identify resource requirements.

Assess risks without considering resource needs.

Determine resources for unrelated projects.

List all business processes without prioritization.

Info Assurance reviewer

Authored by Majestic Cheese

Computers

University

Used 1+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

54 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

MULTICS

Multi-User Time Sharing System

Multiplexed Information and Computing Service

Multiplexed Information and Communication System

Multimedia Information and Computing Service

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

“The quality or state of being secure—to be free from danger”

Safety

Security

Protection

Defense

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The protection of information and its critical elements, including systems
and hardware that use, store, and transmit that information

Software protection

Network security

Data management

security

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

is entire set of components necessary to use
information as a resource in the organization

Information system

Database management system

Knowledge base

Data warehouse

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Methodology for design and implementation of information system

Systems Development Life Cycle (SDLC)

Data analysis

User training

System decommissioning

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A tool that security professionals can use to understand attacks is the ________ Web site hosted by
Mitre—a nonprofit research and development organization sponsored by the U.S.
government.

Common Attack Pattern Enumeration and Classification (CAPEC)

CVE Database

OWASP Top Ten

SANS Institute

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The unauthorized duplication, installation, or distribution of copyrighted
computer software, which is a violation of intellectual property.

Software sharing

Software distribution

Software licensing

Software piracy

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

50 questions

Grade 5 IT Quiz

Quiz

•

5th Grade - University

50 questions

Test 1 - SDT 2113

Quiz

•

University

50 questions

Cyber Quiz

Quiz

•

University

50 questions

Quiz Python

Quiz

•

University

50 questions

Power BI Quiz

Quiz

•

University

50 questions

KUIS Jaringan Komputer dan Internet

Quiz

•

7th Grade - University

53 questions

UTS Struktur Data

Quiz

•

University

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

15 questions

Hargrett House Quiz: Community & Service

Quiz

•

5th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

18 questions

Informative or Argumentative essay

Quiz

•

5th Grade - University

20 questions

Disney Trivia

Quiz

•

University

20 questions

8.II_Review_TEACHER

Quiz

•

University

39 questions

Unit 7 Key Terms

Quiz

•

11th Grade - University

20 questions

Subject verb agreement practice

Quiz

•

University

20 questions

Quadrilaterals

Quiz

•

KG - University

5 questions

Examining Theme

Interactive video

•

4th Grade - University

25 questions

WWI, Great Depression, WWII

Quiz

•

KG - University

Info Assurance reviewer

MULTICS

“The quality or state of being secure—to be free from danger”

The protection of information and its critical elements, including systemsand hardware that use, store, and transmit that information

is entire set of components necessary to useinformation as a resource in the organization

Methodology for design and implementation of information system

A tool that security professionals can use to understand attacks is the ________ Web site hosted byMitre—a nonprofit research and development organization sponsored by the U.S.government.

The unauthorized duplication, installation, or distribution of copyrightedcomputer software, which is a violation of intellectual property.

A number of technical mechanisms—digital watermarks, embedded code,copyright codes, and even the intentional placement of bad sectors on softwaremedia—have been used to enforce copyright laws.

In organizations that rely heavily on the Internet and the World Wide Web tosupport continued operations, ______ can considerably undermine theavailability of information.

Other utility services can affect organizations as well. Among these are telephone,water, wastewater, trash pickup, cable television, natural or propane gas, andcustodial services. The loss of these services can impair the ability of anorganization to function.

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

The protection of information and its critical elements, including systems
and hardware that use, store, and transmit that information

is entire set of components necessary to use
information as a resource in the organization

A tool that security professionals can use to understand attacks is the ________ Web site hosted by
Mitre—a nonprofit research and development organization sponsored by the U.S.
government.

The unauthorized duplication, installation, or distribution of copyrighted
computer software, which is a violation of intellectual property.

A number of technical mechanisms—digital watermarks, embedded code,
copyright codes, and even the intentional placement of bad sectors on software
media—have been used to enforce copyright laws.

In organizations that rely heavily on the Internet and the World Wide Web to
support continued operations, ______ can considerably undermine the
availability of information.

Other utility services can affect organizations as well. Among these are telephone,
water, wastewater, trash pickup, cable television, natural or propane gas, and
custodial services. The loss of these services can impair the ability of an
organization to function.