Week 1 IS-IA Quiz 1

What is the term for the principle that ensures authorized users can access and use information and systems when needed?

Which of the following best describes the "Security Mindset"?

Information Security (IS) is defined as the protection of information from unauthorized access or alterations. Which of the following is it a subset of IS?

How does a proactive security model differ from a reactive security model?

A company implements strong encryption for all its sensitive customer data. Which principle of Information Assurance is primarily being addressed by this measure?

A university's student grading system is designed to prevent any unauthorized changes to grades once they are officially submitted. This aligns with which core principle of Information Assurance?

During a security audit, an IT professional critically examines a new system's architecture, looking for potential weaknesses that even advanced attackers might exploit, rather than just known vulnerabilities. This approach best exemplifies which concept?

An organization experiences a data breach where an unpatched software vulnerability was exploited, similar to the Equifax hack. To prevent future incidents of this nature, what lesson from major breaches is most relevant for the organization to implement?

A small business is considering a new cloud-based customer relationship management (CRM) system. When applying a security mindset, what question would be most critical to ask regarding this new system?

Following a detected but contained phishing attempt on employee credentials, an organization decides to review and strengthen its email security protocols and implement mandatory security awareness training. This response demonstrates a shift towards what type of security model?