Information Security and Governance Quiz

ISO 9001

ISO 27001

ISO 14001

ISO 20000

Cybercrime Prevention Act of 2012 (RA 10175)

E-Commerce Act of 2000 (RA 8792)

Data Privacy Act of 2012 (RA 10173)

Freedom of Information Order

Customer focus

Leadership

Continual improvement

Maximizing profit

Focusing on individual tasks only

Managing activities as interconnected systems

Relying solely on employee initiative

Removing all documentation requirements

RA 10173

RA 11032

EO No. 2, s. 2016

RA 8792

Eliminate all online services

Streamline frontline services and reduce red tape

Avoid publishing citizen charters

Limit ICT adoption

It ensures political compliance.

It guarantees zero errors in IT systems.

It builds trust by ensuring internationally recognized standards of quality and security.

It eliminates the need for audits.

Too much leadership support

Over-documentation without actual implementation

Strong employee engagement

Regular internal audits

Hiring only IT graduates

Risk assessment and risk treatment plan

Posting passwords on bulletin boards for easy access

Ignoring third-party vendor risks

Paper-based transactions only

Fragmented ICT solutions in every agency

Interoperability and citizen-centric digital government services

Avoiding private sector partnerships