What is the main focus of risk mitigation?

Reducing the impact or likelihood of a risk

The PDCA cycle stands for

Prepare, Defend, Control, Audit

Prevent, Detect, Control, Assess

The “Check” stage in PDCA focuses on

Evaluating effectiveness of implemented controls

The final “Act” phase of PDCA involves

Applying corrective actions based on evaluations

What is the main objective of continuous monitoring?

To detect deviations from expected security performance

Which statement best describes integrity?

Assuring data is accurate and unchanged

Ensuring information is accessible

Which of the following demonstrates defense in depth?

Firewall, antivirus, user training, and encryption

Policy without hardware support

Which of the following best defines risk management?

Identifying, analyzing, and controlling threats to assets

Installing anti-malware software

The main benefit of adopting international IA standards is

Consistency with global best practices

What is the goal of an Information Security Management System (ISMS)?

To manage and improve data security systematically

The term “availability” refers to

Ensuring authorized users can access information when needed

Which activity is most related to auditing?

Reviewing system logs for compliance

What is the best example of a detective control in a network?

Intrusion Detection System (IDS)

The purpose of an access control policy is to

Define who can access what information and under what conditions

Which of the following is an example of a compensating control?

Alternate safeguard used when primary controls are impractical

A lengthy backup routine scheduled every quarter

A redundant database replicated nightly in another region

A costly biometric system not suited for small businesses

A security checklist used only during audits

In the risk management process, the first step is to

Identify assets and potential threats

Implement software-based countermeasures after incidents

Train all personnel on regulatory frameworks before assessment

Monitor system performance metrics continuously

Conduct internal compliance reviews semiannually

Which IA concept focuses on confirming that data originates from a trusted source?

Comprehensive encryption applied across multiple tiers

Deep-packet inspection combined with signature verification

A network design focusing on redundant paths

A multilevel monitoring architecture for reliability

IAS MIDTERM

Authored by Emmanuele Barrientos

Information Technology (IT)

University

Used 1+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

100 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which principle of the CIA triad ensures data is not modified without authorization?

Integrity

Availability

Confidentiality

Authenticity

Accountability

Answer explanation

Explanation for the answer (optional)

MULTIPLE CHOICE QUESTION

20 sec • 1 pt

What is the main purpose of information assurance?

To ensure confidentiality, integrity, and availability of data

To design faster networks

To improve software usability

To upgrade hardware

To replace outdated policies

Answer explanation

Jupiter is a gas giant made primarily of hydrogen and helium. Unlike terrestrial planets that have solid surfaces, gas giants like Jupiter don't have a well-defined solid surface, allowing them to accumulate more mass in a gaseous form. This composition has allowed Jupiter to grow significantly larger than planets with solid surfaces.

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Which approach uses multiple layers of protection to secure systems?

Defense in depth

Access minimization

Privileged escalation

Static protection

Single-tier strategy

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which component of the CIA triad focuses on restricting data disclosure?

Confidentiality

Availability

Integrity

Auditability

Adaptability

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

The principle of least privilege helps an organization by

Reducing access to only what is necessary for each user

Allowing unlimited access to admins

Increasing employee collaboration

Disabling multi-factor authentication

Sharing all accounts

MULTIPLE CHOICE QUESTION

20 sec • 1 pt

Which term describes a flaw that an attacker could exploit?

Vulnerability

Threat

Impact

Incident

Control

MULTIPLE CHOICE QUESTION

20 sec • 1 pt

A potential event that could exploit a system weakness is called a

Threat

Control

Policy

Incident

Exposure

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Microsoft

or continue with

Facebook

Apple

Others

Already have an account?

Similar Resources on Wayground

101 questions

ITT640 Part 2

Quiz

•

University

95 questions

Computer and Technology Basics

Quiz

•

University

100 questions

Database Concepts Quiz

Quiz

•

University

100 questions

Викторина без названия

Quiz

•

University

100 questions

LEARNING OUTCOMES - PART 1

Quiz

•

University

Popular Resources on Wayground

10 questions

Main Idea and Supporting Details

Quiz

•

3rd - 6th Grade

20 questions

Math Review

Quiz

•

3rd Grade

14 questions

25-26 SY 8th Grade EOY Benchmark

Quiz

•

8th Grade

15 questions

Fast food

Quiz

•

7th Grade

20 questions

Math Review

Quiz

•

6th Grade

20 questions

Context Clues

Quiz

•

6th Grade

21 questions

EOY Grade 6 Benchmark Assessment - Content Skills

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

Discover more resources for Information Technology (IT)

20 questions

USA States

Quiz

•

4th Grade - University

11 questions

dog breeds

Quiz

•

3rd Grade - Professio...

20 questions

Present Perfect vs simple past quiz

Quiz

•

University

20 questions

Disney Trivia

Quiz

•

University

20 questions

Disney characters

Quiz

•

KG - Professional Dev...

55 questions

Mock EOC/ Interim 3 Review

Quiz

•

KG - University

IAS MIDTERM

Which principle of the CIA triad ensures data is not modified without authorization?

Explanation for the answer (optional)

What is the main purpose of information assurance?

Which approach uses multiple layers of protection to secure systems?

Which component of the CIA triad focuses on restricting data disclosure?

The principle of least privilege helps an organization by

Which term describes a flaw that an attacker could exploit?

A potential event that could exploit a system weakness is called a

The likelihood of a threat exploiting a vulnerability represents

Which of the following is an example of a preventive control?

Which control identifies an incident after it happens?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Information Technology (IT)