Saint Leo COM540 Module 4 Mid Term Exam
Page 1
SAINT LEO COM540 MODULE 4 MID TERM EXAM Question 1. Question : The ____ is the point in time by which systems and data must be recovered after an outage as determined by the business unit. training objective recovery time objective dependency objective recovery point objective Question 2. Question : The ____ contains the rules and configuration guidelines governing the implementation and operation of IDSs within the organization. security policy log file honeypot site policy Question 3. Question : ____ services are triggered by an event or request, such as a report of a compromised host, wide - spreading malicious code, software vulnerability, or something that was identified by an intrusion detection or logging system. Reactive Forensic Security Proactive Question 4. Question :Page 2
Page 3
A(n) ____ is a document containing contact information for the individuals that need to be notified in the event of an actual incident. root roster alert roster hierarchical roster sequential roster Question 5. Question : ____ is the control approach that attempts to shift the risk to other assets, other processes, or other organizations. Acceptance Transference Mitigation Avoidance Question 6. Question : A ____ deals with the preparation for and recovery from a disaster, whether natural or man - made. risk assessment mitigation plan risk management disaster recovery plan Question 7. Question : Which of the following is a proactive service? Incident handling Risk analysis AnnouncementsPage 4
Alerts and warnings Question 8. Question : A favorite pastime of information security professionals is ____, which is realistic, head - to - head attack and defend information, security attacks, and incident response methods. parallel testing war gaming simulation structured walk - through Question 9. Question : In an organization, unexpected activities occur periodically; these are referred to as ____. warnings problems after - action events Question 10. Question : The ____ job functions focus more on costs of system creation and operation, ease of use for system users, and timeliness of system creation, as well as transaction response time. organizational management and professionals information technology management and professionals human resource management and professional information security management and professionals Question 11. Question : ____ is the control approach that attempts to reduce the impact caused by the exploitation of vulnerability through planning and preparation. AcceptanceSAINT LEO COM540 MODULE 4 MID TERM EXAM Question 1. Question : The ____ is the point in time by which systems and data must be recovered after an outage as determined by the business unit. training objective recovery time objective dependency objective recovery point objective Question 2. Question : The ____ contains the rules and configuration guidelines governing the implementation and operation of IDSs within the organization. security policy log file honeypot site policy Question 3. Question : ____ services are triggered by an event or request, such as a report of a compromised host, wide - spreading malicious code, software vulnerability, or something that was identified by an intrusion detection or logging system. Reactive Forensic Security Proactive Question 4. Question : A(n) ____ is a document containing contact information for the individuals that need to be notified in the event of an actual incident. root roster alert roster hierarchical roster sequential roster Question 5. Question : ____ is the control approach that attempts to shift the risk to other assets, other processes, or other organizations. Acceptance Transference Mitigation Avoidance Question 6. Question : A ____ deals with the preparation for and recovery from a disaster, whether natural or man - made. risk assessment mitigation plan risk management disaster recovery plan Question 7. Question : Which of the following is a proactive service? Incident handling Risk analysis Announcements Alerts and warnings Question 8. Question : A favorite pastime of information security professionals is ____, which is realistic, head - to - head attack and defend information, security attacks, and incident response methods. parallel testing war gaming simulation structured walk - through Question 9. Question : In an organization, unexpected activities occur periodically; these are referred to as ____. warnings problems after - action events Question 10. Question : The ____ job functions focus more on costs of system creation and operation, ease of use for system users, and timeliness of system creation, as well as transaction response time. organizational management and professionals information technology management and professionals human resource management and professional information security management and professionals Question 11. Question : ____ is the control approach that attempts to reduce the impact caused by the exploitation of vulnerability through planning and preparation. Acceptance