The formal certification and accreditation process has four primary steps, what are they?

• A.Evaluating, describing, testing and authorizing
• B.Auditing, documenting, verifying, certifying
• C.Evaluating, purchasing, testing, authorizing
• D.Discovery, testing, authorizing, certifying

Comment: *

Name: *

Email: *

Verification: *

The process of creating a system which divides documents based on their security level to manage access to private data is known as

• A.security coding
• B.data security system
• C.privacy protection
• D.data classification

Comment: *

Name: *

Email: *

Verification: *

Your IT auditor is reviewing significant events from the previous year and has identified some procedural oversights.
Which of the following would be the MOST concerning?

• A.Lack of periodic examination of access rights
• B.Lack of notification to the public of disclosure of confidential information
• C.Failure to notify police of an attempted intrusion
• D.Lack of reporting of a successful denial of service attack on the network.

Comment: *

Name: *

Email: *

Verification: *

Credit card information, medical data, and government records are all examples of:

• A.Territorial Information
• B.Bodily Information
• C.Confidential/Protected Information
• D.Communications Information

Comment: *

Name: *

Email: *

Verification: *

The PRIMARY objective of security awareness is to:

• A.Encourage security-conscious behavior
• B.Put employees on notice in case follow-up action for noncompliance is necessary
• C.Ensure that security policies are read.

Comment: *

Name: *

Email: *

Verification: *