Which of the following is considered to be an IT governance framework and a supporting
toolset that allows for managers to bridge the gap between control requirements, technical issues, and business risks?

• A.Information Technology Infrastructure Library (ITIL)
• B.Payment Card Industry (PCI)
• C.Control Objective for Information Technology (COBIT)
• D.Committee of Sponsoring Organizations (COSO)

Comment: *

Name: *

Email: *

Verification: *

Your organization provides open guest wireless access with no captive portals. What can you do to assist with law enforcement investigations if one of your guests is suspected of committing an illegal act using your network?

• A.Configure logging on each access point
• B.Provide IP and MAC address
• C.Disable SSID Broadcast and enable MAC address filtering on all wireless access points.
• D.Install a firewall software on each wireless access point.

Comment: *

Name: *

Email: *

Verification: *

What are the three stages of an identity and access management system?

• A.Authentication, Authorize, Validation
• B.Provision, Administration, Enforcement
• C.Administration, Validation, Protect
• D.Provision, Administration, Authentication

Comment: *

Name: *

Email: *

Verification: *

When dealing with Security Incident Response procedures, which of the following steps come FIRST when reacting to an incident?

• A.Escalation
• B.Eradication
• C.Recovery
• D.Containment

Comment: *

Name: *

Email: *

Verification: *

In which of the following cases, would an organization be more prone to risk acceptance vs. risk mitigation?

• A.The organization's risk tolerance is high
• B.The organization uses exclusively a quantitative process to measure risk
• C.The organization uses exclusively a qualitative process to measure risk
• D.The organization's risk tolerance is lo

Comment: *

Name: *

Email: *

Verification: *