A system is designed to dynamically block offending Internet IP-addresses from requesting services from a secure website. This type of control is considered

• A.Preventive detection control
• B.Corrective security control
• C.Zero-day attack mitigation
• D.Dynamic blocking control

Comment: *

Name: *

Email: *

Verification: *

To get an Information Security project back on schedule, which of the following will provide the MOST help?

• A.More frequent project milestone meetings
• B.Extend work hours
• C.Upper management support
• D.Stakeholder support

Comment: *

Name: *

Email: *

Verification: *

The risk found after a control has been fully implemented is called:

• A.Post implementation risk
• B.Transferred risk
• C.Residual Risk
• D.Total Risk

Comment: *

Name: *

Email: *

Verification: *

The framework that helps to define a minimum standard of protection that business stakeholders must attempt to achieve is referred to as a standard of:

• A.Due Compromise
• B.Due process
• C.Due Care
• D.Due Protection

Comment: *

Name: *

Email: *

Verification: *

Which of the following is a countermeasure to prevent unauthorized database access from web applications?

• A.Removing all stored procedures
• B.Library control
• C.Session encryption
• D.Input sanitization

Comment: *

Name: *

Email: *

Verification: *