What of the following is MOST important to include in an information security policy?

• A.Maturity levels
• B.Best practices
• C.Management objectives
• D.Baselines

Comment: *

Name: *

Email: *

Verification: *

Which of the following would BEST protect an organization's confidential data stored on a laptop computer from unauthorized access?

• A.Strong authentication by password
• B.Encrypted hard drives
• C.Multifactor authentication procedures
• D.Network-based data backup

Comment: *

Name: *

Email: *

Verification: *

A new port needs to be opened in a perimeter firewall. Which of the following should be the FIRST step before initiating any changes?

• A.Prepare an impact assessment report.
• B.Conduct a penetration test.
• C.Obtain approval from senior management.
• D.Back up the firewall configuration and policy files.

Comment: *

Name: *

Email: *

Verification: *

Who should determine the appropriate classification of accounting ledger data located on a database server and maintained by a database administrator in the IT department?

• A.Database administrator (DBA)
• B.Finance department management
• C.Information security manager
• D.IT department management

Comment: *

Name: *

Email: *

Verification: *

When a user employs a client-side digital certificate to authenticate to a web server through Secure Socket Layer (SSL), confidentiality is MOST vulnerable to which of the following?

• A.IP spoofing
• B.Man-in-the-middle attack
• C.Repudiation
• D.Trojan

Comment: *

Name: *

Email: *

Verification: *