Chapter 3 Flashcards Preview

IS4680 SECURITY AUDITING FOR COMPLIANCE > Chapter 3 > Flashcards

Flashcards in Chapter 3 Deck (15)
Loading flashcards...
1
Q

COMPENSATING CONTROL

A

Alternative counter-measures to minimize risk.

2
Q

THE TJX COMPANIES, INC.

A

The detailed recording, management, and updating regarding the details of an information system.

3
Q

GAP ANALYSIS

A

A comparison between the actual and desired outcome.

4
Q

IDENTITY THEFT

A

The taking of one’s personal information for unauthorized use.

5
Q

LAN DOMAIN

A

An IT domain that comprises the equipment making up the local area network.

6
Q

LAN-TO-WAN DOMAIN

A

An IT domain that bridges between the LAN and the WAN.

7
Q

PRIVACY MANAGEMENT

A

The rights and obligations of individuals and organizations in regard to how they manage personal information.

8
Q

PRIVACY OFFICER

A

Senior-level management position within an organization with responsibiility for privacy laws and the impact to the organization.

9
Q

REMOTE ACCESS DOMAIN

A

An IT domain that covers the access infrastructure for users accessing remote systems.

10
Q

RISK ASSESSMENT

A

An analysis of threats and vulnerabilites against assets. This allows risks to be prioritized.

11
Q

SOCIAL ENGINEERING

A

An act of manipulating people into divulging information.

12
Q

SYSTEM/APPLICATION DOMAIN

A

An IT domain that covers network systems, applications, and software for users.

13
Q

USER DOMAIN

A

An IT domain that covers the end users of information systems.

14
Q

WAN DOMAIN

A

A network covering a large area often connecting multiple LANs.

15
Q

WORKSTATION DOMAIN

A

The operating environment of an end user.