Full Flashcards

Question

In planning an IS audit, the most critical step is the identification of...

Answer 1

time allotted for the audit.

Answer 2

identify and evaluate the existing controls.

Answer 3

A sample system-generated exception report for the review period, with follow-up actions noted by the reviewer.

Answer 4

To provide reasonable assurance material items will be addressed.

Answer 5

Outline the overall authority, scope and responsibilities of the audit function.

Answer 6

applicable statutory requirements.

Answer 7

Automated code comparison (efficiency)

Answer 8

Purpose, objective, and scope of the audit.

Answer 9

expand activities to determine whether an investigation is warranted.

Answer 10

perform additional analysis to determine why the approval and workflow processes are not operating as intended. Before making any recommendation, the IS auditor should gain an understanding of the scope of the problem and the factors that caused the incident(s). IS auditor should determine if caused by managers not following procedure, a problem with the workflow of the automated system, or a combination of both.

Answer 11

Report the identified condition (separation of duties).

Answer 12

Corrective control because it is designed to correct errors, omissions, and unauthorized uses and intrusions when they are detected.

Answer 13

Document the finding and explain the risk of using shared IDs.

Answer 14

that the control is operating as designed.

Answer 15

to accurately capture data from the organization's systems without causing excessive performance problems.

Answer 16

Substantive testing, such as document review of walkthrough are most effective for determining operational effectiveness.

Answer 17

Verify that only approved program changes are implemented.

Answer 18

Reliability

Answer 19

Perform a risk assessment.

Answer 20

understand the business, its operating model, and key processes.

Answer 21

provide a basis for drawing reasonable conclusions.

Answer 22

address audit objectives.

Answer 23

Observation helps to ascertain whether two individuals do get involved in the execution of the operation and an element of oversight exists.

Answer 24

Check digit. This is a numeric value that has been calculated mathematically and is added to data to ensure that original data have not been altered, or that an incorrect, but valid, match has occurred.

Answer 25

Was a lengthy scenario Q

Answer 26

report the weakness as observed.

Answer 27

Walkthrough. Usually includes a combination of inquiry, observation, inspection of relevant documentation, and reperformance of controls. Here, we follow the manual log review process from start to finish to a gain a thorough understanding of the overall process and identify potential control weaknesses.

Answer 28

Attribute sampling is the primary method used for compliance testing. Attribute sampling is used to estimate the rate of occurrence in a population and is used in compliance testing to determine whether quality exists.

Answer 29

Confidentiality of the workpapers.

Answer 30

Table Lookups. Input data are checked against predefined tables, which prevent any undefined data to be entered.

Answer 31

Trend/Variance detection tools look for anomalies in user or system behavior, such as invoices with increasing invoice numbers.

Answer 32

Sufficient and appropriate audit evidence.

Answer 33

If he has been or is actively involved in the development, acquisition, and implementation of the system.

Answer 34

Generalized audit software, which includes mathematical computations, stratification, statistical analysis, sequence checking, duplicate checking, and re-computations. An IS auditor can used generalized audit software to design appropriate tests to re-compute payroll, thereby determining whether overpayments were made, and to whom.

Answer 35

allows the IS auditor to review and follow up on audit issues in a timely manner, since audit findings are gathered in near real-time.

Answer 36

Re-performance, because it checks to see if the results are the same from an independent person, thus providing the strongest assurance.

Answer 37

To continue to test the accounting app controls and include this deficiency in the final report. It is the responsibility of the IS auditor to repor5t on the findings that can have a material impact on the effectiveness of controls, whether or not they are within the scope of the audit.

Answer 38

The results of a test performed by an external IS auditor should always be considered more reliable evidence than a letter from a third party because of the audit techniques and standard methodologies that provide reasonable assurance that the controls are accurate.

Answer 39

The report is backed by sufficient and appropriate audit evidence.

Answer 40

professional independence.

Answer 41

Reliability, because the data are directly collected by the IS auditor, the audit findings can be reported with an emphasis on the reliability of the records that are produced and maintained in the system. The reliability of the source of information used provides reassurance on the generated findings.

Answer 42

Identify the critical controls.

Answer 43

Verify that only approved program changes are implemented.

Answer 44

Compliance testing. Checking to see if controls are being applied in alignment with the policy.

Answer 45

Senior management identifies key business processes.

Answer 46

Privacy laws can prevent cross-border flow of information.

Answer 47

strategic plans.

Answer 48

Request that senior management accepts the risk. Since senior management determines resource allocation, it is imperative that they accept the risk from their decision.

Answer 49

Implementing an IT scorecard. The key objective of an IT governance program is to support the business.

Answer 50

Understanding the responsibility and authority of individuals.

Answer 51

rebuilding.

Answer 52

Organization governance practices are put into practice. Standard definitions of data elements is part of a data governance initiative.

Answer 53

the IT strategy extends the organization's strategies and objectives.

Answer 54

the steering committee. It draws its representation from senior management.

Answer 55

Approving and monitoring the status of IT plans and budgets. Serves as a general review board for major IT projects and should not become involved in routine operations.

Answer 56

To identify potential errors or inconsistencies in business processes. This helps uncover potential fraud or inconsistencies.

Answer 57

effectiveness of the QA function, because it should interact between project management and user management.

Answer 58

make decisions based on data analysis and interactive models. A DSS emphasizes flexibility in the decision-making approach of management through data analysis and the use of interactive models, not fixed criteria.

Answer 59

responsible for determining business goals. This is a function of senior management, not the IT steering committee.

Answer 60

Investment portfolio analysis, which also adds the most value to the strategic IT initiative decision-making process.

Answer 61

Potential Loss

Answer 62

Predictable software processes are followed.

Answer 63

predictable software processes are followed.

Answer 64

To prevent conflicts of interest (i.e., releasing sensitive information)

Answer 65

establish responsibility and accountability for the employee's actions.

Answer 66

an email archive policy. With a policy of well-archived emails records, access to retrieval of specific email records to comply w/legal requirements is possible.

Answer 67

A determination of risk priorities that are based on potential consequences.

Answer 68

threats/vulnerabilities affecting the assets.

Answer 69

enforcement of the management of security risk.

Answer 70

maintain minutes of its meetings and keep the board of directors informed.

Answer 71

Results of a risk assessment.

Answer 72

business plan.

Answer 73

Conduct periodic audit reviews of the vendor.

Answer 74

risk mitigation

Answer 75

is aligned with business plan.

Answer 76

Core activities that provide a differentiated advantage to the organization have been outsources. These should generally NOT be outsourced because they are what the organization does best. An IS auditor observing such a condition should be concerned.

Answer 77

An indemnity clause is included in the contract with the service provider, which ensures compliance to the enterprise's security policies. Any violation discovered will lead to a financial liability for the service provider.

Answer 78

Top management between the imperatives of business and technology. This is an IT strategic alignment good practice.

Answer 79

the lack of knowledge may lead to unintentional disclosure of sensitive information.

Answer 80

Agreed-on performance indicators that allow for a means to measure performance. SLAs are are statements related to expected service level.

Answer 81

that they are consistent across the organization. Deriving low-level policies from corporate policies (i.e., a top-down approach) aids in ensuring consistency across the organization and consistency with other policies.

Answer 82

continuous improvement targets are being monitored.

Answer 83

it facilitates interoperability within different systems. Open systems are those for which suppliers provide components whose interfaces are defined by public standards, thus facilitating interoperability between systems made by different vendors.

Answer 84

There should be a source code escrow agreement in place. This is recommended primarily to help protect the investment in software, because the source code will be available through a trusted third party and can be retrieved if the start-up vendor goes out of business.

Answer 85

Organization-defined security policies are not applied to the cloud app. Cloud apps should adhere to the org-defined security policies to ensure that the data in the cloud are protected in a manner consistent with internal apps, including password policies, user access management policies, data classification policies, et al.

Answer 86

documented procedures, knowledge sharing, cross training, and succession planning.

Answer 87

that internal personnel with the potential to fill key positions in the org are identified and developed.

Answer 88

1. Approving IT project plans and budgets. | 2. Approving IT project plans and budgets

Answer 89

1. Aligning IT to business objectives. 2. Advising on compliance risk. 3. Promoting IT governance practices. and other issues related to business objectives, risk and governance.

Answer 90

risk that the requirement for protecting confidentiality of information can be compromised.

Answer 91

The IT department may not be working toward a common goal. Steering committee provides direction and control over projects to ensure the company is making appropriate investments. Sans approval, projects may not be working toward the company's goals.

Answer 92

The vendor agrees to provide annual reports in the contract. This is the only way to ensure that any potential risk is mitigated today and in the future, by including a clause within the contact that the vendor will provide future external audit reports. Sans this clause, the vendor can choose to forego future audits.

Answer 93

that potential irregularities in processing are identified by the temporary replacements.

Answer 94

The replacement effort consists of several independent projects without integrating the resource allocation in a portfolio management approach. The efforts should be consolidated to ensure alignment with the overall strategy of the postmerger org.

Answer 95

to provide a strategic direction.

Answer 96

a set of management practices to provide strategic direction to the organization as a whole, thereby ensuring that goals are achievable, risk is properly addressed, and org resources are properly used.

Answer 97

The risk associated with the use of the products is periodically assessed. Changes often occur with vendors.

Answer 98

detect improper or illegal employee acts.

Answer 99

Implement accountability rules within the organization. IT risk is managed by embedding accountability rules to ensure that all responsibilities are defined within the organization. Note this question asks about the best recommendation, NOT about finding the risk.

Answer 100

Minimizing costs for the services provided. For the IS auditor, the primary objective of auditing the management of service providers should be to determine if the services requested were provided in a way that is acceptable, seamless, and in line with contractual agreements.

Answer 101

Performance Management, which includes setting and monitoring measurable objectives of that which the IT processes need to deliver (process outcome), and how they deliver it (process capability and performance). Transparency is primarily achieved through performance measurement, because it provides information to the stakeholders on how well the enterprise is performing when compared to objectives.

Answer 102

Board of Directors.

Answer 103

an IT balanced scorecard.

Answer 104

termination checklist. A termination checklist is critical to ensure the logical and physical security of an enterprise.

Answer 105

Establish regular IT risk management meetings to identify and assess risk and create a mitigation plan as input to the organization's risk management. Establishing regular IT risk management meetings is the best way to identify and assess IT-related risk in a medium-sized organization, to address responsibilities to the respective management, and to keep the risk register and mitigation plans up to date.

Answer 106

one person knowing all parts of a system. Potential exposure related to abuse of privilege (not training in all aspects, or holding back, for example).

Answer 107

strike a balance between business and security requirements. Info security policies must align with an org's business and security objectives. This should be the primary focus of an IS auditor when reviewing the "development" of info security policies.

Answer 108

Periodically reviewing and evaluating the security policy. The role of the chief info security officer is the ensure the corporate security policy and controls are adequate to prevent unauthorized access to the enterprise assets, including data, programs, and equipment.

Answer 109

It risk is presented in business terms. (must be aligned with business objectives)

Answer 110

vulnerabilities.

Answer 111

Stratified random sampling.

Answer 112

Uptime guarantee (and other measurable terms of performance.

Answer 113

implementing and enforcing sound processes. Change control requires that good change management process be implemented and enforced.

Answer 114

Projects are aligned with the organization's strategies, because their primary goal is to add value to the business.

Answer 115

Senior business management should establish the acceptable risk level because they have the ultimate or final responsibility for the effective and efficient operation of the organization as a senior manager of the business process. This person can be the quality assurance (QA), chief information officer (CIO), or the chief security officer (CSO), but the responsibility rests with the business manager.

Answer 116

Determine stakeholder requirements and involvement. This drives the success of the project. Based on this, the assurance scope and objectives are determined.

Answer 117

Monitoring the outsourcing provider's performance to ensure that services are delivered to the enterprise as required.

Answer 118

Aligning the IT strategy with the enterprise's strategy.

Answer 119

Revoke access to all systems.

Answer 120

To encourage optimal use of IT. It is different for every enterprise.

Answer 121

The vendor of custom=written software goes out of business. This is a legal agreement between a software vendor and a customer to guarantee access to source code. The code is held by a trusted third-party. according to the contract. This is necessary in case the vendor goes out of business or if a contractual dispute surfaces.

Answer 122

An assessment of the fit of the organization's application portfolio with business objectives. This assessment supports the organization's business objectives, and is a key component of the overall IT strategic planning process. This assessment drives the demand side of IT planning, and should convert into a set of strategic IT intentions. The purpose of an IT strategic plan is to set out how IT will be used to achieve or support an org's business objectives.

Answer 123

Defining a security policy is the first step toward building a security architecture. It communicates a coherent security standard to users, management, and technical staff. Security policies often set the stage in terms of the tools and procedures that are needed for an organization.

Answer 124

Effective support of an executive sponsor. The executive sponsor is in charge of supporting the org's strategic security program and aids in directing the org's overall security management activities. Therefore, support by the executive level of management is the most critical success factor.

Answer 125

disable the employee's logical access.

Answer 126

Goals and metrics. These ensure that IT goals are set based on business goals, and they are best enablers of strategic alignment.

Answer 127

Allocating resources. The IT dept. should specifically consider the manner in which resources are allocated in the short term. The IS auditor ensures that the resources are being managed adequately.

Answer 128

The policy is driven by an IT dept.'s objectives. Biz objectives drive the information security policy, and the information security policy drives the selection of IT dept. objectives. A policy that is driven by IT objectives is at risk of not being aligned with business goals.

Answer 129

A vulnerability. It exposes sensitive info and data to the risk of malicious damage, attack or unauthorized access by hackers.

Answer 130

Identify threats and the likelihood of occurrence. Step order: 1) identify assets. 2) look for vulnerabilities. 3) identify the threat and likelihood of occurrence.

Answer 131

IT alignment with the business. The goals of IT governance are to improve IT performance, deliver optimum business value, and ensure regulatory compliance. The key practice pin support of these goals is the strategic alignment of IT with the business.

Answer 132

Controls are eliminated as part of the streamlining business process reengineering (BPR) effort. A primary risk of BPR is that controls are eliminated as part of the reengineering effort. This is the primary concern.

Answer 133

Periodic review by subject matter experts.

Answer 134

to Optimize Performance. Can also be used to measure and manage products/services, assure accountability, and make budget decisions.

Answer 135

Periodic independent audit of work delegated to the subcontractor. These audits provide reasonable assurance that the requirements for protecting confidentiality of information are not compromised.

Answer 136

Enterprise risk appetite. This is the amount of risk on a broad level that an entity is willing to accept in pursuit of its mission to meet its strategic objectives. The purpose of the information security policy is to manage information risk to an acceptable level, so that the policy is principally aligned with the risk appetite.

Answer 137

The IT balanced scorecard. This is the tool that provides the bridge between IT objectives and business objectives by supplementing the traditional financial evaluation with measures to evaluate customer satisfaction, internal processes, and the ability to innovate. In this way, the auditor can measure the success of the IT investment and strategy .

Answer 138

The identification of network application to be externally accessed. After identification depending on the physical location of these applications in the network and network model, the person in charge will be able to understand the need for, and possible methods of, controlling access to these applications.

Answer 139

Security requirements driven by enterprise requirements. Information security governance should provide four basis outcomes: 1.) strategic alignment, 2.) value delivery, 3.) risk management, and 4.) performance measurement.

Answer 140

Strategic alignment

Answer 141

Security policy decisions.

Answer 142

A product of the likelihood and magnitude of the impact if a threat successfully exploits a vulnerability. Overall business risk takes into consideration the likelihood and magnitude of the impact when a threat exploits a vulnerability, and provides the best measure of the risk to an asset.

Answer 143

articulates the mission and vision is correct. The strategic plan must include a clear articulation of the IT mission and vision.

Answer 144

There is an integration of IT and business personnel within projects.

Answer 145

If the contract does not contain a right-to-audit clause for the third party. Lack of this clause impacts the auditor's ability to perform the IS audit, so this should be of ultra concern.

Answer 146

Approved suppliers for products offered by the company.

Answer 147

Board of Directors

Answer 148

The source code of the ETCS application is placed in escrow.

Answer 149

Independent audit reports or full audit access. A provision must be made for independent audit reports that cover all essential areas, or that the outsourcer has full audit access.

Answer 150

The developers promote code into the production environment.

Answer 151

Select projects according to the business benefits and risk. This is the best measure for achieving alignment of the project portfolio to an organization's strategic priorities.

Answer 152

That all likely risk is identified and ranked. Without knowing the risk, there is no risk strategy.

Answer 153

Optimize security investments in support of business objectives.

Answer 154

Reviewing transaction and application logs directly addresses the threat posed by poor segregation of duties. This review is a means of detecting inappropriate behavior and also discourages abuse, because people who may otherwise be tempted to exploit the situation are aware of the likelihood of being caught.

Answer 155

A software escrow agreement is secured for the source code, in case the vendor goes out of business.

Answer 156

adoption of a corporate information security policy statement. It reflects the intent and support provided by executive management for proper security and establishes a starting point for developing the security program.

Answer 157

To ensure that the IT strategy is aligned with the business strategy.

Answer 158

Report the absence of documented approval is correct. The auditor must report the finding. Unapproved policies may present a potential risk to the organization, even if they are being followed, because this technicality may prevent management from enforcing the policies in some cases and may present legal issues. For example, if an employee was terminated as a result of violating an org policy, and it was discovered that the policies had not been approved, the org may face an expensive lawsuit.

Answer 159

Transferring risk.

Answer 160

having programming responsibilities.

Answer 161

Can support the organization in the long term.

Answer 162

Assimilation of the framework and intent of a written security policy by all appropriate parties. If not assimilated into daily action, the policy will not be effective.

Answer 163

To ensure that investments are made according to business requirements. A steering committee consists of representatives from the business and IT and ensures that IT investment is based on business objectives rather than on IT priorities.

Answer 164

Background screening.

Answer 165

Agrees to be subject to external security reviews, because this is critical since customer credit info will be kept with the vendor.

Answer 166

To request all standards adopted by the org. An audit measures compliance with the standards of the organization.

Answer 167

consider the entire IT environment. When assessing IT security risk, it is important to consider the entire IT environment.

Answer 168

Supports the business objectives of the org. Both short and long term strategic plans should be consistent with the org's broader plans and business objectives for attaining these goals.

Answer 169

Fidelity coverage covers the loss arising from dishonest or fraudulent acts by employees.

Answer 170

Apply a qualitative approach in which the manager affected by the risk defines the impact in terms of a weighted factor. (such as 1 for low and 5 for high)

Answer 171

A risk analysis. Once performed, this is presented to business unit management for review and acceptance.

Answer 172

Approved policies.

Answer 173

Detection risk, which is the possibility that the audit procedures may fail to detect the existence of a material error or fraud.

Answer 174

Implement individual user accounts for all staff.

Answer 175

Technology not aligned with org objectives. A steering committee should exist to ensure that the IT strategies support the org's goals. The absence of an info technology committee, or one not comprised of senior managers is an indication of a lack of top-level management commitment. This condition increases the risk that IT is aligned with the org's strategy.

Answer 176

The contractual warranties of the providers support the business needs of the organization. The primary requirement is meet the business needs.

Answer 177

Ensure the DB logs are forwarded to a UNIX server where the DBA does not have root access. By creating logs that the DBA cannot erase or modify, segregation of duties is enforced.

Answer 178

Long-term and Short-term plans.

Answer 179

Software escrow, as it ensures the software source code will still be available to the org in the event of an issue with the vendor.

Answer 180

Business risk.

Answer 181

Senior management has limited involvement.

Answer 182

Evaluate the adequacy of the service levels that the vendor can provide in a contingency.

Answer 183

Existing mechanisms enabling compliance. The org should be able to comply with a policy when it is implemented.

Answer 184

A cost-benefit analysis.

Answer 185

ownership of intellectual property. The contract must specify who owns the intellectual property.

Answer 186

Board of directors (top mangement)

Answer 187

report this issue as a finding in the audit report. It is critical for the EA to include the future state because the gap between the current and future state will determine IT strategic and tactical plans. If the EA does not include future state representation, it is not complete. This issue should be reported as a finding.

Answer 188

desired result or purpose of implementing specific procedures. An IS objective is defined as the the statement of the desired result or purpose to be achieved by implementing control procedure in any particular IS activity.

Answer 189

correlation of semantic characteristics of the data migrated between the two systems. The structure of the data should be the same in the new system as in the old system.

Answer 190

Periodic testing does not require separate test processes. An ITF creates a fictitious entity in the DB to process test transactions simultaneously with live input. Its advantage is that periodic testing does not require separate test processes. Careful planning is necessary, and test data must be isolated form production data.

Answer 191

Check digit. A check digit is a numeric value that is calculated mathematically and is appended to data to ensure that the original data have not been altered (e.g., an incorrect, but valid, value substituted for the original). This control is effective in detecting transposition and transcription errors.

Answer 192

Program output testing. A user can test program output by checking the program input and comparing it with the system output. This task, although usually done by the programmer, can also be done effectively by the user.

Answer 193

investigate further to determine whether the project plan may not be accurate.

Answer 194

Direct cutover. This implies switching the new system immediately, usually sans the ability to revert back. All other alternatives are done gradually.

Answer 195

Investigate further to determine whether the project plan may not be correct. Although the dates on which key projects are completed is important, there may be an issue with the project plan if an extraordinary amount of overtime is required to meet those dates.

Answer 196

Prevents cost overruns and delivery delays. Timebox management sets specific time and cost boundaries. Ensures that each segment of the project is divided into small controllable time frames.

Answer 197

Effectively describes project boundaries.

Answer 198

perform user acceptance testing to ensure it is working effectively.

Answer 199

User Acceptance Test Specifications. The users should be involved in the requirements definition phase of a project and user-acceptance test specifications should be developed during this phase.

Answer 200

Applied changes have not introduced new errors.

Answer 201

Integration testing

Answer 202

that have zero slack time.

Answer 203

A critical path.

Answer 204

Decision trees. These use questionnaires to leas a user through a series of choices until a conclusion is reached.

Answer 205

The necessary communication protocols.

Answer 206

shortens the development time frame.

Answer 207

Business case be updated and possible corrective actions be identified.

Answer 208

Integration testing.

Answer 209

throughout the work stages, based on the risk and exposures.

Answer 210

Program coding standards

Answer 211

The requirements gathering process.

Answer 212

determine accountability and responsibility for processed transactions.

Answer 213

Transaction Journal.

Answer 214

A sequence check. Involves increasing the order of numbering and would validate whether the vouchers are in sequence and thus, prevent duplicate vouchers.

Answer 215

The critical path for the project.

Answer 216

ensure the procedure has been approved.

Answer 217

design phase.

Answer 218

improve internal control procedures by examining both the cause and response to an incident.

Answer 219

to facilitate the ability to reuse modules.

Answer 220

A program evaluation review technique chart.

Answer 221

Establishing a software baseline.

Answer 222

A cutoff point in the design phase which occurs after a rigorous view of user requirements. Any changes thereafter will undergo strict formal change control and approval procedures. Scope creep refers to uncontrolled change within a project resulting from improperly managed requirements.

Answer 223

Transactions are automatically numerically sequenced. Then the sequence is checked for gaps.

Answer 224

Consider the feasibility of a separate acceptance environment.

Answer 225

Automated systems balancing would be the best way to ensure that no transactions are lost as any imbalance between total inputs and total outputs would be reported form investigation and correction.

Answer 226

Top-down testing. This approach ensures that interface errors are detected early and that testing of major functions is conducted early.

Answer 227

Incorrectly set parameters. These are an immediate problem that could lead to system breach, failure, or noncompliance.

Answer 228

Project portfolio database

Answer 229

Business unit management

Answer 230

Release management software moves code into production without any manual intervention.

Answer 231

Gantt charts help to identify activities that have been completed early or late through comparison to a baseline.

Answer 232

Parallel testing because it allows users to compare the results and system behavior before decommissioning the legacy system.

Answer 233

To implement formal software inspections (of code and design) to reduce the cost associated with corrections and rework.

Answer 234

Review the project plan and approach.

Answer 235

remote processing site prior to transmission of the data to the central processing site.

Answer 236

Prototype systems can provide significant time and cost savings. Disadvantages include loss of overall security focus, project oversight and implementation of a prototype that is not yet ready for production.

Answer 237

Return on Investment

Answer 238

Beta testing (final stage of testing and typically includes users from outside the development area).

Answer 239

Function point analysis is technique used to determine the size of a development task on the number of function points. These are factors such as inputs, outputs, inquiries and logical internal sites.

Answer 240

Complexity and risk associated with the project have been analyzed.

Answer 241

complexity and risk associated with the project have been analyzed.

Answer 242

Stress the importance of spending time at this point in the project to consider and document risk and develop contingency plans.

Answer 243

Testing and release a pilot with reduced functionality reduces the risk in a number of ways. Reduced functionality should result in fewer overall test cases to run and defects to fix and retest, and in less regression testing. A pilot release made available to a select group of user will reduce the risk associated with a full implementation. All of the benefits of releasing the system to the full user population will not be realized, but some benefits should start to flow. Additionally, some useful comments from real users should be obtained to guide what extra functionality and other improvements need to be included in a full release.

Answer 244

Faulty mitigation of historical data from the old system to the new system is the most significant risk after a payroll system conversion is loss of data integrity and not being able to pay employees in a timely and accurate manner or have records of past payments. As a result, maintaining data integrity and accuracy during migration is paramount.

Answer 245

Project performance criteria. To identify deviations from the project plan, project performance criteria must be established as a baseline. Successful completion of the project plan is indicative of project success.

Answer 246

The appropriate recommendation is to review the results of stress tests during user acceptance testing that demonstrated the performance issues.

Answer 247

The first report of the mean time between failures. This report represents flaws in the software that are reported by users in the production environment. This information helps the auditor when evaluating the quality of the software that has been developed and implemented.

Answer 248

Faulty migration of historical data.

Answer 249

Project performance criteria.

Answer 250

Parallel run. These are the safest (though most expensive) approach because both the old and new system are run, thus incurring what might appear to be double costs.

Answer 251

Test and release a pilot with reduced functionality.

Answer 252

The first report of the mean time between failures.

Answer 253

Review the results of stress tests during user acceptance testing. These demonstrate the performance issues.

Answer 254

Process owners have not been identified. When one app is expanded to multiple departments, it is important to ensure the mapping between the process owner and system functions. The absence of a defined process owner may cause issues with monitoring or authorization controls.

Answer 255

System owners. These are the information system (project) sponsors or chief advocates.

Answer 256

To check that the project meets expectations. The objective of a post-implementation review is to reveal whether the implementation of a system has achieved planned objectives (i.e., meets business objectives and risk acceptance criteria).

Answer 257

Review the impact of program changes made during the first phase on the remainder of the project. Because management is aware that the project had problems, reviewing the subsequent impact will provide insight into the types and potential causes of the project issues. This will help to identify whether IT has adequately planned for those issues in subsequent projects.

Answer 258

Project deliverables, costs, and timetables.

Answer 259

the project manager.

Answer 260

Project sponsor

Answer 261

Project security officer

Answer 262

Return on investment analysis (cost benefit) should be performed to verify the original business case benefits are delivered.

Answer 263

Implementation

Answer 264

before implementation.

Answer 265

The quality of the metadata.

Answer 266

A data warehouse

Answer 267

Identifying lessons learned that may be applicable to future projects.

Answer 268

ensures that system design is based on business needs.

Answer 269

User participation in defining the system's requirements was inadequate.

Answer 270

Requirements are well understood and are expected to remain stable, as is the business environment in which the system will operate. It's best with stable environments that have well-defined requirements.

Answer 271

Collusion between employees. Difficult to identify, and even well thought out controls can be circumvented.

Answer 272

User acceptance testing

Answer 273

The product is compatible with the current or planned OS.

Answer 274

certain project iterations produce proof-of-concept deliverables and unfinished code.

Answer 275

Business plan, and how well a project needs an org's strategic objectives.

Answer 276

require that changes after that point be evaluated for cost effectiveness.

Answer 277

Post-implementation review, which also evaluates how well the project managers kept the project on track.

Answer 278

rapid pace of modifications in requirements and design.

Answer 279

verify the format of the number entered, then locate it in the database.

Answer 280

A deployment plan based on sequenced phases. When developing a large and complex IT infrastructure, a good practice is to use a phased approach to fit the entire system together. This will provide greater assurance of quality results.

Answer 281

Achieve standards alignment through an increase of resources devoted to the project. Provided that the data architecture, technical and operational requirements are sufficiently documented, the alignment to standards could be treated as a specific work package assigned to new project resources.

Answer 282

contract is reviewed and approved by the legal counsel before it is signed. One of the most imp steps of the software acquisition process.

Answer 283

The implementation phase of the project has no back out plan. With parallel implementation, the original system can always be used as a back out plan.

Answer 284

errors in critical modules are detected earlier. Bottom-up begins with testing of atomic units, such as programs and modules, and works upward until a complete system testing has taken place. The advantages of using a bottom-up approach to software testing are the fact that errors in critical modules are found earlier.

Answer 285

The overall org environment, which includes alignment between IT and business, the maturity o development processes, and the use of change control and other project management tools.

Answer 286

Review the business case and project management. Before making any recommendations, the auditor needs to understand the project and the factors that have contributed to bringing the project over budget and over schedule.

Answer 287

Support of multiple environments. Component-based development that relies on reusable modules can increase the speed of development. Software developers can then focus on business logic.

Answer 288

Gap analysis. This would be the best method to identify issues that need to be addressed in the reengineering process. Gap analysis indicates which part of current processes conform to good practices (desired state) and which do not.

Answer 289

ensure that overrides are automatically logged and subject to review.m When overrides are allowed, automatic logging should should occur. A management individual who did not initiate the overrides should review them.

Answer 290

Scope creep.

Answer 291

Parallel changeover, which involves first running the old system, then running both new and old in parallel, and finally fully changing over.

Answer 292

Confidentiality of the data.

Answer 293

Not all functionality will be treated. A primary risk of using production data in a test deck is that not all transactions or functionality may be treated if there are no data that meet the requirement.

Answer 294

Data representing conditions that are expected in actual processing. Quality over quantity approach.

Answer 295

Post iteration reviews that identify lessons learned for future use in the project.

Answer 296

Acceptance testing, which is the final stage before the software is installed and available for use. Failures here could result in delays and cost overruns.

Answer 297

Continuously throughout the project, with an emphasis on finding defects primarily through testing to maximize the defect detection rate. The major source of unexpected costs on most software projects is rework.

Answer 298

That the project is behind schedule. Earned value analysis (EVA) is based on the premise that if a project task id assigned 24 hours for completion, it can be reasonably completed during this time frame. According to EVA, the project is behind schedule because the value of 8 hours spent on the task should only be 4, considering that 20 of the 24 budgeted hours remain.

Answer 299

Assurance that the new system meets functional requirements, which is why parallel conversion is the safest form of system conversion.

Answer 300

Earned value analysis. (EVA) This is the industry standard method for measuring a project's progress and any given point in time, forecasting its completion date and final cost, and analyzing variances in the schedule and budget as the project proceeds.

Answer 301

Review the data flow diagram to understand the flow of data within the application and to other systems. This enables the auditor to evaluate the design and effectiveness of the data integrity controls.

Answer 302

Senior IS and business management must approve use before production data can be used for testing.

Answer 303

Post-implementation review. One key objective of a post-implementation review is to evaluate the project cost-benefits ot the return on investment measurements.

Answer 304

Systems sending and receiving data, because the output for one system is the input for the other.

Answer 305

1. budget/cost, 2. time/schedule, 3. scope

Answer 306

satisfy a requirement in addressing a risk.

Answer 307

Interface errors are identified early.

Answer 308

A single implementation is planned, immediately decommissioning the legacy system.

Answer 309

Requirements definition.

Answer 310

test transactions are representative of live processing.

Answer 311

Project steering committee.

Answer 312

Beta Testing. This follows alpha testing and involves real-world exposure with external user involvement. Beta testing is the last stage of testing and involves sending the beta version of the product to independent beta test sites or offering it free to interested users.

Answer 313

improper acceptance of a program. Users may apply pressure to to accept a program that meets their needs even if it doesn't meet quality assurance standards.

Answer 314

Technical skills and knowledge within the org related to sourcing and software development.

Answer 315

Recommend that the problem resolution be escalated. It's best to fully apprise the auditee and suggest that further problem resolutions be attempted including escalation, if necessary.

Answer 316

Program evaluation review technique (PERT). The PERT method works on the principle of obtaining project timelines based on project events for three likely scenarios - worst, best case, and normal. The timeline is calculated by a predefined formula and identifies the critical path, which identifies the key activitism that must be prioritized.

Answer 317

backout procedures.

Answer 318

independent of the RTO and based on the criticality of the application. When several apps are hosted on a server, the server's RTO must be determined b y taking the RTO of the most critical app, which is the shortest RTO.

Answer 319

Daily data backups that are stored offsite and a hot site located 140 kilometers from the main data center. Not having real-time backups may be a problem depending on the recovery point objective (RPO).

Answer 320

Hash keys are calculated periodically for programs and matched against hash keys calculated for the most recent authorized versions of the programs. The matching of hash keys over the time would allow detection of changes to files.

Answer 321

The detail of involved transactions may no longer be associated with master data, causing errors when these transactions are processed.

Answer 322

The software has not been subsequently modified. Code signing ensures that the executable code came from a reputable source and has not been modified after being signed.

Answer 323

Data owner. When a business app is developed, a good practice is to assign an information or data owner to the application. The information owner should be responsible for authorizing access to the application itself or to beck-end databases for queries.

Answer 324

Identify and test suitable patches before applying them. Suitable patches from the existing developers should be selected and tested before applying them.

Answer 325

Increase - due to additional costs for testing, maintaining, and implementing the DRP measures.

Answer 326

Develop a baseline and monitor system usage. The auditor should recommend the development of a performance baseline and monitor the system's performance against the baseline to develop empirical data upon which decisions for modifying the system can be made.

Answer 327

Examine object code to find instances of changes and trace them back to change control records.

Answer 328

Regularly reviewed and updated. The plan should be reviewed at appropriate intervals. Otherwise it may be out of date and ineffective.

Answer 329

Configuration and change management. Configuration management is widely accepted as one of the key components of any network because it established how the network will function internally and externally.. It also deals with the management of configuration and monitoring performance. Change management ensures that the setup and management of the network is done properly, including managing changes to the configuration, removal of default passwords, and possibly hardening the network by disabling unneeded services.

Answer 330

The disaster tolerance increases. The longer the recovery time objective (RTO), the higher disaster tolerance. The disaster tolerance is the amount of time the business can afford to be disrupted before resuming critical operations.

Answer 331

Having an alternative standby processor at another network node would be the best solution. The unavailability of the central communications processor would disrupt all access to the banking network, resulting in the disruption of operations for all the shops. This could be caused by the failure of equipment, power, or communications.

Answer 332

BCPs may assume the existence of capabilities that are not in DRPs, such as allowing employees to work from home during the disaster, however, IT may not have made sufficient provisions for these capabilities. While noncritical systems are important, it is possible that they are not part of the DRPs.

Answer 333

Implement a properly documented process for application role change requests, which could prevent or detect improper changes from being made to the major application roles. This application request process should start with, and be approved by, the business owner, then the IS director can make the changes to the application.

Answer 334

Table/link reference checks to detect table linking errors (such as completeness and accuracy of the contents of the database) provides the greatest assurance of database integrity.

Answer 335

Process owners. These people are essential in identifying the critical business functions, recovery times and resources needed.

Answer 336

Perform root cause analysis. This determines the key reason an incident has occurred and allows for appropriate corrections that will help prevent the incident from recurring.

Answer 337

The business impact analysis (BIA) was conducted, but the results were not used. In this case, the DRP may not be designed to recover the most critical assets in the correct order. As a result, the plan may not be adequate to allow the org to recover from a disaster.

Answer 338

The org and client must comply with open source license terms to avoid legal risks.

Answer 339

review the justification, because in some cases, denormalization is recommended for performance reasons.

Answer 340

Data normalization

Answer 341

Review controls built into the system to assure they are operating as designed.

Answer 342

Recovery point objective. RPO Determined based upon acceptable data loss in case of disruption of ops.

Answer 343

Commitment and rollback controls. These are directly relevant to integrity.

Answer 344

Destroying

Answer 345

with their named account to make changes.

Answer 346

Protocol analyzer. These monitor and record network information from packets traveling in the link to which the analyzer is attached.

Answer 347

Mirroring. Mirroring of critical elements is a tool that facilitates immediate (fallover) recoverability.

Answer 348

Developments may result in hardware and software incompatibility.

Answer 349

A reciprocal arrangement between its offices. Each office would be designated as a recovery site for some other office. This would be the least expensive approach, and would provide an acceptable level of confidence.

Answer 350

Extent of data loss that is acceptable.

Answer 351

Planning involves all user departments in the business continuity plan (BCP) is crucial for the identification of the business processing priorities and the development of an effective plan.

Answer 352

User spool and database limit controls.

Answer 353

User spool limits

Answer 354

Contact information of key personnel.

Answer 355

Recovery point objective (RPO)

Answer 356

Review the vendor contract to determine its DR capabilities.

Answer 357

Review the capacity management process.

Answer 358

Develop a scenario and perform a structured walk-through.

Answer 359

Ensuring periodic dumps of transaction logs.

Answer 360

Resolved incidents are closed without reference to end-users.

Answer 361

Transmit transactions offsite in real-time.

Answer 362

ownership is difficult to establish where resources are shared.

Answer 363

Mitigation.

Answer 364

Assess the impact of patches prior to installation. Patches must be tested as much as possible before installation in order to prevent ill-effects to other systems.

Answer 365

Warm site.

Answer 366

Commitment and rollback controls are directly relevant to integrity. They ensure that database operations that form a logical transaction unit will be completed entirely or not at all.

Answer 367

with their named account to make changes.

Answer 368

Protocol analyzer. These are network diagnostic tools that monitor and record network information from packets traveling in the link to which the analyzer is attached.

Answer 369

Mirroring. Mirroring of critical elements is a tool that facilitates immediate (fallover) recovery.

Answer 370

Developments may result in hardware and software incompatibility.

Answer 371

Review policy to see if a formal exception process is required.

Answer 372

The proposed service level agreement with the service provider.

Answer 373

Assess the impact of patches prior to installation. Installation should occur only after this evaluation. Testing the patches as much as possible before rollout is important to prevent negative effects.

Answer 374

Identify changes that have occurred and verify approvals.

Answer 375

Establish performance measurement criteria for authentication of servers. This would help to quantify acceptable thresholds for system performance, which can be measured and remediated?

Answer 376

A read-only restriction

Answer 377

System logs. These are automated reports which identify most activities performed on a computer.

Answer 378

A preparedness test. This is a localized version of a full test. Resources are expended in the simulation of a system crash. Performed regularly. Cost-effective.

Answer 379

Cold Site would be the most cost-effective.

Answer 380

The BCP be communicated to appropriate personnel.

Answer 381

Ensure that supervisory approval and review (by accountable managers) are performed for critical changes.

Answer 382

Staging and job setup.

Answer 383

Structured query language facilitates portability of the application because it is an industry standard used by many systems.

Answer 384

Reviewing system log files. This is the only trail that may provide information about the unauthorized activities in the production library.

Answer 385

If a manager initiates a change request and subsequently approves it. This violates the principle of SOD and no person should have this ability to approve their own requests.

Answer 386

To protect human life.

Answer 387

To detect data transportation errors. A check digit is a numeric value added to data to ensure that original data are correct and have not been altered.

Answer 388

To ensure integrity when two processes attempt to update the same data at the same time. Concurrency controls prevent data integrity problems.

Answer 389

Critical business processes for ascertaining the priority for recovery. This should be addressed first so that the priorities and time lines for recovery can be documented.

Answer 390

Shadow file processing, where exact duplicates of the files are maintained at the same site or a remote site. The two files are processed concurrently. This is used for critical data files such as airline booking systems.

Answer 391

During the test, some of the backup systems were defective or not working, causing the test of these systems to fail.

Answer 392

To test the backup plan.

Answer 393

Default global security setting for the DB remain unchanged. These settings could allow issues such as blank user passwords, or passwords that were the same as the username.

Answer 394

Implement column- and row- level permissions. These control what users can access.

Answer 395

Column-level security

Answer 396

Row-level security

Answer 397

Users can only access logical representations of data, or views, rather than physical tables.

Answer 398

Availability. These allow an administrator to take corrective action when network problems are observed.

Answer 399

Assess the overall risk, then recommend whether to deploy the patch. A risk assessment is necessary, then the patch would only be applied if the risk of circumventing the the existing controls is great enough to warrant it.

Answer 400

The group walks through the different scenarios of the plan from beginning to end. This is called a structured walk-through test.

Answer 401

To graphically summarize data paths and storage. They trace data from from their origination to their destination, highlighting the paths and storage of data.

Answer 402

A system downtime log. This provides evidence regarding the effectiveness and adequacy of computer preventive maintenance programs. It validates a preventive control.

Answer 403

When there is limited media capacity. After a full backup, only files that are changed are backed up, thus minimizing media storage.

Answer 404

Approve and document the change the next business day.

Answer 405

The business processes that must be recovered following a disaster to ensure the org's survival.

Answer 406

A foreign key.

Answer 407

Perform a business impact analysis. BIA will give the impact of the loss of each application.

Answer 408

A BIA is conducted with representatives of the business that can accurately describe the criticality of a system and its importance to the business.

Answer 409

Ensure the continued compatibility of the contingency facilities. The main purpose of offsite hardware testing is to ensure the continued compatibility of the contingency facilities so that assurance can be gained that the contingency plans would work in an actual disaster.

Answer 410

Review the SLA (service level agreement). The SLA provides the basis for an adequate assessment of the degree to which the provider is reaching the agreed-upon service.

Answer 411

The configuration management database must be maintained. This is used to track configuration items and the dependencies between them. An outdated CMDB could result in incorrect approvals being obtained or leave out critical dependencies during the test phase.

Answer 412

Results from previous tests. This will provide evidence of the BCP effectiveness.

Answer 413

Technical aspect of business continuity planning.

Answer 414

results of business continuity tests performed by IS and end-user personnel.

Answer 415

The foreign key structure.

Answer 416

Referential Integrity.

Answer 417

Both, downtime costs and recovery costs need to be evaluated. Seeking an optimal balance between the two.

Answer 418

the program is validated against vendor specifications.

Answer 419

A loss of data integrity. Normalization is the removal of redundant data elements from the DB. To disable this in a relational DB redundancy and the risk of not maintaining consistency of data, and a consequent loss of data integrity.

Answer 420

Compliance Testing. This would require that the change management process is reviewed to evaluate the existence of a trail of documentary evidence. Compliance testing would help to verify that the change management process has been applied consistently.

Answer 421

Test results must be adequately docuemented.

Answer 422

Installing patches or upgrades to the OS. This should be performed by the systems administrator.

Answer 423

Assess the controls relevant to the DBA function. When reviewing privileged accounts, look for compensating controls that may address a potential exposure.

Answer 424

Application owners were not informed of the change.

Answer 425

Verify the software is in use via testing.

Answer 426

Provide and monitor separate developer login IDs for programming and for production support. Must be backed up by monitoring.

Answer 427

The support model was not properly developed and implemented.

Answer 428

Reinstating the offsite backups. RAID systems will not protect against a natural disaster. This problem will not be alleviated without offsite backups.

Answer 429

Results of tests and exercises

Answer 430

Containment of the incident at the facility to minimize the spread of damage and gain control of the situation.

Answer 431

An inadequate software escrow agreement.

Answer 432

there is limited media capacity

Answer 433

the business process that must be recovered following a disaster to ensure the org's survival.

Answer 434

Foreign key. In this type of DB a foriegn key would prevent events such as primary key changes and record deletions, resulting in orphaned relations within the database.

Answer 435

Referential integrity refers to the relationship between tables. Because each table in a database must have a primary key, this primary key can appear in other tables because of its relationship to data within those tables. When a primary key from one table appears in another table, it is called a foreign key.

Answer 436

Perform business impact analysis (BIA). Gives the impact of loss of each app.

Answer 437

ensure the continued compatibility of contingency facilities.

Answer 438

Review the service level agreement (SLA), which provides the basis for an adequate assessment of the degree to which the provider is meeting the level of the agreed-upon service.

Answer 439

WHen there is limited capacity. In an incremental backup, after the full backup, only the files that have changed are backed up, thus minimizing media storage.

Answer 440

Approve and document the change the next business day. They must be approved and documented after the fact, if the programmers have this ability.

Answer 441

which business processes must be recovered following a disaster to ensure the org's survival.

Answer 442

Foreign key

Answer 443

Answer not provided

Answer 444

Perform a business impact analysis (BIA). A BIA will give the impact of the loss of each application. A BIA is conducted with representatives of the business that can accurately describe the criticality of a system and its importance to the business.

Answer 445

ensure the (continued) compatibility of the contingency facilities.

Answer 446

To review the SLA to find a basis for adequate assessment.

Answer 447

the configuration management database is not maintained. The CMDB is used to track configuration items (CIs) and the dependencies between them. An out-of-date CMDB in a large multinational company could result in incorrect approvals being obtained or leave out critical dependencies during the test phase.

Answer 448

results from previous tests. This review will provide evidence of the effectiveness of the BCP.

Answer 449

technological aspect of business continuity planning that focuses on IT systems and operations.

Answer 450

Destruction.

Answer 451

results business continuity tests performed by IS and end-user personnel.

Answer 452

Foreign key structure.

Answer 453

Both, downtime costs and recovery costs.

Answer 454

the program is validated against vendor specifications.

Answer 455

A loss of data integrity.

Answer 456

Compliance testing.

Answer 457

The results are not adequately documented. The effectiveness of the BCP can best be determined through tests. If the results are not documented, there is no basis for feedback, updates, etc.

Answer 458

Installation of patches or upgrades to the operating system. These functions should be preformed by the systems administrator, not the database administrator. Huge violation of SOD.

Answer 459

Assess the controls relevant to the DBA function. When reviewing privileged accounts, the auditor should look for compensating controls that may address a potential exposure.

Answer 460

That the application managers were not informed of the change.

Answer 461

Verify software is in use through testing to obtain evidence before including this in the report.

Answer 462

The evacuation plan. Protecting human resources should always be addressed first.

Answer 463

Provide and monitor separate developer login IDs for programming and for production support.

Answer 464

The support model was not properly developed and implemented.

Answer 465

Reinstating the offsite backups. RAIDs at any level will not protect against a natural disaster.

Answer 466

Results of tests and exercises.

Answer 467

Containment at the facility to gain control of the situation and prevent spread of damage.

Answer 468

An inadequate software escrow agreement.

Answer 469

Data backups are performed and stored offline.

Answer 470

Maximum allowable outage.

Answer 471

To manage risk while recovering from an event that adversely affected operations.

Answer 472

Management reviews and approves the changes after they have occurred.

Answer 473

Delaying deployment until testing the impact of the patch.

Answer 474

Review changes in the software version control system.

Answer 475

Review reports or logs from this system to identify the software that is promoted to production.

Answer 476

Business Impact Analysis

Answer 477

Transaction logs. These generate an audit trail by providing a detailed list of date of input, user ID, terminal location, etc.

Answer 478

Ensuring the vendor default accounts and passwords have been disabled.

Answer 479

First call resolution rate. This is a good way to measure the effectiveness of the support org.

Answer 480

Use the DBA user account to make changes, log the changes, and review the changes on the following day.

Answer 481

The third-party svc provider reserves the right to access data to perform certain operations.

Answer 482

Maintain a duplicate copy.

Answer 483

The level of information security required when business recovery procedures are invoked.

Answer 484

The responsibility for declaring a disaster is not identified.

Answer 485

Deleting DB activity logs.

Answer 486

A transition clause from the old supplier to the new supplier or back to internal in the case of expiration or termination. Prevents "pull the plug" event by old supplier.

Answer 487

Performing preventative maintenance on electrical systems.

Answer 488

The paper test (sometimes called deskcheck). This is a walk-through of the entire BCP (or in part).

Answer 489

A hot site

Answer 490

The time gap during which the business can accept non-availability of IT facilities.

Answer 491

The RPO is the earliest point in time at which it is possible to recover data.

Answer 492

Data Mirroring.

Answer 493

Implement an online polling tool to monitor the application and record any outages. Compare internal reports with SLA reports to ensure the vendor's monitoring of the SLA is accurate and that all conflicts are resolved.

Answer 494

A data loss of up to one minute, but the processing must be continuous.

Answer 495

Both entities are vulnerable to the same incident.

Answer 496

Efficient interfacing

Answer 497

They increase with time.

Answer 498

Decrease Recovery costs are higher when the recovery time is shorter (more expensive to recover in 2 days than it is to recover in 5).

Answer 499

That recovery time objectives were met.

Answer 500

To define, agree on, record, and manage the required levels of service.

Answer 501

Have an alternate processor at another network node.

Answer 502

Processing in priority order, as defined by business management.

Answer 503

Check the configurations and alignment of the primary recovery sites.

Answer 504

Providing accurate feedback on IT resource capacity.

Answer 505

Mirrored hard disks, because they ensure all data are backed up to more than one disk, so that a failure of one disk will not result in a loss of data.

Answer 506

Employee training on the BCP.

Answer 507

The change did not have management approval.

Answer 508

Recovery point objective.

Answer 509

Ensure that the data will not be deleted before that date.

Answer 510

That there were instances when some jobs were overridden by computer operations. Could lead to unauthorized changes to data or programs. Critical.

Answer 511

Preparedness test. This is performed by the local office/area to test the adequacy of the preparedness of local operations for disaster recovery.

Answer 512

Before the last transaction, which would not have updated the database prior to the dump being taken.

Answer 513

System and IT operations team can sustain operations in the emergency environment.

Answer 514

Load balancing

Answer 515

Implement integrity constraints in the database.

Answer 516

The clarity and simplicity of the BCPs

Answer 517

Data owner

Answer 518

Make sure disk space utilization rates are kept current. Have to know what is in use, and what is available at the hot site.

Answer 519

Reduce length of recovery time and cost of recovery.

Answer 520

Server recovery work may not meet the Recovery Time Objective (RTO).

Answer 521

Downtime reports on the telecommunication services generated by the ENTERPRISE.

Answer 522

Proceed with restore procedures.

Answer 523

Availability reports

Answer 524

A cost-effective, built-in resilience can be implemented.

Answer 525

That the SLA requirements are met.

Answer 526

Confidentiality of customer data. Due to exposure to Internet, too long of a period.

Answer 527

Review and evaluate the BCP for ADEQUACY

Answer 528

Perform business impact analysis

Answer 529

Business processes owners.

Answer 530

Gain more assurance on the findings through Root Cause Analysis

Answer 531

Update the IT asset inventory

Answer 532

Data restoration was completed.

Answer 533

The recovery point objective

Answer 534

Authorization of program changes.

Answer 535

The minimum acceptable operational capacity

Answer 536

duration of the outage

Answer 537

Offsite storage of backup data

Answer 538

Catastrophic service interruption

Answer 539

A validity check

Answer 540

The offsite facility must be physically separated from the data center and not subject to the same risk.

Answer 541

Develop recovery strategies.

Answer 542

Tested regularly

Answer 543

Security policy be updated to include a specific language regarding unathorized software.

Answer 544

Ensure that partnering organizations are separated gepgraphically.

Answer 545

A clause providing "right to audit" the service provider.

Answer 546

Hardware being used to run the application. Because it's overseas, a hardware failure left unfixed can reduce availability of the system to is users.

Answer 547

Gain more assurance on the findings through root cause analysis.

Answer 548

Update the IT inventory. An IT assets inventory is the basic input for the business continuity/disaster recovery plan, and the plan must be updated to reflect changes in the IT infrastructure.

Answer 549

Data restoration was completed.

Answer 550

The recovery point objective

Answer 551

Authorization of program changes.

Answer 552

The minimum acceptable operational capability.

Answer 553

The duration of the outage.

Answer 554

Offsite storage of backup data.

Answer 555

A validity check. (several types of characters, etc.)

Answer 556

physically separated from the data center and not subject to the same risk.

Answer 557

Develop recovery strategies.

Answer 558

Tested regularly.

Answer 559

Ensure that partnering organizations are separated geographically.

Answer 560

A clause providing a "right to audit" the service provider.

Answer 561

Test plans and procedures exist and are closely followed.

Answer 562

Process owner involvement.

Answer 563

Higher costs.

Answer 564

Is not listed in the approved software standards document.

Answer 565

Recovery point objective, Should be common to ensure that systems do not contain data from a different point in time.

Answer 566

Exception reporting. It's the first step in tracking problems.

Answer 567

Unauthorized network activities. Like unauthorized music sites, etc.

Answer 568

They are set to meet both security and performance requirements (balance)

Answer 569

Perform an end-to-end walkthrough of the process.

Answer 570

Configuration management. Should a new release fail, the baseline will provide a point to which to return.

Answer 571

Trace a sample of modified programs to supporting change tickets.

Answer 572

A test has not been made to ensure that local resources could maintain security and service standards when reviewing from a disaster or incident.

Answer 573

determine the sensitivity of the information on the hard drives.

Answer 574

Hash totals indicate an error in data integrity.

Answer 575

Applications may not be subject to testing and IT general controls.

Answer 576

Review of audit logs. These contain the user ID of the individual who performed the change as well as the data before and after the change, which is the best evidence of database changes. Reviewing the logs evidences not only who made the change, but also the correctness of the change.

Answer 577

These reduce the risk of crosstalk between pairs.

Answer 578

That the org performs maintenance suring noncritical processing times.

Answer 579

ensure availability of data. Provides disk mirroring.

Answer 580

A tabletop exercise using the procedures was conducted. (Paper-based test) This test can identify missing or incorrect procedures because representatives responsible for performing the tasks are present.

Answer 581

Implementing a log management process. Allows to know what was done, and by whom.

Answer 582

Cold Site - ready to receive equip, but does not offer any components in advance of the need.

Answer 583

Each plan is consistent with one another.

Answer 584

Human safety procedures are in place.

Answer 585

Execution of the disaster recovery plan could be impacted.

Answer 586

IT management, above all else.

Answer 587

A business continuity strategy. This identifies the best way to recover. The criticality of the business process, the cost, the time required to recover, and security.

Answer 588

A business continuity strategy.

Answer 589

A functional test of a scenario with limited IT involvement.

Answer 590

Preparedness tests. These involve a simulation of the entire environment in phases.

Answer 591

The servers are clustered on one site. This would make the entire network vulnerable to natural disasters or other disruptive events.

Answer 592

Implement integrity constraints in the database. Data are checked against predefined tables or rules, which prevents any undefined data from being entered.

Answer 593

Confirm the content of the agreement with both departments. You must confirm first and understand the current practice before you can make a recommendation.

Answer 594

The system will not process the change until the clerk's manager confirms the change by entering an approval code.

Answer 595

That program changes have been authorized. Library control software should be used to separate test from production libraries in mainframe and/or client server environments.

Answer 596

To provide assurance that program changes have been authorized.

Answer 597

Downtime. The longer the period of time a client cannot be serviced, the greater the severity (impact) of the incident.

Answer 598

Continuous data backup.

Answer 599

The default configurations are changed, such as default passwords and services.

Answer 600

Number of subscribers permitted to use a site at one time (should be specified in the contract). Note: the contract can state a preference to certain subscribers.

Answer 601

Maximum tolerable downtime and data loss.

Answer 602

The development of a more comprehensive set of requirements.

Answer 603

You should ensure that a good change management process is in place.

Answer 604

Review the patch management policy and determine the risk associated with this condition.

Answer 605

Increased redundancy.

Answer 606

Because it demands additional and otherwise unnecessary data handling efforts. Denormalization is sometimes advisable for functional reasons.

Answer 607

Reduced exposure (to a particular vulnerability).

Answer 608

Acceptable loss of data.

Answer 609

Session timeout is not activated.

Answer 610

Simulation exercises performed by the incident management response team.

Answer 611

Use a point-to-point leased line. This extends the LAN of the headquarters to the remote site, and the mainframe Telnet connection would travel over the private line, which would be less of a security risk when using an insecure protocol such as Telnet.

Answer 612

A low Equal-error rate. A low ERR This is a combination of a low false-rejection rate (FRR) and a low false-acceptance rate (FAR). ERR is expressed as a percentage. This is a measure of the number of times that the FRR and FAR are equal. A low ERR is the measure of the more effective biometrics control device.

Answer 613

Only select personnel should have the rights to view or delete audit logs.

Answer 614

Gathering information

Answer 615

Minimize the duration and impact of system outages and security incidents.

Answer 616

Classification and categories of data process by the application. Types of data and its sensitivity is a primary consideration.

Answer 617

To show if the message has been altered after transmission.

Answer 618

Confidentiality

Answer 619

Make the conference room network on a separate virtual local area network (VLAN). The installation presents a risk to the servers from both, authorized and unauthorized users. A separate VLAN ensures that both are prevented from gaining network access to database servers, while allowing Internet use to authorized users.

Answer 620

Report the incident to management.

Answer 621

Establishing a link between the requesting entity and its public key is a function of a regulation authority. This may or may not be performed by a CA, therefore, this function can be delegated.

Answer 622

Approval of user access.

Answer 623

Authentication.

Answer 624

A hash function.

Answer 625

the source of the execute file is certain.

Answer 626

Control confidential documents leaving the internal network.

Answer 627

Nonrepudiation. A digital algorithm prevents the senders from later denying that they generated and sent the message.

Answer 628

Periodic checking of hard drives.

Answer 629

Judgment errors.

Answer 630

Social Engineering.

Answer 631

A network security review.

Answer 632

A network security review.

Answer 633

Two-factor authentication. \A password is insufficient for this scenario.

Answer 634

A privilege escalation.

Answer 635

Role-based.

Answer 636

Rebooting the system.

Answer 637

Firewalls.

Answer 638

Low coverage of network traffic. Cybersecurity attacks might not be timely identified if only a small portion of network traffic is analyzed.

Answer 639

Advanced Encryption Standard

Answer 640

Elliptical curve cryptology

Answer 641

Support the incident investigation process.

Answer 642

Secure Sockets Layer (SSL).

Answer 643

A combination of public and symmetric key encryption and integrity through hash message authentication code. Sets up a secure channel for communications, providing confidentiality.

Answer 644

Stop the services that the protocol uses.

Answer 645

two-factor authentication.

Answer 646

That the hardware is protected against power surges.

Answer 647

Man-in-the-middle

Answer 648

Address problems that require consideration of a large number of input variables. They can capture relationships and patterns often missed by other statistical methods, but they cannot discover new trends.

Answer 649

Makes other users' certificates available to applications.

Answer 650

Review the parameter settings.

Answer 651

Parameter Tampering

Answer 652

Establish ownership. The data owner is responsible for defining the access rules; therefore, establishing ownership is the first step in data classification.

Answer 653

User accountability may not be established, since there is no way to logically hold one person accountable for a specific system access.

Answer 654

Use a protocol analyzer to perform network analysis and review error logs of local area network equipment.

Answer 655

Enrollment. Users of a biometric device must first be enrolled in the device.

Answer 656

Built-in alternative routing. Alternative routing would ensure that the network would continue if a communication device fails or is a link is severed because message rerouting could be automatic.

Answer 657

Terminate the developer's logical access to IT resources.

Answer 658

Buffer overflow exploitation.

Answer 659

Job descriptions contain clear statements of accountability for information security.

Answer 660

An inventory of IS resources.

Answer 661

Users can amend audit trail records when correcting system errors.

Answer 662

Traffic analysis.

Answer 663

Allows a watching threat actor to determine the nature of the flow of traffic between defined hosts, which may allow the threat actor to guess the type of communication taking place without taking an active role.

Answer 664

TO GAIN ACCESS TO SYSTEMS CONTAINING PROPRIETARY INFORMATION.

Answer 665

Disconnect the PC from the network to prevent further data compromise.

Answer 666

To establish guidelines for the level of access that should be assigned.

Answer 667

Two-factor authentication. This requires two independent methods for establishing identity and privileges.

Answer 668

Tunneling. Tunneling works based on encapsulation and encryption of sensitive traffic.

Answer 669

A long asymmetric encryption key is used. Computer processing time is increased for longer asymmetric encryption keys, and the increase may be disproportionate. Ex, one benchmark showed that doubling the length of an RSA key from 512 to 1,024 bits cause the decrypt time to increase by nearly six-fold.

Answer 670

An RSA key is a private key based on RSA algorithm.

Answer 671

Database initialization parameters must be appropriate.

Answer 672

Certification practice statement. This is the how-to document used in policy-based public key infrastructure (PKI).

Answer 673

By symmetric encryption. SSL uses a symmetric key for message encryption.

Answer 674

a symmetric key is one that is used both to encrypt and decrypt information. This means that to decrypt information, one must have the same key that was used to encrypt it. The keys, in practice, represent a shared secret between two or more parties that can be used to maintain a private information link. This requirement that both parties have access to the secret key is one of the main drawbacks of symmetric key encryption, in comparison to public-key encryption.

Answer 675

A VPN. It uses encryption, authentication, and tunneling to allow data to travel securely from a private network to the Internet. A dedicated line is very expensive, and only needed when there are specific confidentiality and availability needs.

Answer 676

Restoring systems to the original state.

Answer 677

Analysis is required to determine if a pattern emerges that results in a service loss for a short period of time. The peak of 96% could be the result of a one-off incident like a user downloading a large amount of data. Analysis should be performed to establish whether there is a regular pattern before expenditure on a larger capacity should be recommended.

Answer 678

Help detect spam.

Answer 679

Default passwords are not changed when installing the network devices.

Answer 680

Blocking of critical systems of services due to false triggers.

Answer 681

The users may not remember to manually encrypt the data before transmission.

Answer 682

Data loss prevention. This is an automated preventative tool that can block sensitive information from leaving the network, while at the same time, logging offenders. Trumps training because it works when the intent to steal data is present.

Answer 683

Procedures should be in place that verify only approved program changes are implemented. (A formal change control process)

Answer 684

Employees' homes. Once a computer is hacked and "owned," any network that trusts that computer is at risk.

Answer 685

If data and evidence are not collected properly, valuable information could be lost and would not be admissible in a court of law should the company decide to pursue litigation.

Answer 686

Chain of custody of electronic evidence.

Answer 687

False-acceptance rate. (FAR) This is the frequency of accepting an unauthorized person as authorized, thereby granting access when it should be denied.

Answer 688

To establish accountability for processed transactions.

Answer 689

Portability. When drawing up a contract with a cloud service provider, the ideal practice is to remove the customer lock-in clause. This might be important for the client to secure portability of their system assets (i.e., the right to transfer from one vendor to another).

Answer 690

Double-blind testing.

Answer 691

Double-blind testing

Answer 692

Obtain an understanding of the security risk to information processing.

Answer 693

Targeted testing

Answer 694

Internal testing.

Answer 695

External testing.

Answer 696

Training provided on a regular basis to all current and new employees.

Answer 697

Information asset owners.

Answer 698

Properly locating it in the network architecture. A poorly located IDS could leave areas of the network unprotected.

Answer 699

Two-factor

Answer 700

Both an ID and password are something the user knows.

Answer 701

Both are something the user is.

Answer 702

Both are something the user has.

Answer 703

Physically secure wireless access points to prevent tampering.

Answer 704

Knowledge by management staff of the client organization.

Answer 705

Black box testing

Answer 706

Activating an incident response team.

Answer 707

Digital signatures are not adequate to protect confidentiality.

Answer 708

Digital signatures are designed to provide authentication and nonrepudiation for email and other transmissions. They do not encrypt message contents. This means an attacker who intercepts can read the message the message in plain text.

Answer 709

Digital watermarks are used to protect intellectual property rights for documents rather than confidentiality.

Answer 710

Reliability and quality of service (QoS).

Answer 711

Social engineering.

Answer 712

The divulgence of private information through dialogue, interviews, inquiries, etc., in which a user may be indiscreet regarding their or someone else's personal data.

Answer 713

An incident response plan.

Answer 714

Transmission Control Protocol/Internet Protocol.

Answer 715

Work is completed in tunnel mode with IP security. This provides encryption and authentication of the complete IP package. To accomplish this, the authentication header and encapsulating security payload services can be nested, which is known as IP security.

Answer 716

Granting access to data is the responsibility of the data owners with help from the security officer.

Answer 717

Encapsulation.

Answer 718

In object-oriented programming (OOP), encapsulation refers to the bundling of data with the methods that operate on that data, or the restricting of direct access to some of an object's components.[1] Encapsulation is used to hide the values or state of a structured data object inside a class, preventing direct access to them by clients in a way that could expose hidden implementation details or violate state invariance maintained by the methods.

Answer 719

Integrity.

Answer 720

message integrity, nonrepudiation, and proof of origin.

Answer 721

Nonrepudiation is a method of guaranteeing message transmission between parties via digital signature and/or encryption. It is one of the five pillars of information assurance (IA). The other four are availability, integrity, confidentiality and authentication.

Answer 722

Digitally signing all email messages.

Answer 723

Implement security awareness training.

Answer 724

They protect the org from viruses and nonbusiness materials such as spam, mail chains, recreational surfing, and recreational email.

Answer 725

War Driving.

Answer 726

War Driving.

Answer 727

In computer networking, promiscuous mode is a mode for a wired network interface controller (NIC) or wireless network interface controller (WNIC) that causes the controller to pass all traffic it receives to the central processing unit (CPU) rather than passing only the frames that the controller is specifically programmed to receive.

Answer 728

Nothing. The inherent security features of GSM technology (Global Security for Mobile Communications) are appropriate. Combined with a VPN, this is appropriate.

Answer 729

Identify the network's access points.

Answer 730

Fiber-optic cables.

Answer 731

Audit trails. These capture which user, at what time, and data, along with other details, has performed the transaction and this helps in establishing accountability among other users.

Answer 732

Work is completed in tunnel mode with IP security. This provides encryption and authentication of the complete IP package. To accomplish this, the authentication header and encapsulating security payload services can nested. This is known as IP security.

Answer 733

Data Owners

Answer 734

Encapsulation. This is a property of objects. It prevents accessing either properties or methods that have not been previously defined as public. This means that any implementation of the behavior of an object is not accessible. An object defines a communication interface with the exterior and only that which belongs to that interface can be accessed.

Answer 735

Implementing security awareness training.

Answer 736

Protect the org from viruses and nonbusiness materials.

Answer 737

War diving.

Answer 738

Verify that security requirements have been properly specified in the project plan. Any recommendation you would make would be based upon whether the requirements were included in the plan.

Answer 739

A decreased cost of controls. It lowers the cost of protecting data by ensuring the appropriate controls are applied with respect to the sensitivity of data.

Answer 740

Damage to wires around computers and servers.

Answer 741

Participating apps will have guaranteed bandwidth.

Answer 742

To optimize network performance by assigning priority to business applications and end users through the allocation of dedicated parts of the bandwidth to specific traffic.

Answer 743

VoIP infrastructure needs to be segregated using virtual local area networks.

Answer 744

Prevent piggybacking

Answer 745

Implementing measures to prevent session hijacking (man-in-the-middle) attacks. Security management should be aware of this and engage in risk assessment and control design such as periodic authentication when they employ this technology.

Answer 746

Data leakage. Peer-to-peer computing can share the contents of a user hard drive over the Internet. The risk that sensitive data could be shared with others is the greatest concern.

Answer 747

The lowest error rate.

Answer 748

Perform a web app security review. This is a necessary effort that would uncover security vulnerabilities that could be exploited by hackers.

Answer 749

The org network and the firewall.

Answer 750

Developer training: teaching developers to write secure code is the best way to secure a web app.

Answer 751

A carbon dioxide-based fire suppression system. These will cause suffocation, and personal safety comes first.

Answer 752

The LAN switches are not connected to uninterruptible power supply units.

Answer 753

The cloud provider's data centers are in multiple cities and countries. (PII)

Answer 754

Incident handling procedures with the provider are not well-defined.

Answer 755

Determine whether compensating controls are in place.

Answer 756

Employees report more information regarding security incidents.

Answer 757

Data diddling.

Answer 758

Data diddling. It's exempt from computer security system since it's done prior to being entered into the computer.

Answer 759

The service level agreement does not address the responsibility of the vendor in the case of a security breach.

Answer 760

The wiring and schematic diagram is necessary to carry out the audit. Need to know what equipment configuration and addressing is used on the network in order to perform an audit of the network setup.

Answer 761

Screened subnet firewall. The screening router can be a commercial router or a node with routing capabilities and the ability to allow or avoid traffic between the nets or nodes based on addresses, ports, protocols, interfaces, etc. The subnet would isolate Internet-based traffic from the rest of the corporate network.

Answer 762

Transaction monitoring.

Answer 763

To confirm the identity of the entity owning a certificate issued by that certificate authority (CA). This is the primary role of the CA.

Answer 764

The certificate revocation list is not current.

Answer 765

Enterprise-based antivirus software. It provides a layered defense mode that is more likely to detect malware regardless of how it comes into the organization - whether through a universal serial bus (USB) or portable storage, a network, an internal download or malicious web app.

Answer 766

Certificate authority (CA) The CA maintains a directory of digital certs for the reference of those receiving them. It manages the cert life cycle, cert maintenance, and cert revocation list (CRL) maintenance, and publication.

Answer 767

Packets may arrive out of order.

Answer 768

Virtual private network tunnel.

Answer 769

Degaussing the tapes. It leaves a very low residue of magnetic induction, essentially erasing the data completely.

Answer 770

Intrusion Detection System (IDS) detects anomalies in the network/server activity and try to detect the perpetrator.

Answer 771

Periodic review of user activity logs.

Answer 772

User accounts are created with expiration dates and are based on services provided.

Answer 773

Connecting points are available in the facility to connect laptops to the network. Any person with wrongful intentions can connect a laptop to the network. All the user would need is a valid password and user ID to connect.

Answer 774

Application gateway. This is similar to a circuit gateway, but it has specific proxies for each service. To handle web services, it has a Hypertext Transmission Protocol (HTP) proxy that acts as an intermediary between externals and internals but is specifically for HTTP. This means that it not only checks the packet Internet Protocol (IP) addresses (Open Systems Interconnection [OSI] Layer 3) and the ports it is directed to (in this case port 80, or layer 4), it also checks every HTTP command (OSI Layers 5 and 7). Therefore, it works in a more detailed (granularity) way than other choices.

Answer 775

Clustering. Clustering allows two or more servers to work as a unit so that when one of them fails, the other takes over.

Answer 776

Shoulder surfing

Answer 777

Preservation. Preservation and documentation of evidence for review by law enforcement and judicial authorities are of primary concern when investigating.

Answer 778

Integrity and nonrepudiation. The integrity is provided through the hash, proof of origin (nonrepudiation) is also provided.

Answer 779

Outgoing traffic with source addresses external to the network.

Answer 780

Web content filter. This accepts or denies web communications according to the configured rules.

Answer 781

Encrypted with the sender's PUBLIC key and encrypted with the recipient's PRIVATE key.

Answer 782

Financial impact per security incident.

Answer 783

Double-blind test.

Answer 784

Piggybacking

Answer 785

Malicious code could spread across the network from the remote client.

Answer 786

Encrypted using dynamic keys. When using dynamic keys, the encryption key is changed frequently, thus reducing the risk of the key being compromised and the message being decrypted.

Answer 787

Authentication of the web site that will be surfed.

Answer 788

Using a sequence number and a time stamp.

Answer 789

Self-signed digital certificates can be used by hackers to impersonate a web site, which could lead to data theft or a man-in-the-middle attack.

Answer 790

Write Once and Read Many drives

Answer 791

Determine whether this is a policy violation and document it.

Answer 792

Use of the user's electronic signature by another person if the password is compromised.

Answer 793

Domain name system server security hardening. (DNS) The pharming attack redirects the traffic to an unauthorized web site by expploiting vulnerabilities of the DNS server.

Answer 794

Encrypted passwords must be used.

Answer 795

Even though an IDS cannot detect attacks within encrypted traffic, detecting encrypted packets flowing past the firewall could indicate improper configuration or even a compromise of the firewall itself.

Answer 796

It verifies information supplied by the subject requesting a certificate to determine whether the request is on behalf of themselves or their organization.

Answer 797

Assignment of a renewable user ID which expires daily.

Answer 798

Testing and validating the rules.

Answer 799

The public wireless network is physically segregated from the company network.

Answer 800

Disconnect the web server from the network to secure the device for investigation, contain the damage, and prevent more actions by the attacker.

Answer 801

Developers have the ability to create or deprovision servers. Virtualization offers the ability to create or destroy virtual machines (Vms) through the administrative interface with administrative access. While a developer would be unlikely to de-provision a production server, the administrative console would grant the ability to do this, which would be a significant risk.

Answer 802

The guest network is not segregated from the production network.

Answer 803

It binds a digital certificate and its public key to an individual subscriber's identity. Public key infrastructure (PKI) is primarily used to gain assurance that protected data or services originated from a legitimate source. The process to ensure the validity of the subscriber identity by linking to the digital certificate/public key is strict and vigorous.

Answer 804

Providing security awareness training.

Answer 805

Session key with the Receiver's public key.

Answer 806

Ensure authentication and nonrepudiation.

Answer 807

Message would only be accessible by the sender.

Answer 808

Anyone using the receiver's private key.

Answer 809

Cyclic redundancy check (CRC). CRC can generally detect all single-bit and double-bit errors.

Answer 810

Filtering False Positive Alerts.Related controls such as IDS tuning and incident handling procedures (such as the screening process) to know if an event is a security incident or false positive.

Answer 811

Sending log information to a dedicated third-party server.

Answer 812

Distributed denial-of-service attack. (DDoS) This would potentially disrupt the org's ability to communicate among its offices and have the highest impact. In a traditional voice network, a DDoS attack would only affect the data network, not voice communications.

Answer 813

Virtual Private Network The best way to secure remote access is through the use of encrypted VPNs. This would allow remote users a secure connection to the main systems.

Answer 814

Demilitarized zone (DMZ)

Answer 815

Encryption and a VPN

Answer 816

Encryption of data is the most secure method of protecting confidential data from exposure.

Answer 817

This part of the network is isolated from the corporate network.

Answer 818

Assure that the integrity of the evidence is maintained.

Answer 819

Digital certificates.

Answer 820

Change the database password immediately because there is no way to know whether it has been compromised.

Answer 821

An application-level gateway.

Answer 822

In the demilitarized zone.

Answer 823

Router configuration and rules.

Answer 824

DoS - Denial of Service

Answer 825

Brute Force Attack

Answer 826

Install a firewall between the networks.

Answer 827

Permission from the data owner of the server. The data owner should be informed of the risk of the penetration test, the timing of the test, what types of tests are to be conducted, and all other relevant details.

Answer 828

Ensure the data have been verified to ensure log integrity.

Answer 829

The authorization and authentication of the user prior to granting access to systems resources.

Answer 830

Implement Wi_Fi Protected Access (WPA) 2.

Answer 831

Validity of transfer. The accuracy of blocks of data transfers, such as data transfer from hard disks, is validated by a cyclic redundancy check.

Answer 832

User accountability is not established.

Answer 833

Honeypot - Honeypots lure hackers and provide clues as the their methods and strategies, as well as the resources required to address such attacks. It allows the attack to continue while obtaining information about the hacker's strategies and methods.

Answer 834

Create an entry in the log.

Answer 835

Legal and regulatory requirements.

Answer 836

Unauthorized individuals wait for controlled doors to open and walk in (Piggybacking).

Answer 837

Interview a sample of employees.

Answer 838

Check-sum based.

Answer 839

Role-based access control

Answer 840

The use of digital signatures.

Answer 841

The key used to encrypt is public, but the key used to decrypt the data is private.

Answer 842

Registration and review of changes.

Answer 843

Unauthorized access.

Answer 844

Installation on an operating system configured with default settings.

Answer 845

Computation speed

Answer 846

Apply role-based permissions within the app system.

Answer 847

Ethernet switches are not protected by uninterrupted power supplies.

Answer 848

The organization is the owner of the certificate authority (CA).

Answer 849

Corruption of the Address Resolution Protocol cache in Ethernet switches.

Answer 850

A process for promptly deactivating lost or stolen badges must be followed.

Answer 851

Ensures that security compliance has been technically evaluated.

Answer 852

Dedicated lines

Full Flashcards

(896 cards)