Module 11: Security Policies and Laws

Question 1

Why are security policies important

Answer 1

It defines the rules of safeguards, which reduce the risk of personnel injury and property loss

Question 2

TRUE or FALSE: A security policy helps preventing wastage of a company’s computing resources

Answer 2

TRUE

Question 3

What are the key elements in a security policy

Answer 3

• Clear Communication
• Brief and Clear Information
• Defined Scope and Applicability
• Enforceable by Law
• Recognizes Areas of Responsibility
• Sufficient Guidance
• Top Management Involvement

Question 4

Ultimately what do the security policy safeguard

Answer 4

The assets

Question 5

What vital role does a security policy play

Answer 5

Improving the operational efficiency of an organizational

Question 6

If an employee commits a violation why is it important to have a security policy

Answer 6

It becomes a point of reference

Question 7

A good security policy has characteristics that are well defined for a clear understanding. What are some such characteristics

Answer 7

• Implemented and administered through proper channels
• Enforced through sanctions and security tools
• Defined areas of responsibility for users, admins, and management
• Documented, distributed, and communicated

Question 8

When should a security policy be implemented

Answer 8

After building, revising, and updating of policy statements

Question 9

TRUE or FALSE: The final security policy should be available to only the upper management and some parts of the organization where it will affect production

Answer 9

FALSE

It should be available to the whole organization

Question 10

Where should the policy be available to the organization

Answer 10

The internal network

Question 11

What is an Access Control Policy

Answer 11

It authorizes a group of users to perform a set of actions on a set of resources

Question 12

TRUE or FALSE: Access Control Policy prevents unauthorized access through managed controls and creates a secure computing environment

Answer 12

TRUE

Question 13

What are the elements of access control policy

Answer 13

• Access group (group of users to which the policy applies)
• Action group (group of actions performed by the user on resources)
• Resource group (resources controlled by the policy)
• Relationship (Resource class can have a set of relationships associated with it)

Question 14

What is an Acceptable Use Policy

Answer 14

A policy that defines the proper use of computing resources

Question 15

According to the Acceptable Use Policy what are the responsibility of the users

Answer 15

To protect the information available in their accounts

Question 16

What is an Administrative Security Policy

Answer 16

It defines the security and protection requirements for information and information systems

Question 17

How is the Administrative Security Policy important

Answer 17

• Safeguards valuable or confidential info from unauthorized access
• Eliminates strong legal liability from employees or third parties
• Ensures data availability
• Ensures data integrity and prevents information from unauthorized and undetected tampering of the information

Question 18

What is an Asset Control Policy

Answer 18

Designed to protect the organizational resources on the network by establishing the policies and procedures

Question 19

What is created to keep up with all the assets

Answer 19

A tracking database

Question 20

To track an asset what is assigned to the asset

Answer 20

ID (Internal tracking number)

Question 21

What is an Audit Trail Policy

Answer 21

A policy that collects all audit trails such as series of records of computer events, about an operating system, an application, or user activities

Question 22

TRUE or FALSE: As a support for operations, audit trails are used to help system admins ensure that the system or resources have not been harmed by attackers, insiders, or technical problems

Answer 22

TRUE

Question 23

What are the 4 benefits of audit trails

Answer 23

• Individual Accountability
• Reconstructing Events
• Problem Monitoring
• Intrusion Detection

Question 24

What is a Logging Policy

Answer 24

Defines which set of system events needs to be logged

Question 25

TRUE or FALSE: If there are too many logs then it becomes easier to review the logs

Answer 25

FALSE

Question 26

The logging policy includes what elements in its policy

Answer 26

* Notification procedures * Guidelines for log review intervals * Retention standards * Response time

Question 27

What does a Documentation Policy

Answer 27

Determines the requirements and procedures for documentation of organization's operations and resources such as networks and servers.

Question 28

Why are Evidence Collection Policies important

Answer 28

They are required to provide a legally sound framework for collecting evidence related to a security incident

Question 29

What is an Evidence Preservation Policy

Answer 29

A policy that determines how to preserve the evidence and maintain them in their original state

Question 30

TRUE or FALSE: Two copies of the evidence must be maintained. 1 original and 2 backups for testing

Answer 30

TRUE

Question 31

What type of backups are to be made as they are more through than the standard backups

Answer 31

Bit stream

Question 32

Why is an Information Security Policy even needed

Answer 32

It lays the foundation for information security within an organization

Question 33

How does an Information Security Policy help most of all

Answer 33

It helps to ensure that the company follows the CIA with regards to data

Question 34

What does NIACAP stand for

Answer 34

National Information Assurance Certification & Accreditation Process

Question 35

What does NIACAP do

Answer 35

Sets up a standard national process, set of activities, general tasks, and a management structure to certify and accredit systems

Question 36

What is the Physical Security Policy

Answer 36

Establishes rules for granting, control, monitoring, and removal of physical access to information resources and facilities

Question 37

What type of agreements need to be signed for physical access to information resource facilities

Answer 37

Access and Non-disclosure agreements

Question 38

According to federal law what must federal agencies in regards to incidents

Answer 38

Federal agencies must report the incidents to the Federal Computer Incident Response Center

Question 39

TRUE or FALSE: A procedure to monitor the efficiency of the security controls is not part of the computer risk policy

Answer 39

TRUE

Question 40

TRUE or FALSE: An audit trail policy helps in calculating intangible losses to the organization due to an incident

Answer 40

FALSE