COMPUTERIZED INFORMATION IN FINANCE

TRUE/FALSE

1. A SYN flood is characterized by the brute force transmission of requests for access to the target network, with the aim of overwhelming its capacity to receive them.

True

False

2. Computerized information is so tightly bound within the fabric of our society that its trustworthiness and availability has to be assured in order for our basic social functions to operate properly.

True

False

3. There is general agreement about what legitimately constitutes the right set of actions to deter hostile activity in cyberspace.

True

False

4. There been a standard definition of what constitutes due care in the information protection realm since the beginning of the discipline.

True

False

5. FISMA is a piece of legislation; therefore, as is the usual case with legislation, the actual means of implementing the federal law is left up to the National Institute of Standards and Technology (NIST).

True

False

MULTIPLE CHOICE

1. ____ bundles mutually supporting government initiatives into a single coordinated effort to ensure the security of cyberspace and includes the establishment of a coordinated national capability to identify and remediate computer vulnerabilities.
2. CHCI, 2008
3. CCNI, 2008
4. CNCI, 2008
5. CICN, 2008
6. Under the ____ rule, protection isn’t adequate if any part of it can be exploited.
7. complete protection
8. complete inspection
9. complete coverage
10. complete system
11. The normal way to make certain that a compromise does not happen is to put technical or ____ controls in place to ensure the security of all items that have to be protected.
12. psychological
13. behavioral
14. personal
15. barrier
16. In order to operate properly, technical and behavioral controls have to be coordinated from within a single consistent ____.
17. foundation
18. landscape
19. resource
20. framework
21. The problem with protecting information is that it is nothing more than a(n) ____ for something of value in the real world.
22. parasite
23. proxy
24. substitute
25. analog
26. The first step in any cybersecurity process is to ____.
27. get it properly organized
28. get as much information as possible
29. make the controls as strong as possible
30. move as fast as possible
31. It is essential that the people responsible for assuring information follow a disciplined and well-defined ____.
32. evacuation
33. pattern
34. hierarchy
35. process
36. In order for a defense to be effective, all of the requisite ____ have to be in place and properly coordinated.
37. assets
38. intrusions
39. countermeasures
40. backup controls
41. The ____ of a piece of information might be derived from the importance of the idea, or the criticality of the decision, or it can represent simple things like your bank account number.
42. value
43. cost
44. effectiveness
45. assessment
46. A(n) ____ that only reflects the focus and interests of a single field will almost certainly have exploitable holes in it.
47. offense
48. defense
49. control
50. mitigation
51. IT departments install technical countermeasures, but ____ have the responsibility to deploy accompanying physical security controls.
52. often
53. routinely
54. rarely
55. frequently
56. In most organizations, physical and electronic security involve ____ entirely separate and independent areas.
57. two
58. three
59. four
60. five
61. A reasonably accurate ____ of the important information that the organization considers valuable and where it is kept is important.
62. inventory
63. survey
64. hierarchy
65. map
66. Any workable solution has to be ____.
67. elegant
68. practical
69. detailed
70. complex
71. A security infrastructure should reflect the ____ needs of the business as well as its business requirements.
72. technical
73. maturation
74. monetary
75. assurance
76. The role of ____ is to ensure that information resources that are needed to underwrite a particular business strategy are kept confidential, correct, and available.
77. governance
78. risk analysis
79. assurance
80. cybersecurity
81. The aim of ____ is to maintain an optimum and secure relationship between each of the company’s business processes and their respective information security functions.
82. formal governance
83. informal governance
84. formal auditing
85. formal planning
86. Instead of being motivated by a desire to prove their art, hackers today are motivated by ____ and political ends.
87. financial loss
88. reputation
89. financial gain
90. notoriety
91. ____ is nothing more than the ability to demonstrate that all reasonable precautions were taken to prevent harm resulting from something that you are legally responsible for.
92. Due care
93. Due security
94. Due cause
95. Due justice
96. The EBK is a product of the Department of Homeland Security’s ____.
97. National Security Division
98. National Cyber Analysis Division
99. National Cyber Protection Division
100. National Cyber Security Division
101. The specific purpose of the ____ is to implement the education and training requirements of the National Strategy to Secure Cyberspace.
102. TBK
103. EBK
104. ABK
105. NBK

Is this your assignment or some part of it?
We can do it for you! Click to Order!