Quiz
QUESTION 1
1. Constructed during the preliminary phase in the business continuity process a(n) ______________________ is developed to investigate and evaluate the impact that potential attacks will have on critical business processes and functions.
QUESTION 2
1. A collection or group of individuals, known a(n) _____________________, have shared values and goals that are intended to assist the organization with meeting its mission and objectives.
QUESTION 3
1. A(n) ______________________ outlines the strategic vision and direction for organizational tasks to ensure that milestones are met and that assignments conclude on time, within scope, and budget.
|
|
a. |
Program Manager |
|
|
b. |
Project Manager |
|
|
c. |
Business Manager |
|
|
d. |
Information Manager |
QUESTION 4
1. Organizational policies are finalized documents that are permanently implemented after dissemination to ensure that its members are aware, have read, understand, and agree on some of its contents.
True
False
QUESTION 5
1. A(n) ___________________________ are codified procedures and standards that are used to maintain or configure systems.
QUESTION 6
1. A(n) _____________________ team manages responses and performs actions similar to setting up and restarting an organization's operations off site in the event its primary location was compromised.
|
|
a. |
business continuity |
|
|
b. |
disaster recovery |
|
|
c. |
incident response |
|
|
d. |
crisis management |
QUESTION 7
1. When an organization decides it needs its information assets to remain unprotected bases its decision on a(n) _______________________ when removing assets from risk environments.
|
|
a. |
mitigation |
|
|
b. |
termination |
|
|
c. |
defense |
|
|
d. |
transferal |
QUESTION 8
1. A(n) _________________ manages and mitigates any personal impacts of loss and distress experienced after an incident by ensuring a fast and accurate accounting of personnel and minimizing distress that may cause harm.
|
|
a. |
crisis management |
|
|
b. |
business continuity |
|
|
c. |
disaster recovery |
|
|
d. |
incident response |
QUESTION 9
1. A(n) _______________________ are threat categories that encompass antiquated infrastructures that may lead or result in untrustworthy or unreliable systems.
QUESTION 10
1. A(n) ___________________________ are a technique for applying constraints or restrictions to diminish risks to information system systems and data.
QUESTION 11
1. Warm servers such as domain controllers, databases, web, and e-mail servers, often or frequently use reserve servers to provide a reliable backup for its redundant functions by remaining in standby or near online state.
True
False
QUESTION 12
1. Inclusive of all four functional components in contingency planning, a(n) ___________________ approach decreases the impact of vulnerabilities and exploitation with more suitable preparation and planning processes.
|
|
a. |
defense |
|
|
b. |
transferal |
|
|
c. |
termination |
|
|
d. |
mitigation |
QUESTION 13
1. Formal statements, a continuity policy, direct actions for subordinate response teams to developed group specific plans and overall business operation during contingencies.
True
False
QUESTION 14
1. A(n) ______________________________ are procedures that are developed and performed to support an organizations mission and objectives.
QUESTION 15
1. Latent or undetected weaknesses, known as ________________________, are documented, published, and examined after its discovery.
QUESTION 16
1. A(n) ______________________ team manages and executes its response plans by detecting, evaluating, and responding to a disaster and is tasked with reestablishing business operations at the primary site.
|
|
a. |
incident response |
|
|
b. |
crisis management |
|
|
c. |
business continuity |
|
|
d. |
disaster recovery |
QUESTION 17
1. A(n) __________________ is a period where data and systems can recuperate information subsequent to the initial outage.
|
|
a. |
recovery allowable objective |
|
|
b. |
recovery time objective |
|
|
c. |
recovery downtime objective |
|
|
d. |
recovery point objective |
QUESTION 18
1. A group of individuals who are tasked with planning and developing the contingency planning processes and oversight of subordinate teams and their plans are a(n) _________________________.
QUESTION 19
1. A(n) _____________________ preserves the confidentiality, integrity, and availablity of an organization’s information system by categorizing prospective vulnerabilities.
|
|
a. |
risk management |
|
|
b. |
risk determination |
|
|
c. |
risk control |
|
|
d. |
risk identification |
QUESTION 20
1. Business continuity planning will not fail when there is no commitment from senior leaders because its success is dependent on team members and employee's ability to understand and effectively implements all of its components.
True
False
QUESTION 21
1. A(n) __________________ is an enforceable recovery strategy that is implemented during an incident to reestablish an organization’s function, application, and systems.
|
|
a. |
recovery downtime objective |
|
|
b. |
recovery point objective |
|
|
c. |
recovery allowable objective |
|
|
d. |
recovery time objective |
QUESTION 22
1. A critical documented function during emergency preparedness is a disaster recovery plan, as it ensures that all core operational functions can recommence at an alternative business location.
True
False
QUESTION 23
1. A(n) _________________________ documents, observes, and evaluates an organization’s information security posture and prospective problems it may contend with.
|
|
a. |
risk identification |
|
|
b. |
risk control |
|
|
c. |
risk determination |
|
|
d. |
risk management |
QUESTION 24
1. A(n) ____________________________ represents the entire period an organization or its administrators are agreeable or consent to disruptions or outages to its core business functions or processes.
|
|
a. |
maximum recovery downtime |
|
|
b. |
maximum tolerable downtime |
|
|
c. |
maximum allowable downtime |
|
|
d. |
maximum acceptable downtime |
QUESTION 25
1. A(n) ____________________________ is an avoidance approach that counteracts vulnerabilities and exploits systems by adding safeguards that limit access to assets and eliminate weaknesses.
|
|
a. |
termination |
|
|
b. |
defense |
|
|
c. |
transferal |
|
|
d. |
mitigation |
QUESTION 26
1. A(n) _________________________ approach shifts acknowledged threats to other assets or processes which are accomplished by reconsidering how deployment models, services, outsources, or service contracts are acquired or offered.
|
|
a. |
defense |
|
|
b. |
transferal |
|
|
c. |
termination |
|
|
d. |
mitigation |
QUESTION 27
1. A(n) _________________ oversees security planning projects and provides critical information about discovered susceptibilities, threats, and recovery requirements.
|
|
a. |
Security Business Manager |
|
|
b. |
Technology Security Manager |
|
|
c. |
Security Project Manager |
|
|
d. |
Information Security Manager |
QUESTION 28
1. Information security protects and secures computer systems, databases, network systems, and controlled access within an organization.
True
False
QUESTION 29
1. A(n) ____________________________ is highly undetectable by preconfigured signatures because it has the ability to take on many different forms.
QUESTION 30
1. Weighted tables used in a business impact analysis is valuable for information technology personnel, as it enables them to compile information from various equipment that is maintained to determine categorical data frequencies for occurrences and the probability of its success.
True
False