Blog

A company wants to implement a security awareness training program that includes sending certain types of emails to help keep track of the extent to which employees are behaving like human firewalls. They also want to rotate the different types of messages based on job description and include links to online games in some of the messages. What type of training should they include?

An individual with supervisory experience returns to school and earns a degree in network security. The networking lab uses appliances from a specific vendor. Upon graduating, the individual gets a job as an IT manager but also performs a few technical tasks. When buying appliances, the individual insists on devices from the vendor the school uses. What kind of decision-making bias is the individual displaying?

A small insurance company has decided not to bid on a request to provide flood insurance for the IT assets of a company because the ALE exceeds $100,000. Which of the following statements coincides with the conclusion the insurance company has drawn?

A company bought and installed a newly released router. A month after installation the vendor issues a notice that a relatively difficult-to-exploit vulnerability has been found and will be patched in 30 days. Peter wants to do nothing and wait 30 days, Paul wants to revert to using the previous router, and Mary wants to buy cybersecurity insurance. Which one of the following statements is NOT true?

You represent the IT department as a member of the team involved with establishing and maintaining partnerships with a variety of external entities. Which of the following most accurately represents potential third-party risks that need consideration? Select three.

A company makes a series of automotive parts for multiple foreign and domestic automobile manufacturers. Their business practices require relationships with a wide variety of other organizations. Which of the following are most likely to pose third-party risks? Select three.

An independent contractor offers services providing practical and tangible security training to adults in various organizations. The training program includes a heavy hands-on component and makes provision for applying concepts based on questions presented by attendees. Which of the following statements are true regarding this mode of instruction?

Takeshi is creating a document to help represent some of the risks associated with information security. What type of document is Takeshi creating?

List all possible Rh genotypes for Debra Rose using the the Wiener (Rh-Hr) nomenclature.

The following serologic tests are required on all blood donors except: