Blog

True or False? A confidentiality agreement (CA) is a non-legal agreement between human resources and employees.

True or False? The Committee of Sponsoring Organizations (COSO) is an endorsed framework that companies commonly use to meet SOX 404 requirements.

Which of the following is not one of the five pillars of the information assurance (IA) model?

True or False? The Sarbanes-Oxley (SOX) Act was meant to repeal existing laws so that banks, investment companies, and other financial services companies could merge.

True or False? ISO 38500 provides guidance for managing IT governance.

True or False? A mitigating control limits the damage caused by not having a control in place.

Once an organization clearly defines its intellectual property (IP), the security policies should specify how to ___________ documents with marks or comments and how to ____________ the data, which determines in what location the sensitive file should be placed.

True or False? The COBIT Monitor, Evaluate, and Assess domain phase looks at specific business requirements and strategic direction and determines if the system still meets these objectives.

True or False? The term “entitlement” is related to restricting the type of access a user has.

Privacy regulations involve two important principles. __________ gives the consumer an understanding of what and how data is collected and used. __________ provides a standard for handling consumer information.