Blog

The SOX Act created the __________, which sets accounting and auditing standards.

There are many barriers to policy acceptance and enforcement. Which of the following is not one the challenges to policy acceptance?

True or False? In U.S. compliance laws, the intended objective of the concept of “limited use of personal data” is the practice of asking permission for how personal information can be used beyond its original purpose.

True or False? One of the foundational reasons for using and enforcing security policies is to protect systems from insider threats.

Devaki is a human resources (HR) professional. She is revising a document her company requires all new hires to sign and abide by. The document states that the employee promises not to divulge any information described in the document to a third party. What kind of document is Devaki revising?

True or False? A risk-aware culture means the people in an organization share a common set of values, beliefs, and knowledge about the importance of managing risks.

True or False? The American Institute of Certified Public Accountants (AICPA) created the Statement on Standards for Attestation Engagements No. 16 (SSAE16) to replace SAS 70.

True or False? Public interest is the practice of telling individuals how their personal information will be protected.

True or False? In Information Technology Infrastructure Library (ITIL), service strategy relates to ongoing support of a service, and service operation relates to how to define the governance and portfolio of services.

Which of the following is a security control classification that relies on a human to take some action?