Category: Uncategorized

Once an organization clearly defines its intellectual property (IP), the security policies should specify how to ___________ documents with marks or comments and how to ____________ the data, which determines in what location the sensitive file should be placed.

True or False? The COBIT Monitor, Evaluate, and Assess domain phase looks at specific business requirements and strategic direction and determines if the system still meets these objectives.

True or False? The term “entitlement” is related to restricting the type of access a user has.

Privacy regulations involve two important principles. __________ gives the consumer an understanding of what and how data is collected and used. __________ provides a standard for handling consumer information.

Although it is impossible to eliminate all business risks, a good policy can reduce the likelihood of risk occurring or reduce its impact. A business must find a way to balance a number of competing drivers. Which of the following is not one of these drivers?

True or False? A risk is the likelihood or probability of an event and its impact.

You can implement a security awareness program in many ways. Which of the following is a generally accepted principle of security awareness that is most often associated with new hires?

True or False? A security awareness program should teach an employee where to go for help.

In 2018, a British Airways breach captured customers’ personal and payment data, impacting about 500,000 customers. In 2019, Capital One experienced a large data breach in which an attacker gained access to more than 100 million accounts and credit card applications. Both cases resulted, at least in part, from a(n)__________failure.

True or False? Business liability insurance lowers the financial loss to an organization in the event of an incident.