5.1 Explain the importance of policies, plans and procedures related to organizational security. Flashcards

1
Q

Business Continuity Plan (BCP)

A

ensures that the business can continue to function should a Natural or man-made disaster happen.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Business Partners Agreement (BPA)

A

Written agreement between two or more entities who join as partners to form and carry on a for-profit business.
(if we are not too busy we will help fulfill their order)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Service Level Agreement (SLA)

A

An agreement that specifies performance requirements for a vendor and outlines MINIMUM levels of support, including in the event of failure or disaster.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Interconnection Service Agreement (ISA)

A

Documents the technical and security requirements for establishing, operating, and maintaining the interconnection.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Memorandum of Understanding/Agreement (MOU/MOA )

A

Defines the terms and conditions for securely sharing data and information resources.
not legally binding
handshake on paper

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Mandatory Vacations

A

forced to take a vacation. Also, the company is checking your computer while you’re gone.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Job Rotation

A

Defines intervals at which employees must rotate through positions. provides opportunity to cross train. Also provides an opportunity to discover fraud.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Separation of Duties

A

Prevents collusion and fraud. For instance one person cannot both write and sign a check.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Clean Desk

A

A clean desk policy increases the physical security of data by requiring employees to limit what is on their desk or ON THEIR MONITOR.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Background Checks

A

All potential employees should be thoroughly screened with an extensive background check before being hired and given access to the computer systems.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Exit Interviews

A

The last real opportunity for that communication occurs when an individual leaves the organization and they are given an exit interview.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Non–disclosure Agreement (NDA)

A

A legal contract intended to cover confidentiality. Keep your mouth shut!!

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Onboarding

A

The process used to train a new employee and bring them up to speed with the organization, its clients, its products, and so forth is known as onboarding.

can also be used to in the context of getting a new piece of equipment.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Acceptable Use Policy/ Rules Of Behavior (AUP)

A

Describe how the employees in an organization can use company systems and resources, both software and hardware.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q
Which of the following agreements contains the technical information regarding the technical and security requirements of the interconnection between two or more organizations?
A. BPA
B. MOA
C. ISA
D. MOU
A

C. ISA

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q
A policy that limits what is visible in an employees work space in known a what?
A. Clean Desk Policy
B. Acceptable use Policy
C. Clean Workspace Policy
D. Privacy Policy
A

A. Clean Desk Policy

17
Q
Which of the following policies are designed to reduce the risk of fraud and prevent other losses in an organization?
A. Separation of duties
B. Acceptable use
C. Least privilege
D. Physical access control
A

A. Separation of duties