B4: Information Systems Flashcards by Josh Hill

When is distributed/decentralized processing most appropriate?

Large volume of info
Many locations
Fast access required

How well did you know this?

Not at all

Perfectly

What are the 5 components of a BIS?

Hardware
Software
Data
Network
People

How well did you know this?

Not at all

Perfectly

What are the 5 functions on data in a BIS?

collect
process
store
transform
distribute

How well did you know this?

Not at all

Perfectly

What is a group code?

Within account or item number, different groups of numbers have meaning

How well did you know this?

Not at all

Perfectly

What are the major functions in transaction processing?

Data input, storage, processing, information output

How well did you know this?

Not at all

Perfectly

What are the main objectives of an AIS?

record valid transactions
properly classify transactions
record at proper value
record in proper period (cutoff)
properly present info and transactions

How well did you know this?

Not at all

Perfectly

What is transaction processing?

processing large numbers of commonly occurring events in a predefined, highly structured way

How well did you know this?

Not at all

Perfectly

What are the steps in the SDLC?

A DITTO

Systems analysis
Design (conceptual and physical)
Implementation and conversion
Training
Testing
Operations and Maintenance

How well did you know this?

Not at all

Perfectly

What are the 7 information criteria under COBIT?

ICE RACE

Integrity (accurate, complete, valid)
Confidentiality (protect sensitive info)
Efficiency (low cost without compromising effectiveness)

Reliability (info represents what is purports to represent)
Availability (providing current and future info as required)
Compliance (comply with laws, contracts, regulations)
Effectiveness (relevant to business process and delivered in timely, correct, consistent, and useful manner)

How well did you know this?

Not at all

Perfectly

What are the four domains of the COBIT framework?

PO AIDS ME

Plan and organize (direct)

Acquire and implement (solution)
Deliver and support (service)

Monitor and evaluate (ensure direction followed)

How well did you know this?

Not at all

Perfectly

What does the MIS steering committee do?

Plan and oversee development and acquisition

How well did you know this?

Not at all

Perfectly

What does a DBA do?

controls the database

design database, security measures, and controls data structure

How well did you know this?

Not at all

Perfectly

What should always be included in a systems specification document?

data elements

How well did you know this?

Not at all

Perfectly

What are the 5 areas of COBIT IT governance?

strategic alignment
value delivery
resource mgmt
risk mgmt
performance mgmt

How well did you know this?

Not at all

Perfectly

What is COBIT enterprise architecture?

combination of IT resources and defined processes

How well did you know this?

Not at all

Perfectly

In asymmetric encryption, what is used to encrypt and decrypt?

public key

private key

What is PKI?

public key infrastructure

system and processes used to issue and manage asymmetric keys and digital certificates

What are the policy support documents?

regulations
standards and baselines
guidelines
procedures

What are the 5 steps in disaster recovery?

assess risks
identify mission-critical applications and data
develop a plan
determine responsibilities of personnel involved
test disaster recovery plan

What is the difference between a full, incremental, and differential backup?

exact copy of entire database
copying only data that changed since last backup
copies all changes since last FULL backup

What are the four general types of reporting risks?

Strategic - choosing inappropriate technology
Operating - doing right thing wrong way
Financial - losing, wasting, having financial resources stolen
Information - loss of data integrity, incomplete transactions, hackers

What do firewalls do?

deter invasion from outsiders

What are the layers in a 3-tier architecture?

desktop client, application, and database

What are the 4 priorities of SCM groups?

what
when and where goods delivered
how much the goods cost

What is EDI

electronic exchange (computer to computer) of business transaction documents in structured formats

What are the main differenced between E-commerce and EDI?

``` E-commerce is: less expensive less secure faster (OLRT) internet (public) ```

What is the primary purpose of ERP?

Integrate data from all functional areas of organization's activity

What is TCP/IP?

network protocol on which internet is based | Every website has a unique address

What do intranets do?

private networks with limited if any access for the public | share org info by connecting geographically separate LANs within the org

What is the job of a systems analyst?

internally developed system: determine system requirements design overall application system determine type of network Purchased system: integrates with existing internal and purchased applications provides training to end users

What is the job of an application programmer / software developer?

Writing and/or maintaining application programs | should not have access to write/update data in production systems or access application program change mgmt systems

What is the job of a system programmer?

Installing, supporting, monitoring, and maintaining the operating system Capacity planning should not be able to write/update data in production systems or access change mgmt systems

What is the job of a computer operator?

scheduling and running processing jobs

What is program-level policy?

mission statement for IT security program

What is program-framework policy?

IT security strategy

What is issue-specific policy?

Addresses specific issues of concern

What is system-specific policy?

Focus on policy issues that exist for a specific system

What is the main objective of disaster recovery plans?

restoring operating functionality | prevent downtime