Chapter 7 (Security)

Question 1

Several areas of Security include ________, ________, ________, and __________.

Answer 1

Physical
Digital
Operational
Data
Corporate IT Policies

Question 2

A document that outlines the minimum standards required to secure the organization’s technology-relatied systems, assets, and data. It also outlines the rules and procedures for accessing the organization’s systems and data.

Answer 2

Security Policy

Question 3

A Purpose, Scope, Definitions Section, and an Appendix is included in most _________.

Answer 3

Policies

Question 4

What section of a policy states what the policy is protecting and why?

Answer 4

Purpose

Question 5

What section of a policy defines the people impacted by the policy, such as employees and contractors, and a description of the systems the policy is covering?

Answer 5

Scope

Question 6

What section of a policy outlines the rules and procedures regarding accessing the organization’s systems and data?

Answer 6

Scope

Question 7

What document outlines the HOW we are going to accomlish a task?

Answer 7

Procedure Document

Question 8

What section of a policy includes descriptions of equipment, data, services, etc..?

Answer 8

Defenitions Section

Question 9

What section of a policy will outline who performs the inventory and disposal and the employees role on allowing access for these activities?

Answer 9

Roles and Responsibilities

Question 10

A type of security for those who create products, intellectual property, or unique services

Answer 10

Branding Restrictions

Question 11

What involves a trademark, copyright, registered trademark, or patent?

Answer 11

Branding

Question 12

What is generally used to identify a company, brand names, logos, and such?

Answer 12

Trademark

Question 13

What identifies the intellectual property of a company and is registered with teh U.S. Patent and Trademark Office?

Answer 13

Registered Trademark

Question 14

What is used for intellectual property such as books, music, recordings, and so on?

Answer 14

Copyright

Question 15

Intellectual property that is awaiting acceptance by the Patent and Trademark Office is designated as ________.

Answer 15

Patent Pending

Question 16

What type of security involves securing assets such as mobile devices, removable media devices, access to facilities, and more?

Answer 16

Physical Security

Question 17

What type of security includes policies for performing background checks and security clearance?

Answer 17

Operational Security

Question 18

What three levels of Security Clearance are there for the U.S. Department of State?

Answer 18

Confidental
Secret
Top Secret

Question 19

What type of security policies are related to access and permissions to digital assets? This may include systems, data, communication equipment, etc..

Answer 19

Digital Security

Question 20

MFA

Answer 20

Multifactor Authentication

Question 21

A process whereby the user must use two or more methods to verify their identity during the sign-in process.

Answer 21

Multifactor Authentication (MFA)

Question 22

A way for users who are not physically located at the organization’s site to access information.

Answer 22

Remote Access

Question 23

What type of security policies define access by roles and responsibilities and/or by data classification?

Answer 23

Data Security

Question 24

A way to describe data ccording to it’s sensitivity, type, and value to the organization.

Answer 24

Data classification

Question 25

PII PHI

Answer 25

Personal Identifiable Information Personal Health Information

Question 26

When information should only be shared with those who have a need-to-know to perform a task or fulfuill their job function.

Answer 26

Need-To-Know Basis

Question 27

Who has the rprimary role of estimating the costs to complete the work of the project, determining the project budget, and estimating the total cost of the project?

Answer 27

Project Manager

Question 28

Two areas where you want to be as accurate as possible when presenting estimates.

Answer 28

Cost Baseline Schedule Baseline

Question 29

Four techniques to determine cost estimates

Answer 29

Analogous Parametric Bottom-up Three-Point

Question 30

Analogous Estimating is also know as _________.

Answer 30

Top-Down Estimating

Question 31

Determines the cost of the project at a high level by using a similar past project as a basis for the estimate. Usually uued when there is not alot of detail on the project.

Answer 31

Analogous (Top-Down) Estimate

Question 32

Determines the cost of a project by using a mathematical model to compute costs and often uses the quality of work multiplied by the rate.

Answer 32

Parametric Estimating

Question 33

Which is the most precise cost-estimating technique?

Answer 33

Bottom-Up Estimating

Question 34

The total time it will take for a person to complete the task if they do nothing else from the time they start until the task is complete.

Answer 34

Work Effort

Question 35

Determines the cost of the project by assigning a cost estimate to each work package on the project.

Answer 35

Bottom-Up Estimate

Question 36

Determines the cost of the project by being an average of the Most Likely Estimate, the Optimistic Estimate, and the Pessimistic estimate.

Answer 36

Three-Point Estimate

Question 37

Which estimate assumes the costs will come in as expected?

Answer 37

Most Likely Estimate

Question 38

Which estimate is an estimate that is better than expected?

Answer 38

Optimistic Estimate

Question 39

Which estimate assumes the goods or services will cost more than expected?

Answer 39

Pessimistic Estimate

Question 40

Let’s say your most likely estimate for contracting work is $302 per hour. The optimistic estimate is $250 per hour, and the pessimistic estimate is $400 per hour. Using the three-point estimate, create an equation and write the answer.

Answer 40

($302+$250+400) / 3 = $317.33

Question 41

What is a Loaded Rate?

Answer 41

A percentage of the emplyee's salary to cover benifits such as medical, disibility, or pension plans.

Question 42

What do you do next once the cost estimate is completed?

Answer 42

Prepare the Budget

Question 43

The process of aggregating all the cost estimates and establishing a cost baseline for the project.

Answer 43

Budgeting

Question 44

The total expected cost for the project

Answer 44

Cost Baseline

Question 45

PMO

Answer 45

Program Management Office

Question 46

Program Management Offices' tasks are to

Answer 46

Over see project budgets, approve expenses, and track all the project budgets

Question 47

Which department defines the cost categories Project Budgets are broken down into?

Answer 47

Accounting Department

Question 48

Name a few examples of Cost Categories

Answer 48

Salary Hardware Software Travel Training Materials Supplies

Question 49

CapEx

Answer 49

Capital Expenses

Question 50

OpEx

Answer 50

Operational Expenses

Question 51

Which type of expense applies to assets that are expected to provide benefits to the organization for an extended time into the future? (software purchases, equipment purchases, building purchases, etc..)

Answer 51

Capital Expenses

Question 52

Which type of expense applies to whats needed to run the day-to-day activities of the business? (Training, Salaries, Rent, etc..)

Answer 52

Operational Expenses

Question 53

Which type of expense is a certain amount of money set aside to cover costs resulting from possible adverse events or unexpected issues on the project?

Answer 53

Contigency Reserve

Question 54

Which type of expense is an amount set aside by upper management to cover future sitauations that can't be predicted?

Answer 54

Management Reserve

Question 55

The total approved exptected cost for the project.

Answer 55

Cost Baseline

Question 56

What type of graph is this?

Answer 56

Cost Baseline

Question 57

Measuring the project spending to date, determining the how fast you're going through the money (burn rate), and tracking expenditures to the cost baseline so that stakeholders can see what was planned versus what was actually spent on the project.

Answer 57

Expenditure Tracking

Question 58

The mechinism you'll use to report on the current state of the project budget.

Answer 58

Expenditure Reporting

Question 59

What shows the remaining time and work effort for the itteration?

Answer 59

Agile Burndown Chart

Question 60

What shows the Burn Rate (the rate at which you are spending funds over time) for the budget over the scheduled timeline?

Answer 60

Budget Burnout Chart

Question 61

The rate at which you are spending funds over time

Answer 61

Burn rate

Question 62

What is this chart an example of?

Answer 62

Budget Burndown Chart

Question 63

EVM

Answer 63

Earned Value Measurement

Question 64

A performance measurement technique that compares what your project has produced to what you've spent by monitoring the planned value, earned value, and actual costs expended to produce the work of the project.

Answer 64

Earned Value Measurement (EVM)

Question 65

The primary functions of _______________ is to determine and document the cause of the varience, to determine the impact of the varience, and to determine whether a corrective action should be implemented as a result.

Answer 65

Earned Value Measurement (EVM)

Question 66

___________________ allows you to forcast where the project is headed.

Answer 66

Earned Value Measurement (EVM)

Question 67

To perform the Earned Value Measruement calculations, you need to first gather these three measurements:

Answer 67

Planned Value Actual Cost Earned Value

Question 68

The cost of work that has been authorized and budgeted for a specific activity.

Answer 68

Planned Value

Question 69

PV

Answer 69

Planned Value

Question 70

Money that's actually been spent during a given time period for completing work

Answer 70

Actual Cost

Question 71

AC

Answer 71

Actual Cost

Question 72

The value of the work completed to date as it compares to the budgeted amount.

Answer 72

Earned Value

Question 73

EV

Answer 73

Earned Value

Question 74

What tells you whether your costs are higher than budgeted or lower than budgeted?

Answer 74

Cost Variance

Question 75

CV

Answer 75

Cost Variance

Question 76

What is the formula for Cost Variance (CV)?

Answer 76

CV = EV - AC

Question 77

Compares an activitiy's actual progress to date to the estimated progress and is represented in terms of cost.

Answer 77

Schedule Variance

Question 78

What is the Schedule Variance formula?

Answer 78

SV = EV - PV

Question 79

CPI

Answer 79

Cost Performance Index

Question 80

Measures the value of the work completed at the measurement date against the actual cost.

Answer 80

Cost Performance Index (CPI)

Question 81

What is the Cost Performance Index (CPI) formula?

Answer 81

CPI = EV / AC

Question 82

SPI

Answer 82

Schedule Performance Index

Question 83

Measures the progress to date against the progress that was planned.

Answer 83

Schedule Performance Index

Question 84

What is the scheduel Performance Index forumla?

Answer 84

SPI = EV / PV

Question 85

The rate you are spending money over time.

Answer 85

Burn Rate

Question 86

ETC

Answer 86

Estimate to Complete

Question 87

The cost estimate for the remaining project work

Answer 87

Estimate to Complete (ETC)

Question 88

What is the Estimate to Complete (ETC) forumla?

Answer 88

ETC = Budget - Spend to Date

Question 89

A potential future event that can have either negative or positive impacts on the project.

Answer 89

Risk

Question 90

Deals with how you manage the areas of uncertainty in you project

Answer 90

Risk Planning

Question 91

What are the three components to risk planning?

Answer 91

Risk Identification Risk Analysis Preparing Risk Response

Question 92

The process of determining and documenting the potential risk that could occur on you project

Answer 92

Risk Identification

Question 93

A list of risks that includes an identification number, risk name, risk description risk owner, and risk plan.

Answer 93

Risk Register

Question 94

The person responsible for monitoring the project to determine whether the potential for the risk event is high and for implementing the risk reponse plan should it occur.

Answer 94

Risk Owner

Question 95

Risks that are catastrophic in nature and are outside of the control of the organization.

Answer 95

Force Majeure

Question 96

SWOT

Answer 96

Stengths, Weaknesses, Opportunities, and Threats

Question 97

Involves analyzing the project from each of these perspective: Strength, Weakness, Opportunities, and Threats

Answer 97

SWOT

Question 98

Examines what you organization does well

Answer 98

Strengths

Question 99

Areas the organization could improve upon

Answer 99

Weaknessess

Question 100

Identifies risks that have the greatest possibility of occurring and the greatest impact to the project if they do occur.

Answer 100

Risk Analysis

Question 101

A way to prioratize and quantify risks so they are easy to understand

Answer 101

Impact Analysys

Question 102

The likelighood that a risk event will occur

Answer 102

Probability

Question 103

The consequence the risk poses to the project if it occurs

Answer 103

Impact

Question 104

Probability with wieght by which measurements?

Answer 104

0.0 - 1.0

Question 105

Impacts are weighed by which measurements?

Answer 105

0 - 10

Question 106

The process of determining the probability and impact of the risks and ranking them in order of priority to determine which ones need response plans.

Answer 106

Qualitative Analysis

Question 107

The process of assigning numeric probabilities to risks and their impacts on project objectives

Answer 107

Quantitative Analysis

Question 108

Looks at risks from the perspective of various situations or scenarios that may occur as the project progresses.

Answer 108

Situational/Scenario Analysis

Question 109

An analysis that uses cost or schedule variables that are input into the model and then replicated several times to estimate potential outcomes for each of the variables used.

Answer 109

Monte Carlo Analysis

Question 110

The process of reviewing the risk analysis and determining what action should be taken to reduce negative impacts.

Answer 110

Preparing Risk Responses

Question 111

Reducing the impact or the probability of the risk

Answer 111

Mitigate

Question 112

A sign or a precursor signaling that a risk event is about to occur.

Answer 112

Risk triggers

Question 113

Who is reponsible for monitoring the risk assigned to them and watching for risk triggers?

Answer 113

Risk Owner

Question 114

Describes who should be alerted once a risk event occurs

Answer 114

Points of Escalation