Lesson 14 - Security Governance Concepts

Question 1

AUP

Answer 1

Acceptable Use Policy
- a policy that governs employees’ use of company equipment and Internet services. ISPs may also apply AUPs to their customers

Question 2

COOP

Answer 2

Continuity of Operations Plans
- a strategy to ensure that essential functions continue during disruptions or emergencies, including cyberattacks.

Question 3

SDLC

Answer 3

Software Development Life Cycle
- the processes of planning, analysis, design, implementation, and maintenance that often govern software and systems development

Question 4

IAM

Answer 4

Identity and Access Management

Question 5

CDE

Answer 5

Cardholder Data Environment

Question 6

ISMS

Answer 6

Information Security Management System
- a framework that helps organizations systematically manage and protect their information assets, focusing on confidentiality, integrity, and availability

Question 7

FISMA

Answer 7

Federal Information Security Management Act

Question 8

CCPA

Answer 8

California Consumer Privacy Act

Question 9

CMMC

Answer 9

Cybersecurity Maturity Model Certification

Question 10

RFC

Answer 10

Request for Change