Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Certified in Cybersecurity > Quiz > Flashcards

Quiz Flashcards

1
Q

A chief information security officer (CISO) at a large organization documented a policy that establishes the acceptable use of cloud environments for all staff. This is an example of a:

A

Management/Administrative control

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Is it possible to avoid risk?

A

Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is meant by non-repudiation?

A

If a user does something, they can’t later claim that they didn’t do it.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which of the following is NOT one of the four typical ways of managing risk?

A

Conflate

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Siobhan is deciding whether to make a purchase online; the vendor wants Siobhan to create a new user account, and is requesting Siobhan’s full name, home address, credit card number, phone number, email address, the ability to send marketing messages to Siobhan, and permission to share this data with other vendors. Siobhan decides that the item for sale is not worth the value of Siobhan’s personal information, and decides to not make the purchase.  

What kind of risk management approach did Siobhan make?

A

Avoidance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Guillermo is the system administrator for a midsized retail organization. Guillermo has been tasked with writing a document that describes, step-by-step, how to securely install the operating system on a new laptop. This document is an example of a ________. 

A

Procedure

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Lankesh is the security administrator for a small food-distribution company. A new law is published by the country in which Lankesh’s company operates; the law conflicts with the company’s policies. Which governance element should Lankesh’s company follow? 

A

The law

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Kristal is the security administrator for a large online service provider. Kristal learns that the company is harvesting personal data of its customers and sharing the data with local governments where the company operates, without the knowledge of the users, to allow the governments to persecute users on the basis of their political and philosophical beliefs. The published user agreement states that the company will not share personal user data with any entities without the users’ explicit permission. 

According to the (ISC)2 Code of Ethics, to whom does Kristal ultimately owe a duty in this situation?

A

The governments of the countries where the company operates 

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

While taking the certification exam for this certification, you notice another candidate for the certification cheating. What should you do?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

The concept of “secrecy” is most related to which foundational aspect of security? 

A

Confidentiality

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Certified in Cybersecurity (2 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions