S&G and Misc

Question 1

Contingency plan

Answer 1

Step 1: identify risks
Step 2: prioritize risks
Step 3: develop a plan to address each risk
Step 4: maintain plan

Question 2

Data Classification

Answer 2

4 classifications:
Public - no sensitivity, no protection needed
Internal - low to med sensitivity, some protection needed
Confidential - Med to high sensitivity, protection needed. If compromised could negatively affect operations
Restricted - High sensitivity, protection needed. If compromised could put organization in financial or legal risk.

Question 3

Descriptive analytics

Answer 3

Use historical data to draw comparisons

Question 4

Diagnostic analytics

Answer 4

Look at processes and causes.
What happened and why

Question 5

Predictive analytics

Answer 5

Look at current and historical data to predict the future
Patterns are used to identify risks and opportunities

Question 6

Systems development life cycle

Answer 6

Phase 1: initial feasibility study
Phase 2: requirements analysis & definition
Phase 3: application design/selection
Phase 4: systems development/configuration
Phase 5: preliminary testing
Phase 6: system implementation
Phase 7: post-implementation evaluation

Question 7

System conversion methods

Answer 7

Parallel conversion: old and new systems are run at same time. Old system is shut down when new system is determined to function as required

Direct cutover: new system takes over immediately after initial testing is successful

Modular or pilot-study changeover: new system is introduced to a limited part of the organization. Once issues encountered are resolved, the remaining components of the organization are converted to the new system.

Phased changeover: new system and conversion is introduced in steps or intervals.