Standards Flashcards

1
Q

TOGAF (The Open Group Architecture Framework)

A

Model and methodology for the development of enterprise architectures

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Zachman Framework

A

Model for the development of enterprise frameworks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

DoDAF (Department of Defense Architecture Framework)

A

DOD architecture framework that ensures interoperability of systems that meet military mission goals

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

MODAF (Ministry of Defence Architectural Framework)

A

Architecture framework used mainly in military support missions developed by the British Ministry of Defence

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

SABSA (Sherwood Applied Business Security Architecture)

A

Model and methodology for the development of information security enterprise achitecture

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

COBIT 5 (Control Objectives for Information and Technologies)

A

Business frameowrk for IT enterprise management and governance ISACA

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

NiST SP 800-53

A

Set of controls to protect U.S. federal systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

COSO Internal Control - Integrated Framework

A

set of internal corporate controls to help reduce the risk of financial fraud.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

ITIL (Information Technology Infrastructure Library)

A

processes to allow for IT service management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

ISO/IEC 27000

A

Overview and vocabulary

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

ISO/IEC 27001

A

ISMS requirements

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

ISO/IEC 27002

A

Code of practice for information security controls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

ISO/IEC 27003

A

ISMS implementation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

ISO/IEC 27004

A

ISMS measurement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

ISO/IEC 27005

A

Risk management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

ISO/IEC 27006

A

Certification body requirements

17
Q

ISO/IEC 27007

A

ISMS auditing

18
Q

ISO/IEC 27008

A

Guidance for auditors

19
Q

ISO/IEC 27011

A

Telecommunications organizations

20
Q

ISO/IEC 27014

A

Information Security Governance

21
Q

ISO/IEC 27015

A

Financial Sector

22
Q

ISO/IEC 27031

A

Business Continuity

23
Q

ISO/IEC 27032

A

Cyber Security

24
Q

ISO/IEC 27033

A

Network Security

25
Q

ISO/IEC 27034

A

Application Security

26
Q

ISO/IEC 27035

A

Incident Management

27
Q

ISO/IEC 27037

A

Digital evidence collection and preservation

28
Q

ISO/IEC 27799

A

Health organizations

29
Q

ROI

A

Return on Investment

30
Q

SOX

A

Sarbanes-Oxley Act to fight financial fraud

31
Q

APT

A

Advanced Persistent Threat

32
Q

Council of Europe Convention on Cybercrime

A

Standard for international response to cybercrime

33
Q

OECD Organization for Economic Co-operation and velopment

A

Organization that defined rules for international data exchange.