FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 12: Information Security Maintenance

Show Answer

Share

---

All types

Filters

Study Flashcards

Question 1

True/False

Review LaterAdd Note

Review Later

Remediation of vulnerabilities can be accomplished by accepting or transferring the risk, removing the threat, or repairing the vulnerability.

Correct Answer

verified

Show Answer

Question 2

True/False

Review LaterAdd Note

Review Later

An effective information security governance program requires no ongoing review once it is well established.

Correct Answer

verified

Show Answer

Question 3

Multiple Choice

Review LaterAdd Note

To evaluate the performance of a security system, administrators must establish system performance __________.

For configuration management (CM) and control, it is important to document the proposed or actual changes in the system security plan. _________________________

A(n) ____________________ analysis is a procedure that compares the current state of a network segment (the systems and services it offers) against a known previous state of that same network segment (the baseline of systems and services).

Tracking compliance involves assessing the status of the program as indicated by the database information and mapping it to goals established by the agency. _________________________

The primary goal of the vulnerability assessment and ____________________ domain is to identify specific, documented vulnerabilities and remediate them in a timely fashion.

Why should agencies monitor the status of their programs?

The simplest part of an investigation is analyzing a copy or image for potential evidentiary material. __________

__________ is used to respond to network change requests and network architectural design proposals.

Each organization sets policy to choose one of two approaches when employing digital forensics. Select the statement that best identifies the options.

US-CERT is a set of moderated mailing lists full of detailed, full-disclosure discussions and announcements about computer security vulnerabilities. It is sponsored in part by SecurityFocus. _________________________

In an online or __________ data acquisition, forensic investigators use network-based tools to acquire a protected copy of the information.

Threats cannot be removed without requiring a repair of the vulnerability.

The internal monitoring domain is the component of the maintenance model that focuses on identifying, assessing, and managing the physical security of assets in an organization.

A management model such as ISO 27000 deals with methods to maintain systems.

Over time, external monitoring processes should capture information about the external environment in a format that can be referenced across the organization as threats emerge and for historical use.

CERT stands for "computer emergency recovery team." _________________________

Specific routine bulletins are issued when developing threats and specific attacks pose a measurable risk to the organization. _________________________

__________, a level beyond vulnerability testing, is a set of security tests and evaluations that simulate attacks by a malicious external source (hacker) .