30: Which one of the following is the MOST crucial link in the computer security chain? A. Access controls B. People C. Management D. Awareness programs28: An area of the Telecommunications and Network Security domain that directly affects the Information Systems Security tenet of Availability can be defined as: A.) Netware availability B.) Network availability C.) Network acceptability D.) Network accountability39: Which of the following would be best suited to provide information during a review of the controls over the process of defining IT service levels? A.) Systems programmer B.) Legal stuff C.) Business unit manager D.) Programmer35: What is the MAIN purpose of a change control/management system? A. Notify all interested parties of the completion of the change. B. Ensure that the change meets user specifications. C. Document the change for audit and management review. D. Ensure the orderly processing of a change request.33: Organizations develop change control procedures to ensure that A. All changes are authorized, tested, and recorded. B. Changes are controlled by the Policy Control Board (PCB). C. All changes are requested, scheduled, and completed on time. D. Management is advised of changes made to systems.29: The Structures, transmission methods, transport formats, and security measures that are used to provide integrity, availability, and authentication, and confidentiality for transmissions over private and public communications networks and media includes: A.) The Telecommunications and Network Security domain B.) The Telecommunications and Netware Security domain C.) The Technical communications and Network Security domain D.) The Telnet and Security domain31: The security planning process must define how security will be managed, who will be responsible, and A. Who practices are reasonable and prudent for the enterprise. B. Who will work in the security department. C. What impact security will have on the intrinsic value of data. D. How security measures will be tested for effectiveness.23: Which of the following prevents, detects, and corrects errors so that the integrity, availability, and confidentiality of transactions over networks may be maintained? A.) Communications security management and techniques B.) Networks security management and techniques C.) Clients security management and techniques D.) Servers security management and techniques CISSP Actualtests.com - The Power of Knowing14: Which one of the following statements describes management controls that are instituted to implement a security policy? A. They prevent users from accessing any control function. B. They eliminate the need for most auditing functions. C. They may be administrative, procedural, or technical. D. They are generally inexpensive to implement.27: CISSP Actualtests.com - The Power of Knowing Which of the following are objectives of an information systems security program? A. Threats, vulnerabilities, and risks B. Security, information value, and threats C. Integrity, confidentiality, and availability. D. Authenticity, vulnerabilities, and costs.24: Making sure that the data is accessible when and where it is needed is which of the following? A.) Confidentiality B.) integrity C.) acceptability D.) availability22: What are the three fundamental principles of security? A.) Accountability, confidentiality, and integrity B.) Confidentiality, integrity, and availability C.) Integrity, availability, and accountability D.) Availability, accountability, and confidentiality12: Which one of the following should NOT be contained within a computer policy? A. Definition of management expectations. B. Responsibilities of individuals and groups for protected information. C. Statement of senior executive support. D. Definition of legal and regulatory controls. CISSP16: CISSP Actualtests.com - The Power of Knowing Which of the following choices is NOT part of a security policy? A.) definition of overall steps of information security and the importance of security B.) statement of management intend, supporting the goals and principles of information security C.) definition of general and specific responsibilities for information security management D.) description of specific technologies used in the field of information security17: In an organization, an Information Technology security function should: A.) Be a function within the information systems functions of an organization B.) Report directly to a specialized business unit such as legal, corporate security or insurance C.) Be lead by a Chief Security Officer and report directly to the CEO D.) Be independent but report to the Information Systems function25: Which of the following describes elements that create reliability and stability in networks and systems and which assures that connectivity is accessible when needed? A.) Availability B.) Acceptability C.) Confidentiality D.) Integrity18: Which of the following embodies all the detailed actions that personnel are required to follow? A.) Standards B.) Guidelines C.) Procedures D.) Baselines5: Which of the following would be the first step in establishing an information security program? A.) Adoption of a corporate information security policy statement B.) Development and implementation of an information security standards manual C.) Development of a security awareness-training program D.) Purchase of security access control software20: Network Security is a A.) Product B.) protocols C.) ever evolving process D.) quick-fix solution15: Which must bear the primary responsibility for determining the level of protection needed for information systems resources? A.) IS security specialists B.) Senior Management C.) Seniors security analysts D.) system auditors
Explore Features
Discover the full suite of AI-powered study tools.
Study Plan
Build a personalized study schedule powered by AI.
Record Lecture
Capture and generate enhanced notes from your lectures.
Notes
Automatically generate comprehensive notes from any course material.
Calendar
Plan personalized study sessions with AI-assisted scheduling
Tutor Me
Get comprehensive step-by-step explanations on any topic.
Spark.E Call
Have a live voice conversation with your AI tutor.
Spark.E Visuals
Analyze diagrams, charts, and images with AI-powered explanations.
Audio Recap
Generate podcast-style audio summaries of your study materials.
Explainer Video
Turn any topic into an AI-generated educational video.
Flashcards
Create smart flashcard decks from your study materials with one click.
QuizFetch
Auto-generated quizzes from your uploaded content.
Arcade
Learn through interactive study games.
Exam-Specific Questions
Practice with real exam formats and questions.
Practice Tests
Simulate full-length exams from your material.
Essay Grader
Receive personalized feedback and grading on your essays.
Plugins
Shape the way Spark.E teaches you.
Mini Apps
Explore interactive study apps or build your own.