FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 12: Information Security Maintenance

Show Answer

Share

---

All types

Filters

Study Flashcards

Question 31

True/False

Review LaterAdd Note

Review Later

The basic function of the external monitoring process is to monitor activity, report results, and escalate warnings. _________________________

A) True
B) False

Correct Answer

verified

Show Answer

Question 32

True/False

Review LaterAdd Note

Review Later

A(n) war game puts a subset of plans in place to create a realistic test environment. _________________________

A) True
B) False

Correct Answer

verified

Show Answer

Question 33

True/False

Review LaterAdd Note

In some organizations, facilities management is the identification, inventory, and documentation of the current information system's status-hardware, software, and networking configurations. _________________________

To be put to the most effective use, the information that comes from the IDPS must be integrated into the inventory process. _________________________

You can document the results of the verification of a vulnerability by saving the results in what is called a(n) profile. _________________________

The __________ vulnerability assessment is a process designed to find and document selected vulnerabilities that are likely to be present on the organization's internal network.

In some instances, risk is acknowledged as being part of an organization's business process.

Documenting information system changes and assessing their potential impact on system security is an important and consequential part of digital forensics.

A chain of custody is the detailed documentation of the collection, storage, transfer, and ownership of evidence from the crime scene through its presentation in court. ___________

Common vulnerability assessment processes include:

A maintenance ​ticket is opened when a user calls about an issue. _________________________

Inventory characteristics for hardware and software assets that record the manufacturer and versions are related to technical functionality, and should be highly accurate and updated each time there is a change.

The ____________________ step in the intranet vulnerability assessment is identical to the one followed in Internet vulnerability analysis.

____________________ interconnections are the network devices, communications channels, and applications that may not be owned by the organization but are essential to the organization's cooperation with another company.

Policy needs to be reviewed and refreshed from time to time to ensure that it's providing a current foundation for the information security program.

In ____________________ selection, all areas of the organization's premises should be scanned with a portable wireless network scanner.

In digital forensics, all investigations follow the same basic methodology once permission for search and seizure has been obtained. Which of the following is NOT one of the elements of that process?

The __________ mailing list includes announcements and discussion of a leading open-source IDPS.

The __________ process is designed to find and document vulnerabilities that may be present because there are misconfigured systems in use within the organization.

The vulnerability database, like the risk, threat, and attack database, both stores and tracks information.