156-110 Online Practice Questions and Answers

Which of the following statements about the maintenance and review of information security policies is NOT true?

A. The review and maintenance of security policies should be tied to the performance evaluations of accountable individuals.

B. Review requirements should be included in the security policies themselves.

C. When business requirements change, security policies should be reviewed to confirm that policies reflect the new business requirements.

D. Functional users and information custodians are ultimately responsible for the accuracy and relevance of information security policies.

E. In the absence of changes to business requirements and processes, information-security policy reviews should be annual.

_______ intrusion detection involves comparing traffic to known characteristics of malicious traffic, known as attack signatures.

A. Pattern matching

B. Statistical anomaly

C. Behavioral analysis

D. Host

E. Network

____________________ are the people who consume, manipulate, and produce information assets.

A. Information asset owners

B. Business-unit owners

C. Audit-control groups

D. Information custodians

E. Functional users

You are a system administrator managing a pool of database servers. Your software vendor releases a service pack, with many new features. What should you do? (Choose TWO.)

A. Eliminate the testing phase of change control.

B. Read the release notes.

C. Refuse to install the service pack.

D. Install the service pack on all production database servers.

E. Install the service pack on a database server, in a test environment.

_______ is the process of confirming that implemented security safeguards work as expected.

A. Penetration testing

B. Exploitation

C. Baselining

D. A vulnerability

E. A countermeasure

Which of these strategies can be employed to test training effectiveness? (Choose THREE.)

A. Create a survey for managers, to see if participants practice behaviors presented during training.

B. Provide feedback forms for employees to rate instruction and training material, immediately after training has ended.

C. Include auditors before and after the training. This checks to see if the number of security-related incidents is reduced, because of the training.

D. Give incentives to employees who attend security-awareness training. Perform spot-checks, to see if incentives are displayed.

E. Test employees on security concepts several months after training has ended.

____________________ educate(s) security administrators and end users about organizations' security policies.

A. Security-awareness training

B. Information Security (INFOSEC) briefings

C. Acceptable-use policies

D. Continuing education

E. Nondisclosure agreements

If a firewall receives traffic not explicitly permitted by its security policy, what should the firewall do?

A. Nothing

B. Do not log and drop the traffic.

C. Log and drop the traffic.

D. Log and pass the traffic.

E. Do not log and pass the traffic.

Which of the following is likely in a small-business environment?

A. Most small businesses employ a full-time information-technology staff.

B. Resources are available as needed.

C. Small businesses have security personnel on staff.

D. Most employees have experience with information security.

E. Security budgets are very small.

Maintenance of the Business Continuity Plan (BCP) must be integrated with an organization's _______________ process.

A. Change-control

B. Disaster-recovery

C. Inventory-maintenance

D. Discretionary-budget

E. Compensation-review