Question 1.1.(TCO 3) Which section of the ISO 17799 deals with asset classification?(Points : 4)
2
3
4
5
Question 2.2.(TCO 4) The age group most inclined to use an online job search is(Points : 4)
30 to 49.
18 to 29.
50 to 64.
None of the above33% of persons across all age groups use online job searching.
Question 3.3.(TCO 5) In ISO 17799, an area where assets are protected from man-made and natural harm is known as(Points : 4)
secure area.
mantrap.
company property.
security perimeter.
Question 4.4.(TCO 3) When it comes to information security, what is the purpose of labeling?(Points : 4)
Communicating the sensitivity level
Communicating the access controls
Enforcing the access controls
Auditing the access controls
Question 5.5.(TCO 4) A security clearance investigation does NOT involve research into a persons(Points : 4)
character.
reliability.
family connections.
trustworthiness.
Question 6.6.(TCO 5) The clear desk and clear screen policy is the way to avoid which of the following kinds of physical attacks?(Points : 4)
Shoulder surfing
Reprinting the last document from the fax machine
Looking at papers on desks
All of the above
Question 7.7.(TCO 3) Information needs to be handled according to(Points : 4)
its classification level.
the statement of authority.
the access controls set forth in the asset management policy.
the access controls set forth in the affirmation agreement.
Question 8.8.(TCO 4) Which of the following is a component of an affirmation agreement?(Points : 4)
Statement of authority
Background check
Job description
Credit history
Question 9.9.(TCO 5) What is the goal of the physical entry controls policy?(Points : 4)
Restrict the knowledge of, access to, and actions within secure areas
Require authorized users to be authenticated and visitors to be identified and labeled
Require perimeter controls as appropriate
Make sure the organization pays attention to potential environmental hazards and threats
Question 10.10.(TCO 3) This is known as the process of downgrading the classification level of an information asset.(Points : 4)
Declassification
Classification review
Reclassification
Asset publication
Question 11.11.(TCO 4) Match each of the following with its example.
(Points : 4)
Potential Matches:
1 :Posters reminding users to report security breaches
2 :A presentation on creating good passwords
3 :Recertification training for the network administrator
Answer
:Security education
:Security training
:Security awareness
Question 12.12.(TCO 5) Which of the following might the working in secure areas policy restrict from being brought into a facility?(Points : 4)
Cameras
Recording devices
Laptop computers
All of the above
Question 13.13.(TCO 3) When calculating the value of an asset, which of the following is NOT a criterion?(Points : 4)
Cost to acquire or develop asset
Cost to maintain and protect the asset
Cost to disclose the asset
Reputation
Question 14.14.(TCO 5) According to the equipment siting and protection policy, smoking, eating, and drinking will not be permitted(Points : 4)
except in designated areas.
inside the security perimeter.
under any circumstances.
in areas where equipment is located.
Question 15.15.(TCO 3) A qualitative approach to an analysis uses (Points : 4)
hard numbers.
statistics.
expert opinions.
general population surveys.