Question 1

Which of the following agencies regulates financial institutions not covered by other agencies?&#10;A) Federal Trade Commission (FTC)&#10;B) Commodity Futures Trading Commission (CFTC)&#10;C) National Credit Union Administration (NCUA)&#10;D) Federal Deposit Insurance Corporation (FDIC)

Accepted Answer

The Federal Trade Commission (FTC) is responsible for protecting consumers and competition by preventing anticompetitive, deceptive, and unfair business practices. While not a financial regulator in the traditional sense like the FDIC or NCUA, the FTC does have jurisdiction over certain financial practices and institutions not covered by other financial regulatory agencies, particularly in areas related to consumer protection and antitrust matters.

Question 2

Which of the following agencies regulates state-chartered banks?&#10;A) Federal Trade Commission (FTC)&#10;B) Commodity Futures Trading Commission (CFTC)&#10;C) National Credit Union Administration (NCUA)&#10;D) Federal Deposit Insurance Corporation (FDIC)

Accepted Answer

The Federal Deposit Insurance Corporation (FDIC) regulates state-chartered banks that are not members of the Federal Reserve System. It ensures the stability and public confidence in the U.S. financial system by insuring deposits, examining and supervising financial institutions for safety, soundness, and consumer protection, and managing receiverships.

Question 3

The Federal Reserve Board is responsible for regulating which of the following?&#10;A) Bank holding companies and member banks of the Federal Reserve System&#10;B) National banks, federal saving associations, and federal branches of foreign banks&#10;C) Federally charted credit unions&#10;D) State-chartered banks

Accepted Answer

The Federal Reserve Board is responsible for regulating bank holding companies and member banks of the Federal Reserve System. Other entities like national banks and federally chartered credit unions are overseen by different regulators, such as the Office of the Comptroller of the Currency (OCC) and the National Credit Union Administration (NCUA), respectively. State-chartered banks may be supervised by state banking authorities and, depending on their membership, by the Federal Reserve or the FDIC.

Question 4

Which of the following statements best describes operational risk?&#10;A) The risk arising from adverse business decisions&#10;B) The risk arising from negative public opinion&#10;C) The risk arising from problems with service or product delivery&#10;D) The risk of loss resulting from inadequate or failed internal processes, people, or systems

Accepted Answer

Operational risk refers to the risk of loss resulting from inadequate or failed internal processes, people, or systems, or from external events. This definition includes legal risks but excludes strategic and reputational risks. It encompasses a range of issues including fraud, loss of key personnel, business interruption, and systems failures.

Question 5

Which of the following statements best describes reputational risk?&#10;A) The risk arising from adverse business decisions&#10;B) The risk arising from negative public opinion&#10;C) The risk arising from problems with service or product delivery&#10;D) The risk of loss resulting from inadequate or failed internal processes, people, or systems

Accepted Answer

Reputational risk is the risk arising from negative public opinion. This can affect a company's customer base, revenue, and overall standing in the market, often as a result of some form of negative event or perception, whether true or not.

Question 6

Which of the following best describes an assessment?&#10;A) Evidenced-based examination that compares current practices against a specific internal or external criteria&#10;B) A focused privileged inspection to determine condition, locate weakness or vulnerabilities, and identity corrective actions&#10;C) Testing controls by performing vulnerability assessment tests that simulate real attacks&#10;D) Configuring the System and Security logs on each system to record and audit activities

Accepted Answer

The answer of Which of the following best describes an...

Question 7

Which of the following testing methodologies measures how well controls and safeguards work by subjecting the system to an attack?&#10;A) Assessment&#10;B) Audit&#10;C) Assurance&#10;D) All of the above

Accepted Answer

The answer of Which of the following testing methodologies measures...

Question 8

Which of the following is an evidence-based examination that compares current practices against internal or external criteria?&#10;A) Appraisal&#10;B) Audit&#10;C) Assurance&#10;D) Assessment

Accepted Answer

An audit is an evidence-based examination that compares current practices against predefined standards or criteria, which can be internal policies or external regulations. This process is used to ensure compliance and improve efficiency and effectiveness.

Question 9

What is the FTC implementation of the GBLA?&#10;A) Interagency guidelines&#10;B) Guidelines for Safeguarding Member Information&#10;C) Safeguards Act&#10;D) Banks Holding Company Act

Accepted Answer

The FTC implementation of the Gramm-Leach-Bliley Act (GBLA) is known as the Safeguards Rule. This rule requires financial institutions to have measures in place to keep customer information secure.

Question 10

What is the term used to describe names, addresses, and phone numbers when linked to bank and credit card account information?&#10;A) Private information&#10;B) Nonpublic personal information&#10;C) Nonpublic private information&#10;D) Personal information

Accepted Answer

Nonpublic personal information is the term used to describe sensitive data such as names, addresses, and phone numbers when they are linked with bank and credit card account information, according to privacy laws and regulations.

Question 11

Which of the following threats must financial institutions address?&#10;A) Denial of service&#10;B) Unauthorized access&#10;C) Malware&#10;D) All of the above

Accepted Answer

The answer of Which of the following threats must financial...

Question 12

Which of the following is not considered NPPI?&#10;A) Social Security number&#10;B) Customer account number&#10;C) Credit card account number&#10;D) Credit history

Accepted Answer

The answer of Which of the following is not considered...

Question 13

According to the Interagency Guidelines, who must approve the bank's written information security program?&#10;A) Chief Executive Officer&#10;B) Chief Security Officer&#10;C) Board of Directors&#10;D) Information owner

Accepted Answer

The answer of According to the Interagency Guidelines, who must...

Question 14

Which of the following, also known as social engineering, is a methodology by which an individual impersonates someone else to extract sensitive information from them?&#10;A) Pretexting&#10;B) System infiltration&#10;C) Corporate identity theft&#10;D) Denial of service

Accepted Answer

The answer of Which of the following, also known as...

Question 15

Which of the following gives federal financial regulators statutory authority to regulate and examine the services a technology service provider (TSP) performs for FDIC-insured financial institutions?&#10;A) FDIC&#10;B) FFIEC&#10;C) NIST&#10;D) BSCA

Accepted Answer

The answer of Which of the following gives federal financial...

Question 16

Which of the following statements best describes strategic risk?&#10;A) The risk arising from adverse business decisions&#10;B) The risk arising from negative public opinion&#10;C) The risk arising from problems with service or product delivery&#10;D) The risk of loss resulting from inadequate or failed internal processes, people, or systems

Accepted Answer

The answer of Which of the following statements best describes...

Question 17

Which of the following is used by regulatory agencies to uniformly assess financial institutions based on a rating scale of 1 to 5, with 1 representing the best rating and least degree of concern, and 5 representing the worst rating and highest degree of concern?

A) NY DFS
B) URSIT
C) BSCA
D) GLBA

Accepted Answer

The answer of Which of the following is used by...

Question 18

Which of the following is an interagency body empowered to prescribe uniform principles, standards, and report forms for the federal examination of financial institutions?&#10;A) NCUA&#10;B) FRB&#10;C) FDIC&#10;D) FFIEC

Accepted Answer

The answer of Which of the following is an interagency...

Question 19

Which key part of the NY DFS Cybersecurity Regulation covers training and monitoring?&#10;A) Section 500.06&#10;B) Section 500.12&#10;C) Section 500.14&#10;D) Section 500.17

Accepted Answer

The answer of Which key part of the NY DFS...

Question 20

Which of the following refers to the risk arising from problems with service or product delivery?&#10;A) Operational risk&#10;B) Transactional risk&#10;C) Strategic risk&#10;D) Compliance risk

Accepted Answer

The answer of Which of the following refers to the...

Deck 13: Regulatory Compliance for Financial Institutions