Deck 11: Cybersecurity

A)This legislation requires organizations that handle credit and debit card data to meet cybersecurity requirements to safeguard the data.
B)Frank-Dodd Wall Street Reform and Consumer Protection Act
C)This legislation requires each federal agency to develop, document, and implement an agency-wide information security program.
D)This legislation requires proper internal control, including information security and controls.
E)Federal Privacy Act of 1974
F)This legislation requires financial institutions to provide customers with privacy notices and prohibits the institutions from sharing customer information with nonaffiliated third parties.

A)This legislation requires organizations that handle credit and debit card data to meet cybersecurity requirements to safeguard the data.
B)Frank-Dodd Wall Street Reform and Consumer Protection Act
C)This legislation requires each federal agency to develop, document, and implement an agency-wide information security program.
D)This legislation requires proper internal control, including information security and controls.
E)Federal Privacy Act of 1974
F)This legislation requires financial institutions to provide customers with privacy notices and prohibits the institutions from sharing customer information with nonaffiliated third parties.

A)This legislation requires organizations that handle credit and debit card data to meet cybersecurity requirements to safeguard the data.
B)Frank-Dodd Wall Street Reform and Consumer Protection Act
C)This legislation requires each federal agency to develop, document, and implement an agency-wide information security program.
D)This legislation requires proper internal control, including information security and controls.
E)Federal Privacy Act of 1974
F)This legislation requires financial institutions to provide customers with privacy notices and prohibits the institutions from sharing customer information with nonaffiliated third parties.

A)This legislation requires organizations that handle credit and debit card data to meet cybersecurity requirements to safeguard the data.
B)Frank-Dodd Wall Street Reform and Consumer Protection Act
C)This legislation requires each federal agency to develop, document, and implement an agency-wide information security program.
D)This legislation requires proper internal control, including information security and controls.
E)Federal Privacy Act of 1974
F)This legislation requires financial institutions to provide customers with privacy notices and prohibits the institutions from sharing customer information with nonaffiliated third parties.

A)Cryptography
B)Database security
C)Physical and environmental security
D)Access control

A)Information assets and IT
B)The financial services industry
C)Electronic payments
D)Electronic transfer of funds

A)Federal Privacy Act of 1974
B)Sarbanes-Oxley
C)Gramm-Leach-Bliley Act
D)Computer Security Act of 1987

A)63%
B)58%
C)52%
D)48%

A)10%
B)15%
C)23%
D)45%

A)Confidentiality
B)Integrity
C)Private
D)Availability

A)79%
B)65%
C)83%
D)58%

A)Sensitive But Unclassified
B)Top Secret
C)Confidential
D)Secret

A)Computer Fraud and Abuse Act
B)Federal Information Security Management Act of 2002 (FISMA)
C)Economic Espionage Act of 1996
D)Payment Card Industries Data Security Standards (PCI-DDS)

A)Employee Privacy Issues
B)Federal Information Security Management Act of 2002 (FISMA)
C)Computer Fraud and Abuse Act
D)Federal Privacy Act of 1974

A)A software program that provides message transportation services between sending and receiving computers
B)A software program commonly used to connect computers to create a LAN
C)A software program that provides routing services to messages transmitted over the Internet
D)A software program that allows the enterprise network to connect to the network of vendors and suppliers through proprietary lines

A)A software program that provides message transportation services between sending and receiving computers
B)A software program commonly used to connect computers to create a LAN
C)A software program that provides routing services to messages transmitted over the Internet
D)A software program that allows the enterprise network to connect to the network of vendors and suppliers through proprietary lines

A)Workstation computers
B)Server computers
C)Routing devices
D)Peripherals

A)All the phases
B)Design phase
C)Install phase
D)Build/purchase phase

A)A computer with moderate computing power
B)A personal computer or laptop
C)A smart phone
D)A powerful, high-speed computer used for complex numerical calculations

A)Transport control protocol (TCP)
B)Ethernet protocol
C)Internet protocol (IP)
D)Electronic data interchange (EDI)

A)A software program that provides message transportation services between sending and receiving computers
B)A software program commonly used to connect computers to create a LAN
C)A software program that provides routing services to messages transmitted over the Internet
D)A software program that allows the enterprise network to connect to the network of vendors and suppliers through proprietary lines

A)Workstation computers
B)Server computers
C)Routing devices
D)Peripherals

A)Internet protocol (IP)
B)Ethernet protocol
C)Electronic data interchange (EDI)
D)Transport control protocol (TCP)

A)Accounting software
B)Web browsers
C)Word processing applications
D)Relational database management system

A)A software program that provides message transportation services between sending and receiving computers
B)A software program commonly used to connect computers to create a LAN
C)A software program that provides routing services to messages transmitted over the Internet
D)A software program that allows the enterprise network to connect to the network of vendors and suppliers through proprietary lines

A)Password attack
B)Network sniffer
C)Identify theft
D)Spoofing at log-on

A)Keyboard
B)Bridge
C)Computer
D)Router

A)Low-level security firewall
B)Medium-level security firewall
C)High-level security firewall
D)Proxy firewall

A)Security for access to the enterprise system, including computers, networks, routers, and databases
B)Security for telecommunications, networks, and the Internet
C)The physical security of information technology components, such as hardware and software
D)Activities and procedures required to keep information technology running securely

A)Network sniffers
B)Phishing
C)Identify theft
D)Spoofing at log-on

A)Code is disguised as a legitimate program, that can be downloaded and installed by users without realizing it is malware
B)A relatively small program that infects other application software by attaching to it and disrupting application function
C)Tiny piece(s)of programming code that install themselves on the infected computer called a Zombie
D)Similar to a virus except it does not need a host application to function or reproduce
E)Software executes when a specified event happens within the computer

A)GPS tracking
B)Locked doors
C)Fences
D)Cameras

A)Activities and procedures required to keep information technology running securely
B)The physical security of information technology components, such as hardware and software
C)Security for telecommunications, networks, and the Internet
D)Security for access to the enterprise system, including computers, networks, routers, and databases

A)Developing contingency plans for virus attacks
B)Input/output controls
C)Maintaining security devices and software
D)Training to all employees to inform and educate them regarding security policies and procedures

A)Security architecture and design
B)Telecommunications
C)Application security
D)Cryptography

A)Single sign-on
B)Biometrics
C)Token device
D)Dynamic password