The FTC Can Act Against Companies That Fail to Take

Q21: The manager of the security department often

Q22: Compliance laws and regulations _.
A) create requirements

Q23: _ examines organizational units for efficiency, effectiveness,

Q24: Independence is best provided for IT security

Q25: When companies studied where they stored private

Q27: _ examines financial processes for efficiency, effectiveness,

Q28: Placing security within IT _.
A) creates independence
B)

Q29: _ specifically addresses data protection requirements at

Q30: The FTC can _.
A) impose fines
B) require

Q31: Which companies do PCI-DSS affect?
A) E-commerce firms
B)