Question 1

CM assists in streamlining change management processes and prevents changes that could detrimentally affect the security posture of a system before they happen. _________________________

Accepted Answer

Configuration management (CM) plays a crucial role in managing and controlling changes to IT systems. It helps in maintaining a documented inventory of hardware and software assets, ensuring systems are configured securely, monitoring changes, and identifying vulnerabilities or risks. CM prevents changes that could potentially harm the security posture of a system by implementing policies, procedures, and controls that restrict unauthorized changes and provide oversight to approved ones. Therefore, the statement is true.

Question 2

For configuration management (CM) and control, it is important to document the proposed or actual changes in the system security plan. _________________________

Accepted Answer

Documenting proposed or actual changes in the system security plan is an important aspect of configuration management and control in order to ensure that the system remains secure and to track any modifications made to it.

Question 3

Rehearsal adds value by exercising the procedures, identifying shortcomings, and providing security personnel the opportunity to improve the security plan before it is needed.

Accepted Answer

Rehearsal allows personnel to test the security plan and identify weaknesses or areas that can be improved. This improves the effectiveness of the plan and ensures that security measures are in place prior to an actual emergency or threat.

Question 4

An affidavit is sworn testimony that certain facts are in the possession of an investigating officer and that they warrant the examination of specific items located at a specific place.

Accepted Answer

An affidavit is a written statement of facts that is sworn or affirmed under oath statement made under oath, typically used in legal proceedings. It is used to present evidence in a court case and can be considered as evidence itself. An affidavit explains what specific facts the investigating officer has found, and why they are requesting a warrant or other legal action.

Question 5

The systems development life cycle (SDLC) is the overall process of developing, implementing, and retiring information systems through a multistep approach-initiation, analysis, design, implementation, and use. _________________________

Accepted Answer

maintenance, maintenance to disposal

Question 6

Threats cannot be removed without requiring a repair of the vulnerability.

Accepted Answer

Threats can sometimes be mitigated or removed through other means such as implementing security controls, patches, or updates that do not necessarily require repairing the underlying vulnerability.

Question 7

The basic function of the external monitoring process is to monitor activity, report results, and escalate warnings. _________________________

Accepted Answer

The statement is true. The external monitoring process involves monitoring a specific activity, reporting the results, and escalating any warnings or issues to the relevant authorities or stakeholders. This helps to ensure that there is compliance with regulations and best practices, and any potential risks or problems are identified early on and addressed appropriately.

Question 8

A maintenance ticket is opened when a user calls about an issue. _________________________

Accepted Answer

trouble, help desk, support

Question 9

CERT stands for "computer emergency recovery team." _________________________

Accepted Answer

response

Question 10

In some instances, risk is acknowledged as being part of an organization's business process.

Accepted Answer

Risk is recognized as an inherent part of an organization's business. Organizations must identify, assess and manage risks that may negatively impact their ability to achieve their goals and objectives.

Question 11

The NIST SP 800-100 Information Security Handbook provides technical guidance for the establishment and implementation of an information security program. _________________________

Accepted Answer

managerial

Question 12

Major planning components should be reviewed on a periodic basis to ensure that they are current, accurate, and appropriate.

Accepted Answer

It is important to review the major planning components periodically to ensure their relevance and accuracy. This ensures that the organization's plans align with current needs and circumstances.

Question 13

Specific routine bulletins are issued when developing threats and specific attacks pose a measurable risk to the organization. _________________________

Accepted Answer

warning

Question 14

Policy needs to be reviewed and refreshed from time to time to ensure that it's providing a current foundation for the information security program.

Accepted Answer

Policies need to be reviewed regularly to ensure that they are up to date with current security threats and technology, and to make sure they are still effective in achieving the organization's security goals.

Question 15

When setting a policy about whether to pursue attacks against its systems, organizations must choose from three approaches.

Accepted Answer

Organizations typically choose from more than three approaches when setting policies for responding to attacks, as there are various strategies and considerations involved.

Question 16

In some organizations, facilities management is the identification, inventory, and documentation of the current information system's status-hardware, software, and networking configurations. _________________________

Accepted Answer

configuration

Question 17

US-CERT is a set of moderated mailing lists full of detailed, full-disclosure discussions and announcements about computer security vulnerabilities. It is sponsored in part by SecurityFocus. _________________________

Accepted Answer

Bugtraq

Question 18

Digital forensics involves chemical and microscopic analysis of evidence using computerized laboratory instruments.

Accepted Answer

Digital forensics involves the collection, preservation, and analysis of digital evidence from computers, mobile devices, and other digital storage devices. This process primarily involves the use of computer software and hardware rather than chemical and microscopic analysis.

Question 19

Tracking compliance involves assessing the status of the program as indicated by the database information and mapping it to goals established by the agency. _________________________

Accepted Answer

standards

Question 20

An effective information security governance program requires constant change. _________________________

Accepted Answer

review

Quiz 12: Information Security Maintenance