Overall Likelihood rating of a Threat to Exploit a Vulnerability is driven by :

• A.Nature of the vulnerability
• B.Threat-source motivation and capability
• C.All the above
• D.Existence and effectiveness of the current controls

Comment: *

Name: *

Email: *

Verification: *

The goal of incident response is to handle the incident in a way that minimizes damage and reduces recovery time and cost. Which of the following does NOT constitute a goal of incident response?

• A.Helping personal to recover quickly and efficiently from security incidents, minimizing loss or theft and disruption of services.
• B.Using information gathered during incident handling to prepare for handling future incidents in a better way and to provide stronger protection for systems and data.
• C.Dealing with human resources department and various employee conflict behaviors.
• D.Dealing properly with legal issues that may arise during incidents.

Comment: *

Name: *

Email: *

Verification: *

Incident may be reported using/ by:

• A.Facsimile (Fax)
• B.Email or on-line Web form
• C.Phone call
• D.All the above

Comment: *

Name: *

Email: *

Verification: *

Ensuring the integrity, confidentiality and availability of electronic protected health information of a patient is known as:

• A.Health Insurance Portability and Privacy Act
• B.Social Security Act
• C.Gramm-Leach-Bliley Act
• D.Sarbanes-Oxley Act

Comment: *

Name: *

Email: *

Verification: *

Which of the following incident recovery testing methods works by creating a mock disaster, like fire to identify the reaction of the procedures that are implemented to handle such situations?

• A.Scenario testing
• B.Live walk-through testing
• C.Facility testing
• D.Procedure testing

Comment: *

Name: *

Email: *

Verification: *