Which of the following would be the MOST appropriate reason for an organization to purchase fault-tolerant hardware?

• A.Compensating for the lack of contingency planning
• B.Minimizing business loss
• C.Reducing hardware maintenance costs
• D.Improving system performance

Comment: *

Name: *

Email: *

Verification: *

Which of the following would present the GREATEST risk to the effectiveness of a security operations center for a global financial institution processing transactions 24x7?

• A.Incident response reporting is based on open source software.
• B.Incident response is conducted from a single location during normal business hours.
• C.Correlation of events excludes logs for pre-production systems.
• D.The incident response function is outsourced to a third-party provider.

Comment: *

Name: *

Email: *

Verification: *

A disaster recovery plan for an organization should:

• A.reduce the length of the recovery time and the cost of recovery.
• B.increase the length of the recovery time and the cost of recovery.
• C.reduce the duration of the recovery time and increase the cost of recovery.
• D.affect neither the recovery time nor the cost of recovery.

Comment: *

Name: *

Email: *

Verification: *

Which of the following statement INCORRECTLY describes the Control self-assessment (CSA) approach?

• A.CSA is policy or rule driven
• B.CSA Empowered/accountable employees
• C.CSA focuses on continuous improvement/learning curve
• D.In CSA, Staffs at all level, in all functions, are the primary control analyst.

Comment: *

Name: *

Email: *

Verification: *

.Which of the following is an effective method for controlling downloading of files via FTP? Choose the BEST answer.

• A.An application-layer gateway, or proxy firewall, but notstateful inspection firewalls
• B.An application-layer gateway, or proxy firewall
• C.A circuit-level gateway
• D.A first-generation packet-filtering firewall

Comment: *

Name: *

Email: *

Verification: *