The purpose of code signing is to provide assurance that:

• A.the software has not been subsequently modified.
• B.the application can safely interface with another signed application.
• C.the signer of the application is trusted.
• D.the private key of the signer has not been compromised.

Comment: *

Name: *

Email: *

Verification: *

Secure code reviews as part of a continuous deployment program are which type of control?

• A.Corrective
• B.Preventive
• C.Detective
• D.Logical

Comment: *

Name: *

Email: *

Verification: *

When classifying information, it is MOST important to align the classification to:

• A.data retention requirements.
• B.security policy.
• C.industry standards.
• D.business risk.

Comment: *

Name: *

Email: *

Verification: *

A comprehensive and effective e-mail policy should address the issues of e-mail structure, policy enforcement, monitoring and:

• A.recovery.
• B.retention.
• C.rebuilding.
• D.reuse.

Comment: *

Name: *

Email: *

Verification: *

Which of the following refers to a primary component of corporate risk management with the goal of minimizing the risk of prosecution for software piracy due to use of unlicensed software?

• A.Software audit
• B.System audit
• C.Application System audit
• D.Test audit
• E.Mainframe audit
• F.None of the choices.

Comment: *

Name: *

Email: *

Verification: *