Which of the following would impair the independence of a quality assurance team?

• A.Ensuring compliance with development methods
• B.Checking the testing assumptions
• C.Correcting coding errors during the testing process
• D.Checking the code to ensure proper documentation

Comment: *

Name: *

Email: *

Verification: *

Which of the following Is the BEST way to ensure payment transaction data is restricted to the appropriate users?

• A.implementing role-based access at the application level
• B.Implementing two-factor authentication
• C.Using a single menu tor sensitive application transactions
• D.Restricting access to transactions using network security software

Comment: *

Name: *

Email: *

Verification: *

Which of the following is a detective control?

• A.Verification of hash totals
• B.Use of pass cards to gain access to physical facilities
• C.Backup procedures
• D.Programmed edit checks for data entry

Comment: *

Name: *

Email: *

Verification: *

Which of the following is NOT a component of IPSec?

• A.Authentication Header
• B.Encapsulating Security Payload
• C.Key Distribution Center
• D.Internet Key Exchange

Comment: *

Name: *

Email: *

Verification: *

An organization is experiencing a large number of phishing attacks targeting employees and executives following a press release announcing an acquisition Which of the following would provide the BEST defense against these attacks?

• A.Conduct organization-wide awareness training
• B.Require signed acknowledgment of the organization's security policy
• C.Deploy intrusion detection and prevention systems
• D.Install spam filters on the acquired systems

Comment: *

Name: *

Email: *

Verification: *