Which of the following does a lack of adequate security controls represent?

• A.Threat
• B.Asset
• C.Impact
• D.Vulnerability

Comment: *

Name: *

Email: *

Verification: *

What type of cryptosystem is characterized by data being encrypted by the sender using the recipient's public key, and the data then being decrypted using the recipient's private key?

• A.With public-key encryption, or symmetric encryption
• B.With public-key encryption, or asymmetric encryption
• C.With shared-key encryption, or symmetric encryption
• D.With shared-key encryption, or asymmetric encryption

Comment: *

Name: *

Email: *

Verification: *

Which of the following functions is MOST likely to be performed by an operating system utility residing on a web server?

• A.Generating control totals for terminal devices such as point-of-sale devices.
• B.Configuring network protocols.
• C.Sending and receiving terminal warnings and error messages.
• D.Monitoring utilization activity and traffic patterns.

Comment: *

Name: *

Email: *

Verification: *

Management receives information indicating a high level of risk associated with potential flooding near the organization's data center within the next few years. As a result, a decision has been made to move data center operations to another facility on higher ground. Which approach has been adopted?

• A.Risk avoidance
• B.Risk transfer
• C.Risk acceptance
• D.Risk reduction

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST appropriate document for granting authority to an external IS auditor in an audit engagement with a client organization?

• A.An internal memo to all concerned parties
• B.Approved statement of work
• C.Request for proposal for audit services
• D.Formally approved audit charter

Comment: *

Name: *

Email: *

Verification: *