Management has requested a post-implementation review of a newly implemented purchasing package to determine to what extent business requirements are being met. Which of the following is MOST likely to be assessed?

• A.Implementation methodology
• B.Purchasing guidelines and policies
• C.Test results
• D.Results of live processing

Comment: *

Name: *

Email: *

Verification: *

Which of the following is a good time frame for making changes to passwords?

• A.every 180 to 365 days
• B.every 30 to 45 days
• C.every 10 to 20 days
• D.every 90 to 120 days
• E.None of the choices.

Comment: *

Name: *

Email: *

Verification: *

An organization with many desktop PCs is considering moving to a thin client architecture. Which of the following is the MAJOR advantage?

• A.Desktop application software will never have to be upgraded.
• B.System administration can be better managed.
• C.The security of the desktop PC is enhanced.
• D.Administrative security can be provided for the client.

Comment: *

Name: *

Email: *

Verification: *

Management receives information indicating a high level of risk associated with potential flooding near the organization's data center within the next few years. As a result, a decision has been made to move data center operations to another facility on higher ground. Which approach has been adopted?

• A.Risk transfer
• B.Risk acceptance
• C.Risk avoidance
• D.Risk reduction

Comment: *

Name: *

Email: *

Verification: *

Which of the following key performance indicators (KPIs) provide stakeholders with the MOST useful information about whether information security risk is being managed?

• A.Time from security log capture to log analysis
• B.The number of entries in the security risk register
• C.The number of security controls implemented
• D.Time from identifying security threats to implementing solutions

Comment: *

Name: *

Email: *

Verification: *