What is the BEST way to determine the level of risk associated with information assets processed by an IT application?

• A.Evaluate the potential value of information for an attacker
• B.Calculate the business value of the information assets
• C.Review the cost of acquiring the information assets for the business
• D.Research compliance requirements associated with the information

Comment: *

Name: *

Email: *

Verification: *

A contract bid is digitally signed and electronically mailed. The PRIMARY advantage to using a digital signature is that:

• A.the bid and the signature can be copied from one document to another
• B.the bid cannot be forged even if the keys are compromised
• C.the signature can be authenticated even if no encryption is used
• D.any alteration of the bid will invalidate the signature

Comment: *

Name: *

Email: *

Verification: *

When developing a security architecture, which of the following steps should be executed FIRST?

• A.Developing security procedures
• B.Defining a security policy
• C.Specifying an access control methodology
• D.Defining roles and responsibilities

Comment: *

Name: *

Email: *

Verification: *

The PRIMARY reason for creating a business case when proposing an information security project is to:

• A.articulate inherent risks.
• B.provide demonstrated return on investment (ROI).
• C.establish the value of the project in relation to business objectives.
• D.gain key business stakeholder engagement.

Comment: *

Name: *

Email: *

Verification: *

An employee clicked on a malicious link in an email that resulted in compromising company data. What is the BEST way to mitigate this risk in the future?

• A.Conduct phishing awareness training.
• B.Implement disciplinary procedures.
• C.Establish an acceptable use policy.
• D.Assess and update spam filtering rules.

Comment: *

Name: *

Email: *

Verification: *