Which of the following parts of BS 7799 covers risk analysis and management? Response:

• A.Part 2
• B.Part 3
• C.Part 1
• D.Part 4

Comment: *

Name: *

Email: *

Verification: *

Where can you find guidance for registering information systems in the organization system inventory? Response:

• A.NIST SP 800-38b , Revision 2 Guide for Applying the Risk Management Framework to Federal Information Systems
• B.NIST SP 800-38d , Revision 1 Guide for Applying the Risk Management Framework to Federal Information Systems
• C.NIST SP 800-30, Revision 1 Guide for Applying the Risk Management Framework to Federal Information Systems
• D.NIST SP 800-37, Revision 1 Guide for Applying the Risk Management Framework to Federal Information Systems

Comment: *

Name: *

Email: *

Verification: *

The FISMA defines three security objectives for information and information systems:
Response:

• A.AUTHENTICITY, CONFIDENTIALITY and INTEGRITY
• B.AVAILABILITY, AUTHENTICITY and CONFIDENTIALITY
• C.CONFIDENTIALITY, INTEGRITY and AVAILABILITY
• D.INTEGRITY, AVAILABILITY and AUTHENTICITY

Comment: *

Name: *

Email: *

Verification: *

Which of the following acts is used to recognize the importance of information security to the economic and national security interests of the United States?
Response:

• A.Lanham Act
• B.Computer Fraud and Abuse Act
• C.Computer Misuse Act
• D.FISMA

Comment: *

Name: *

Email: *

Verification: *

One of the following sentences can appropriately help Authorizing Officials and CISOs define an accreditation boundary.
Response:

• A.Internal and external systems that are interconnected through the internet.
• B.The set of system elements comprising the system to be authorized for operation or use
• C.The components of an information system that are under the same management authority

Comment: *

Name: *

Email: *

Verification: *