FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 5: Developing the Security Program

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 21

Short Answer

Review LaterAdd Note

Review Later

____________________ is a phenomenon in which the project manager spends more time documenting project tasks,collecting performance measurements,recording project task information,and updating project completion forecasts than in accomplishing meaningful project work.

Correct Answer

verified

Show Answer

Question 22

Multiple Choice

Review LaterAdd Note

Review Later

Which of the following is the most cost-effective method for disseminating security information and news to employees? 

A)  distance learning seminars
B)  security-themed Web site 
C)  conference calls
D)  security newsletter

E) A) and B)
F) None of the above

Correct Answer

verified

Show Answer

Question 23

Multiple Choice

Review LaterAdd Note

Which of the following functions includes identifying the sources of risk and may include offering advice on controls that can reduce risk? 

What is the purpose of a security awareness program?  What advantage does an awareness program have for the InfoSec program?

What minimum attributes for project tasks does the WBS document?

Which of the following would be responsible for configuring firewalls and IDPSs,implementing security software,and diagnosing and troubleshooting problems? 

What is the role of help desk personnel in the InfoSec team?

What is the security education,training,and awareness program? Describe how the program aims to enhance security.

The information security ____________________ is usually brought in when the organization makes the decision to outsource one or more aspects of its security program.

In larger organizations,responsible for some aspect of information security; in smaller organizations,this title may be assigned to the only or senior security administrator.

Which security functions are normally performed by IT groups outside the InfoSec area of management control?

A SETA program consists of three elements: security education,security training,and which of the following?.

The work breakdown structure (WBS)can only be prepared with a complex specialized desktop PC application.

Advanced technical training can be selected or developed based on which of the following? 

Explain the conflict between the goals and objectives of the CIO and the CISO.

Which of the following variables is the most influential in determining how to structure an information security program? 

The purpose of SETA is to enhance security in all but which of the following ways? 

What is the Chief Information Security Office primarily responsible for?

__________ is a simple project management planning tool.

An organization's information security program refers to the entire set of activities,resources,personnel,and technologies used by an organization to manage the risks to the information  _______ of the organization.