FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 11: Security and Personnel

Show Answer

Share

---

All types

Filters

Study Flashcards

Question 31

True/False

Review LaterAdd Note

Review Later

The general management community of interest must plan for the proper staffing of the information security function. _________________________

A) True
B) False

Correct Answer

verified

Show Answer

Question 32

Essay

Review LaterAdd Note

Review Later

The ____________________ acts as the spokesperson for the information security team.

Correct Answer

verified

CSO
Chief Security Officer
Chi...

View Answer

Show Answer

Question 33

Essay

Review LaterAdd Note

What functions does the CISO perform?

Once a candidate has accepted a job offer, the employment ____________________ becomes an important security instrument.

Separation of ____________________ is used to reduce the chance of an individual violating information security and breaching the confidentiality, integrity, or availability of information.

The CISSP certification requires both the successful completion of the examination and an ____________________ by a qualified third party, typically another similarly certified professional, the candidate's employer, or a licensed, certified, or commissioned professional.

Many organizations use a(n) __________ interview to remind the employee of contractual obligations, such as nondisclosure agreements, and to obtain feedback on the employee's tenure in the organization.

__________ are hired by the organization to serve in a temporary position or to supplement the existing workforce.

The CISSP-ISSEP concentration focuses on the knowledge areas that are part of enterprise security management.

Organizations are not required by law to protect employee information that is sensitive or personal.

ISACA offers the CGEIT as well as the CISA and ____________________ certifications.

The CISSP concentrations are available for CISSPs to demonstrate knowledge that is already a part of the CISSP CBK.

The advice "Know more than you say, and be more skillful than you let on" for information security professionals indicates that the actions taken to protect information should not interfere with users' actions.

Which of the following is not one of the categories of positions defined by Schwartz, Erwin, Weafer, and Briney?

ISACA touts the CISA certification as being appropriate for accounting, networking, and security professionals. _________________________

CompTIA offers a vendor-specific certification program called the Security+ certification.

Upper management should learn more about the budgetary needs of the information security function and the positions within it. _________________________

The ISSEP allows CISSP certificate holders to demonstrate expert knowledge of all of the following except __________.

A background check must always be conducted to determine the level of trust the business can place in a candidate for an information security position.

The security manager position is much more general than that of the CISO.