FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 11: Security and Personnel

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 1

True/False

Review LaterAdd Note

Review Later

The position of security technician can be offered as an entry-level position.

A) True
B) False

Correct Answer

verified

Show Answer

Question 2

Multiple Choice

Review LaterAdd Note

Review Later

Like the CISSP, the SSCP certification is more applicable to the security__________ than to the security __________.

A)  technician, manager
B)  manager, engineer 
C)  manager, technician
D)  technician, executive

E) All of the above
F) A) and B)

Correct Answer

verified

Show Answer

Question 3

True/False

Review LaterAdd Note

A mandatory furlough provides the organization with the ability to audit the work of an individual. _________________________

Security managers accomplish objectives identified by the CISO and resolve issues identified by technicians. _________________________

The __________ is typically considered the top information security officer in the organization.

Many who enter the field of information security are technical professionals such as __________ who find themselves working on information security applications and processes more often than traditional IT assignments.

The International Society of Forensic Computer Examiners (ISFCE) offers which certifications  

Friendly departures include termination for cause, permanent downsizing, temporary lay-off, or some instances of quitting. _________________________

Job ____________________ can greatly increase the chance that an employee's misuse of the system or abuse of information will be detected by another employee.

The CISA credential is touted by ISACA as the certification that is appropriate for all but which type of professionals  

The process of ensuring that no unnecessary access to data exists and that employees are able to perform only the minimum operations necessary on a set of data is referred to as the principle of ____________________.

Security ____________________ are accountable for the day-to-day operation of the information security program.

The __________ certification program has added a number of concentrations that can demonstrate advanced knowledge beyond the basic certification's CBK.

A background check must always be conducted to determine the level of trust the business can place in a candidate for an information security position.

A(n) ____________________ agency provides specifically qualified individuals at the paid request of another company.

The process of integrating information security perspectives into the hiring process begins with reviewing and updating all job descriptions.

The SSCP examination is much more rigorous than the CISSP examination.

CompTIA offers a vendor-specific certification program called the Security+ certification.

In many organizations, information security teams lack established roles and responsibilities.

Though CISOs are business managers first and technologists second, they must be conversant in all areas of information security, including the technical, planning, and ____________________ areas.