FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 5: Developing the Security Program

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 21

True/False

Review LaterAdd Note

Review Later

On-the-job training can result in substandard work performance while the trainee gets up to speed.

A) True
B) False

Correct Answer

verified

Show Answer

Question 22

Multiple Choice

Review LaterAdd Note

Review Later

Which of the following would be responsible for configuring firewalls and IDPSs,implementing security software,and diagnosing and troubleshooting problems?

A) A security technician
B) A security analyst
C) A security consultant
D) The security manager

E) B) and C)
F) C) and D)

Correct Answer

verified

Show Answer

Question 23

Essay

Review LaterAdd Note

What are the four areas into which it is recommended to separate the functions of security?

Threats from insiders are more likely in a small organization than in a large one.

____________________ is a phenomenon in which the project manager spends more time documenting project tasks,collecting performance measurements,recording project task information,and updating project completion forecasts than in accomplishing meaningful project work.

Which of the following functions needed to implement the information security program evaluates patches used to close software vulnerabilities and acceptance testing of new systems to assure compliance with policy and effectiveness?

Planners need to estimate the effort required to complete each task,subtask,or action step.

__________ is a simple project management planning tool.

Which of the following is an advantage of the formal class method of training?

Which of the following is the first step in the process of implementing training?

Which of the following functions includes identifying the sources of risk and may include offering advice on controls that can reduce risk?

A SETA program consists of three elements: security education,security training,and which of the following?.

Which of the following is an advantage of the one-on-one method of training?

Explain the conflict between the goals and objectives of the CIO and the CISO.

What minimum attributes for project tasks does the WBS document?

The security education,training,and awareness (SETA)program is designed to reduce the occurence of external security attacks.

A task or subtask becomes a(n) action step when it can be completed by one individual or skill set and when it includes a single deliverable._________________________

What is the SETA program designed to do?

A study of information security positions found that positions can be classified into one of three types: ____________________ are the real technical types,who create and install security solutions.

What are the components of the security program element described as preparing for contingencies and disasters?