When confidentiality agreements with employee are signed

Assignment Help Operation Management

Reference no: EM132289392

1. According to ISO/IEC 27001 requirements the security requirements should be identified and agreed prior to the development and / or implementation of an information system. The main control objective is to:

a. Prevent errors, loss, unauthorized modification or misuse of information in application

b. Ensure the security of systems files

c. Ensure that security is an integral part of information systems

d. Maintain the security of application system software and information

2. The term "information security incident" refers to a(n):

a. Identified occurrence of a system, service or network state indicating a possible breach of information security policy or failure of controls, or a previously unknown situation that may be security relevant.

b. Single or a series of unwanted or unexpected information security events that have a significant probability of compromising business operations and threatening information security.

c. Potential that a threat will exploit a vulnerability of an asset or group of assets and thereby cause harm to the organization.

d. All of the above

3. When should the BCP be reviewed?

a. Whenever encountering a disaster.

b. Whenever the company gets audited.

c. At least annually or whenever significant changes occur.

d. When the legal department says to.

4. Which of the following elements should be considered when confidentiality agreements with employee are signed?

a. Responsibilities regarding hardware and software installation and maintenance

b. The permitted use of confidential information and rights of the signatory to use information

c. The establishment of an escalation process for problem resolution

d. All of the above

5. The process approach for information security management encourages its user to emphasize the implementation of:

a. Monitoring and reviewing the performance of implementing controls

b. Implementing and operating controls to manage an organization’s information security risks in the context of the organization’s overall business risks

c. Continual improvement based on incident’s experience

d. None of the above

6. Which of the following is NOT a malicious code?

a. Logic bombs

b. Hash

c. Viruses and worms

d. None of the above

Reference no: EM132289392

Questions Cloud

Collaboration and innovation to that business strategy : What is Procter & Gamble’s business strategy? What is the relationship of collaboration and innovation to that business strategy?

The deere skid-steer loader development process : What criteria limit to four should scott nolan use to screen publishers to be integrated into early phases of the deere skid-steer loader development process

Disaster recover plan and the business continuity plan : Which is least important to making the business case to management for the disaster recover plan and the business continuity plan?

Strategic moves to improve overall corporate performance : Crafting new strategic moves to improve overall corporate performance.

When confidentiality agreements with employee are signed : Which of the following elements should be considered when confidentiality agreements with employee are signed?

Discuss about mindmap in decision making : Discuss about Mindmap in Decision making? What is the link between perception, attribution, and social learning?

Discuss the financial reporting issues : Discuss the financial reporting issues and how any ethical issues should be handled.

Companies establish themselves in china marketplace : What have we learned culturally that can help companies establish themselves in China’s marketplace?

Focus on what is referred to as the major oil companies : Focus on what is referred to as the major oil companies. Give an assessment of the general environment facing these firms.

User Account

All Pages