FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 11: Security and Personnel

Show Answer

Share

---

All types

Filters

Study Flashcards

Question 21

Short Answer

Review LaterAdd Note

Review Later

Sometimes, contracted employees are self-employed or are employees of an organization hired for a specific, one-time purpose. These people are typically referred to as ____________________.

Correct Answer

verified

Show Answer

Question 22

Short Answer

Review LaterAdd Note

Review Later

_____________________ departures include resignation, retirement, promotion, or relocation.

Correct Answer

verified

Show Answer

Question 23

True/False

Review LaterAdd Note

The information security function cannot be placed within protective services.

In most cases, organizations look for a technically qualified information security generalist who has a solid understanding of how an organization operates.

Because the goals and objectives of CIOs and CISOs tend to contradict each other, InformationWeek recommends: "The people who do and the people who watch shouldn't report to a ____________________ manager."

The process of ensuring that no unnecessary access to data exists and that employees are able to perform only the minimum operations necessary on a set of data is referred to as the principle of ____________________.

A mandatory furlough provides the organization with the ability to audit the work of an individual. _________________________

Friendly departures include termination for cause, permanent downsizing, temporary lay-off, or some instances of quitting. _________________________

Many who enter the field of information security are technical professionals such as __________ who find themselves working on information security applications and processes more often than traditional IT assignments.

Like the CISSP, the SSCP certification is more applicable to the security__________ than to the security __________.

The __________ certification program has added a number of concentrations that can demonstrate advanced knowledge beyond the basic certification's CBK.

The International Society of Forensic Computer Examiners (ISFCE) offers which certifications?

The CISA credential is touted by ISACA as the certification that is appropriate for all but which type of professionals?

Many hiring managers in information security prefer to recruit a security professional who already has proven HR skills and professional experience, since qualified candidates with information security experience are scarce. _________________________

Many who move to business-oriented information security were formerly__________ who were often involved in national security or cybersecurity .

Describe the concept of separation of duties.

It is important to gather employee ____________________ early about the information security program and respond to it quickly.

What tasks must be performed when an employee prepares to leave an organization?

Security ____________________ are accountable for the day-to-day operation of the information security program.

__________ are the technically qualified individuals tasked to configure firewalls, deploy IDSs, implement security software, diagnose and troubleshoot problems, and coordinate with systems and network administrators to ensure that an organization's security technology is properly implemented.