Exam (elaborations)
Information Security Fundamentals - CIST 1601 Final Exam Study Guide Questions And Answers
- Course
- Institution
Information Security Fundamentals - CIST 1601 Final Exam Study Guide Questions And Answers
[Show more]
Content preview
Information Security Fundamentals - CIST 1601 Final Exam Study Guide Questions AndAnswers
* Describe the multiple types of security systems present in many organizations. - correct answer 1.) Physical Security - protect items, objects, and places
2.) Personnel security - protect individual access to the organization
3.) Operation security - protect details of activities
4.) Communications security - protect communications media, technology, and content
5.) Network security - protect networking components, connections, and contents
6.) Information security - protect the confidentiality, availability, and integrity of information assets.
List and describe the six phases of the security systems development life cycle. - correct answer 1.) Investigation - Costs, goals, feasibility, resources, and scope are analyzed, outlined, and documented by management.
2.) Analysis - Assess current system vs. the plan in phase 1. Develop requirements and integration to existing system, perform risk analysis and examine legal issues, document and analyze current threats.
3.) Logical Design - Assess current business needs vs. the
plan in phase 2. Develop a security blueprint, plan Information Security Fundamentals - CIST 1601 Final Exam Study Guide Questions And
Answers
incident report actions and business disaster response, determine feasibility of continuation of project or outsourcing, select applications, data support and structures, consider multiple solutions for consideration, document findings.
4.) Physical Design - T echnologies selected to support phase 3. Best solution is chosen, decision made to make or buy components, technologies needed to support blueprint are chosen, define successful solution, design physical security measures, approve project.
5.) Implementation - Develop or buy software, components, security solutions. Document the system, train its users, test system and review performance, and present tested package to management for approval.
6.) Maintenance and Change - Support and modify the system during its lifespan, periodically testing for business need compliance. System is monitored then patched, upgraded, and repaired as needed to meet changing threats.
Outline types of data ownership and their respective responsibilities. - correct answer 1. Data Owners - Responsible for security and use of a particular set of information Information Security Fundamentals - CIST 1601 Final Exam Study Guide Questions And
Answers - Usually senior management members, maybe CIOs. - Usually determine the level of data classification and changes to that classification as required by organizational changes. - Work with subordinate managers to oversee daily data administration.
2. Data Custodians - Work directly with data owners - Responsible for storage, maintenance, protection of information. - May be CISO or responsibility of systems admin or technology manager, depending on organization size. - Duties include overseeing data storage, backups, implementing procedures and polices laid out in security policies and plans, reporting to data owner
3. Data Users - Work with information to perform assigned roles - Everyone is responsible for security of data in the organization
What are the requirements for a policy to become enforceable? - correct answer 1. Dissemination
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller wisdomspeaks. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $17.49. You're not tied to anything after your purchase.
Can Stuvia be trusted?
4.6 stars on Google & Trustpilot (+1000 reviews)
79650 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now