WGU D333 NEWEST 2024 EXAM COMPREHENSIVE
QUESTIONS WITH ANSWERS SOLVED 100%
CORRECT!!
acceptable use policy (AUP)
A document that stipulates restrictions and practices that a user must agree in order to
use organizational computing and network resources.
advanced persistent threat (APT)
A network attack in which an intruder gains access to a network and stays there—
undetected—with the intention of stealing data over a long period of time (weeks or
even months).
Agreement on Trade-Related Aspects of Intellectual Property Rights (TRIPS)
An agreement of the World Trade Organization that requires member governments to
ensure that intellectual property rights can be enforced under their laws and that
penalties for infringement are tough enough to deter further violations.
American Recovery and Reinvestment Act
A wide-ranging act that authorized $787 billion in spending and tax cuts over a 10-year
period and included strong privacy provisions for electronic health records, such as
banning the sale of health information, promoting the use of audit trails and encryption,
and providing rights of access for patients.
annualized loss expectancy (ALE)
The estimated loss from a potential risk event over the course of a year. The following
equation is used to calculate the annual loss expectancy: ARO × SLE = ALE. Where
ARO is the annualized rate of occurrence, an estimate of the probability that this event
will occur over the course of a year and SLE is the single loss expectancy, the
estimated loss that would be incurred if the event happens.
annualized rate of occurrence (ARO)
An estimate of the probability that a risk event will occur over the course of a year.
anonymous remailer service
A service that allows anonymity on the Internet by using a computer program that strips
the originating header and/or IP address from the message and then forwards the
message to its intended recipient.
anti-SLAPP laws
Laws designed to reduce frivolous SLAPPs (strategic lawsuit against public participation
(SLAPP), which is a lawsuit filed by corporations, government officials, and others
against citizens and community groups who oppose them on matters of concern).
audit committee
A group that provides assistance to the board of directors in fulfilling its responsibilities
with respect to the oversight of the quality and integrity of the organization's accounting
and reporting practices and controls, including financial statements and reports; the
organization's compliance with legal and regulatory requirements; the qualifications,
independence, and performance of the company's independent auditor; and the
performance of the company's internal audit team.
Bathsheba syndrome
,The moral corruption of people in power, which is often facilitated by a tendency for
people to look the other way when their leaders act inappropriately.
Bill of Rights
The first 10 amendments to the United States Constitution that spell out additional rights
of individuals.
black-box testing
A type of dynamic testing that involves viewing the software unit as a device that has
expected input and output behaviors but whose internal workings are unknown (a black
box).
blended threat
A sophisticated threat that combines the features of a virus, worm, Trojan horse, and
other malicious code into a single payload.
body of knowledge
An agreed-upon sets of skills and abilities that all licensed professionals must possess.
botnet
A large group of computers, which are controlled from one or more remote locations by
hackers, without the knowledge or consent of their owners.
breach of the duty of care
The failure to act as a reasonable person would act.
BSA | The Software Alliance
A trade group that represent the world's largest software and hardware manufacturers.
business continuity plan
A risk-based strategy that includes an occupant emergency evacuation plan, a
continuity of operations plan, and an incident management plan with an active
governance process to minimize the potential impact of any security incident and to
ensure business continuity in the event of a cyberattack or some form of disaster.
business information system
A set of interrelated components—including hardware, software, databases, networks,
people, and procedures—that collects and processes data and disseminates the output.
Capability Maturity Model Integration (CMMI) models
Collection of best practices that help organizations improve their processes.
CAPTCHA (Completely Automated Public Turing Test to Tell Computers and
Humans Apart)
Software that generates and grades tests that humans can pass and all but the most
sophisticated computer programs cannot.
Child Online Protection Act (COPA)
An act signed into law in 1998 with the aim of prohibiting the making of harmful material
available to minors via the Internet; the law was ultimately ruled largely unconstitutional.
Children's Internet Protection Act (CIPA)
An act passed in 2000; it required federally financed schools and libraries to use some
form of technological protection (such as an Internet filter) to block computer access to
obscene material, pornography, and anything else considered harmful to minors.
Children's Online Privacy Protection Act (COPPA)
An act implemented in 1998 in an attempt to give parents control over the collection,
use, and disclosure of their children's personal information.
CIA security triad
, Refers to confidentiality, integrity, and availability.
clinical decision support (CDS)
A process and a set of tools designed to enhance healthcare-related decision making
through the use of clinical knowledge and patientspecific information to improve
healthcare delivery.
CMMI-Development (CMMI-DEV)
A specific application of CMMI frequently used to assess and improve software
development practices.
code of ethics
A statement that highlights an organization's key ethical issues and identifies the
overarching values and principles that are important to the organization and its decision
making.
coemployment relationship
A employment situation in which two employers have actual or potential legal rights and
duties with respect to the same employee or group of employees.
Communications Assistance for Law Enforcement Act (CALEA)
An act passed in 1994 that amended the Wiretap Act and Electronic Communications
Privacy Act, which required the telecommunications industry to build tools into its
products that federal investigators could use—after obtaining a court order—to
eavesdrop on conversations and intercept electronic communications.
Communications Decency Act (CDA)
Title V of the Telecommunications Act, it aimed at protecting children from pornography,
including imposing $250,000 fines and prison terms of up to two years for the
transmission of "indecent" material over the Internet.
computer forensics
A discipline that combines elements of law and computer science to identify, collect,
examine, and preserve data from computer systems, networks, and storage devices in
a manner that preserves the integrity of the data gathered so that it is admissible as
evidence in a court of law.
computerized provider order entry (CPOE) system
A system that enables physicians to place orders (for drugs, laboratory tests, radiology,
physical therapy) electronically, with the orders transmitted directly to the recipient.
contingent work
A job situation in which an individual does not have an explicit or implicit contract for
long-term employment.
contributory negligence
When the plaintiffs' own actions contributed to their injuries.
Controlling the Assault of Non-Solicited Pornography and Marketing (CAN-SPAM)
A law that specifies that it is legal to spam, provided the messages meet a few basic
requirements—spammers cannot disguise their identity by using a false return address,
the email must include a label specifying that it is an ad or a solicitation, and the email
must include a way for recipients to indicate that they do not want future mass mailings.
corporate compliance officer
AKA corporate ethics officer. A senior-level manager who provides an organization with
vision and leadership in the area of business conduct.
corporate ethics officer
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller MEGAMINDS. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $9.99. You're not tied to anything after your purchase.