UTK INMT 341 Final Exam UPDATED Questions and CORRECT Answers
28 views 1 purchase
Course
INMT 341
Institution
INMT 341
UTK INMT 341 Final Exam UPDATED
Questions and CORRECT Answers
Governance - CORRECT ANSWER- Governing/managing processes, technology, and
systems
Risk Management - CORRECT ANSWER- Identifying (and controlling) the risks associated
with processes, technologies, and systems
UTK INMT 341 Final Exam UPDATED
Questions and CORRECT Answers
Governance - CORRECT ANSWER- Governing/managing processes, technology, and
systems
Risk Management - CORRECT ANSWER- Identifying (and controlling) the risks associated
with processes, technologies, and systems
Compliance - CORRECT ANSWER- Adhering to the laws and regulations that govern
organizations (which can vary based on industry, location, and organizational structure)
Roles of Governance IT - CORRECT ANSWER- - describes a formal framework that
provides a structure for organizations to ensure that IT investments support business objectives
- a subset of overall organizational governance
- business issue, not technology issue
- includes processes that inform, direct, manage, and monitor organizational activities
Risk - CORRECT ANSWER- A measure of the potential for loss or damage when a threat
exploits a vulnerability
- can come from internal or external sources
- ex: economic/market risk, financial risk, fraud risk, operational risk, security/privacy, etc
RISK MANAGEMENT CAN LEAD TO THE NEED FOR CONTROLS AND SECURITY
MEASURES (to reduce risks)
Different Types of Risk - CORRECT ANSWER- 1. Enterprise (Business) Risk
- any risk that could potentially affect business objectives
2. I&T Risk
, - IT-related risk that could potentially impact the business
3. Audit Risk
- the risk that an auditor has expressed an inappropriate opinion
Vulnerability - CORRECT ANSWER- Weakness or flaw in an information asset/system
(infrastructure, networks, or applications) that potentially exposes an entity to threats
- Examples: lack of user knowledge, lack of security functionality, no user awareness, etc
Threats/Threat Actors - CORRECT ANSWER- Threat Actors: entities who can create/pose a
threat
Threat: an event or condition that has the potential for causing asset loss and or undesirable
consequences or impact (accidental, intentional, internal or external)
Enterprise Risk Management (ERM) - CORRECT ANSWER- A process designed to
identify potential events that may affect the entity, manage risk to be within its appetite, to
provide reasonable assurance regarding the achievement of entity objectives
IT Risk - CORRECT ANSWER- The potential for an unplanned, negative business outcome
involving the failure or misuse of IT
Hacking (IT Risk) - CORRECT ANSWER- An attempt to gain unauthorized access to some
element of a computer system
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller MGRADES. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $10.99. You're not tied to anything after your purchase.
