Answered You can buy a ready-made answer or pick a professional tutor to order an original one.

QUESTION

SAINT LEO COM540 MODULE 4 MID TERM EXAM

Question 1. Question :

The ____ is the point in time by which systems and data must be recovered after an outage as determined by the business unit.

training objective

recovery time objective

dependency objective

recovery point objective

Question 2. Question :

The ____ contains the rules and configuration guidelines governing the implementation and operation of IDSs within the organization.

security policy

log file

honeypot

site policy

Question 3. Question :

____ services are triggered by an event or request, such as a report of a compromised host, wide-spreading malicious code, software vulnerability, or something that was identified by an intrusion detection or logging system.

Reactive

Forensic

Security

Proactive

Question 4. Question :

A(n) ____ is a document containing contact information for the individuals that need to be notified in the event of an actual incident.

root roster

alert roster

hierarchical roster

sequential roster

Question 5. Question :

____ is the control approach that attempts to shift the risk to other assets, other processes, or other organizations.

Acceptance

Transference

Mitigation

Avoidance

Question 6. Question :

A ____ deals with the preparation for and recovery from a disaster, whether natural or man-made.

risk assessment

mitigation plan

risk management

disaster recovery plan

Question 7. Question :

Which of the following is a proactive service?

Incident handling

Risk analysis

Announcements

Alerts and warnings

Question 8. Question :

A favorite pastime of information security professionals is ____, which is realistic, head-to-head attack and defend information, security attacks, and incident response methods.

parallel testing

war gaming

simulation

structured walk-through

Question 9. Question :

In an organization, unexpected activities occur periodically; these are referred to as ____.

warnings

problems

after-action

events

Question 10. Question :

The ____ job functions focus more on costs of system creation and operation, ease of use for system users, and timeliness of system creation, as well as transaction response time.

organizational management and professionals

information technology management and professionals

human resource management and professional

information security management and professionals

Question 11. Question :

____ is the control approach that attempts to reduce the impact caused by the exploitation of vulnerability through planning and preparation.

Acceptance

Avoidance

Transference

Mitigation

Question 12. Question :

____ occurs when valid packets exploit poorly configured DNS servers to inject false information to corrupt the servers' answers to routine DNS queries from other systems on that network.

DNS cache poisoning

Clipping

Signature matching

Clustering

Question 13. Question :

____ is a common approach used in the discipline of systems analysis and design.

Database diagramming

Network diagramming

Application diagramming

Systems diagramming

Question 14. Question :

A ____ is a document that expresses how an organization ensures that critical business functions continue at an alternate location while the organization recovers its ability to function at the primary site if a catastrophic incident or disaster occurs.

risk assessment plan

worm

Trojan horse

business continuity plan

Question 15. Question :

____ are important when team members are preparing advisories and procedures.

Writing skills

Forensic skills

Medical skills

Mathematical skills

Question 16. Question :

____ is an IDS's ability to dynamically modify its site policies in reaction or response to environmental activity.

Alarm Compaction

True Attack Stimulus

Confidence Value

Site policy awareness

Question 17. Question :

A(n) ____ is any clearly identified attack on the organization's information assets that would threaten the assets' confidentiality, integrity, or availability.

incident

threat

Trojan horse

worm

Question 18. Question :

A ____ is a type of IDS that is similar to the NIDS, reviews the log files generated by servers, network devices, and even other IDSs.

log file monitor

DNS cache

honeypot

alarm cluster

Question 19. Question :

The ____ can be used to collect information directly from the end users and business managers.

forensic analysis

system log session

facilitated data gathering session

data management session

Question 20. Question :

____ are tools used to identify which computers are active on a network, as well as which ports and services are active on the computers, what function or role the machines may be fulfilling, and so on.

Filters

Scanning utilities

Clusters

Triggers

Question 21. Question :

A ____ is a computer server configured to resemble a production system, containing rich information just begging to be hacked.

network cluster

honeypot

smart IDS

DNS cache

Question 22. Question :

____ enables authorized users - persons or computer systems - to access information without interference or obstruction, and to receive it in the required format.

Risk assessment

Integrity

Availability

Confidentiality

Question 23. Question :

____ ensures that only those with the rights and privileges to access information are able to do so.

Confidentiality

Risk assessment

Integrity

Availability

Question 24. Question :

____ is the process of moving the organization toward its vision.

Transference

Avoidance

Mitigation

Strategic planning

Question 25. Question :

Using a process known as ____, Network IDSs must look for attack patterns by comparing measured activity to known signatures in their knowledge base to determine whether or not an attack has occurred or may be underway.

cache poisoning

signature matching

clipping

scanning

Question 26. Question :

A(n) ____ is a SIRT team member, other than the team leader, who is currently performing the responsibilities of the team leader in scanning the organization's information infrastructure for signs of an incident.

IR duty officer

software engineer

forensic expert

project manager

Question 27. Question :

____ is the coherent application of methodical investigatory techniques to solve crime cases.

Alarm Compaction

Scanning

Forensics

Signature matching

Question 28. Question :

____ is the process of systematically examining information assets for evidentiary material that can provide insight into how the incident transpired.

Incident response

Forensics analysis

War gaming

Disaster recovery

Question 29. Question :

A(n) ____ is generally thought of as a group of individuals united by shared interests or values within an organization and who share a common goal of making the organization function to meet its objectives.

network community

community of interest

database community

incident response community

Question 30. Question :

The violation of fair use of copyrighted material is an example of a(n) ____.

compromise to intellectual property

act of human error

deliberate act of information distortion

deliberate act of trespass

Question 31. Question :

A(n) ____ is an event that triggers alarms and causes a false positive when no actual attacks are in progress.

True Attack Stimulus

alert

false negative

false attack stimulus

Question 32. Question :

A(n) ____ is a detailed examination of the events that occurred from first detection to final recovery.

reactive review

proactive review

audit review

after-action review

Question 33. Question :

A(n) ____ is a type of attack on information assets in which the instigator attempts to gain unauthorized entry into a system or network or disrupt the normal operations of a system or network.

event

intrusion

alert

honeypot

Question 34. Question :

A(n) ____ requires that a contact person call each and every person on the roster.

root roster

alert roster

sequential roster

hierarchical roster

Question 35. Question :

The ____ is the period of time within which systems, applications, or functions must be recovered after an outage.

training objective

recovery time objective

recovery point objective

dependency objective

Question 36. Question :

A(n) ____ must lead the project and make sure a sound project planning process is used, a complete and useful project plan is developed, and project resources are prudently managed to reach the goals of the project.

champion

crisis manager

project manager

incident manager

Question 37. Question :

____ services augment existing and well-established services that are independent of incident handling and traditionally performed by other areas of an organization such as the IT, Audit, or Training departments.

Reactive

Forensic

Proactive

Security quality management

Question 38. Question :

A(n) ____ is prepared by the organization to anticipate, react to, and recover from events that threaten the security of information and information assets in the organization, and, subsequently, to restore the organization to normal modes of business operations.

asset

threat

social plan

contingency plan

Question 39. Question :

A ____ is an alarm or alert that indicates that an attack is in progress or that an attack has successfully occurred when in fact there was no such attack.

site policy

false positive

false negative

Confidence Value

Question 40. Question :

A(n) ____ is an investigation and assessment of the impact that various attacks can have on the organization.

threat

BIA

incident

intellectual property

Show more
  • @
  • 177 orders completed
ANSWER

Tutor has posted answer for $30.00. See answer's preview

$30.00

******** * ******** **

The ____ is the ***** ** **** by ***** systems *** **** must ** ********* ***** ** ****** as ********** ** *** ******** *****

******** **********

recovery time objective

********** objective

recovery ***** **********

******** 2 Question **

*** ____ contains *** ***** *** ************* guidelines ********* *** ************** and operation ** **** ****** *** *************

******** policy

*** *****

*********

**** *******

Question * ******** **

**** services *** ********* ** ** event or ******* such as * ****** of * *********** **** ************** ********* code software ************* ** something **** *** ********** ** an intrusion ********* or ******* *******

*********

*********

*********

**********

******** * ******** **

**** **** ** * ******** ********** ******* *********** *** *** *********** **** **** to be ******** ** *** ***** of ** ****** incident

**** *******

***** *******

************ *******

sequential roster

******** * ******** :

**** ** *** ******* ******** that ******** ** shift *** **** ** ***** ****** ***** processes ** ***** **************

***********

*************

***********

**********

******** * ******** **

A **** ***** **** *** *********** for *** ******** **** a ******** ******* ******* ** man-made

risk ***********

mitigation *****

risk ***********

disaster recovery *****

******** * ******** :

***** ** the ********* is * proactive *********

******** handling

**** *********

**************

****** *** *********

******** 8 Question **

* ******** ******* of *********** ******** ************* ** ____ ***** is realistic ************ attack and ****** information security attacks *** incident ******** methods

******** ********

*** gaming

***********

structured *************

Question 9 ******** **

** an ************ ********** ********** ***** ************* these *** referred ** ** *****

*********

*********

*************

*******

******** ** ******** **

*** **** job ********* focus **** ** ***** ** ****** ******** *** ********* **** ** *** for ****** ***** *** ********** of system ******** ** well ** *********** response time

organizational management *** professionals

*********** ********** management *** **************

***** resource management and *************

*********** ******** ********** *** professionals

******** 11 ******** :

**** ** *** control approach that ******** ** ****** the ****** caused ** *** exploitation of ************* ******* planning *** ************

Acceptance

Avoidance

*************

Mitigation

******** 12 ******** :

**** occurs **** ***** packets ******* poorly ********** *** ******* to inject ***** *********** ** ******* the ************ ******* ** ******* DNS ******* **** ***** ******* ** that ********

*** ***** poisoning

*********

********* *********

Clustering

Question 13 ******** :

**** ** * common approach used ** *** discipline of ******* analysis and *******

******** ************

******* ************

*********** ************

Systems diagramming

******** ** Question :

A **** ** * ******** that expresses *** ** ************ ******* **** critical business ********* ******** ** ** alternate ******** ***** *** ************ ******** *** ******* to ******** at the ******* **** ** a ************ incident or ******** *******

risk ********** *****

worm

****** ******

******** ********** *****

******** ** ******** **

**** are important **** team members are ********* ********** and ***********

******* skills

Forensic *******

******* *******

Mathematical *******

******** ** ******** **

**** is ** ********* ******* ** dynamically ****** *** **** policies ** ******** ** ******** ** ************* *********

***** ***********

**** ****** *********

********** ******

**** ****** awareness

******** 17 Question :

**** **** ** any ******* ********** ****** ** the ****************** *********** assets **** ***** threaten *** *********** confidentiality ********* ** *************

*********

*******

****** horse

*****

Question 18 ******** :

* ____ ** * **** ** *** **** ** ******* ** *** **** ******* the log ***** generated ** ******* ******* ******* and **** ***** *****

log **** ********

DNS cache

*********

***** ********

******** ** ******** **

The **** can be used ** collect *********** directly **** the *** ***** and business managers

******** analysis

****** *** session

*********** **** ********* ********

data management ********

Question 20 Question **

**** *** ***** **** to identify ***** computers *** ****** on * ******* ** **** ** ***** ***** *** services *** ****** ** the computers **** function or **** *** machines may ** fulfilling *** so on

********

******** **********

Clusters

*********

******** ** Question **

A ____ is a ******** ****** configured to resemble * production ****** containing **** information **** begging ** be *******

******* cluster

*********

***** IDS

*** ******

Question ** ******** **

**** ******* authorized ***** - persons ** computer systems * ** ****** *********** ******* ************ or obstruction and to receive it ** *** required format

**** ***********

**********

Availability

****************

******** 23 ******** **

**** ******* **** **** those **** the ****** *** privileges to ****** *********** are **** ** do ***

****************

**** ***********

**********

*************

******** ** ******** **

____ is *** ******* ** ****** the organization ****** *** *******

*************

**********

***********

********* *********

Question ** ******** **

Using a ******* ***** as **** ******* **** **** **** *** attack ******** ** comparing ******** activity ** ***** ********** ** ***** ********* **** to determine ******* or *** an ****** *** occurred ** *** ** *********

***** poisoning

********* *********

*********

*********

Question ** ******** **

**** **** ** * **** **** member other than the **** ****** who ** currently ********** the responsibilities ** *** **** leader ** ******** *** ****************** information ************** *** ***** of ** incident

** **** ********

******** engineer

******** *******

project manager

******** ** ******** :

**** ** *** ******** *********** ** methodical ************* ********** ** ***** ***** ******

***** ***********

*********

Forensics

Signature *********

******** ** Question **

**** ** *** process ** ************** ********* *********** ****** *** *********** ******** **** *** ******* insight **** *** *** incident ***********

******** *********

********* analysis

*** *******

Disaster *********

******** 29 ******** **

**** **** ** ********* ******* ** as * ***** ** individuals ****** by ****** ********* ** values within ** organization *** *** ***** a ****** **** ** ****** *** organization ******** ** **** its objectives

******* **********

community ** *********

******** **********

******** ******** **********

******** ** ******** **

*** ********* ** **** use ** *********** ******** is ** ******* ** **** *****

********** to intellectual property

*** ** ***** ******

********** *** ** *********** ***********

********** act ** *********

******** ** ******** :

A(n) **** ** ** ***** **** ******** alarms *** causes * ***** ******** **** ** ****** ******* *** in *********

**** ****** Stimulus

******

***** *********

***** attack *********

******** ** Question **

**** **** ** * ******** *********** ** *** ****** **** occurred **** first ********* ** final recovery

reactive *******

proactive *******

audit review

************ review

Question ** ******** :

**** **** ** a **** ** ****** ** information ****** ** ***** the ********** attempts ** gain ************ ***** **** * system ** network ** ******* the normal ********** ** * system ** ********

******

**********

******

*********

******** ** ******** **

A(n) **** ******** **** * contact ****** **** **** *** ***** person ** *** *******

root roster

***** *******

********** roster

************ *******

******** 35 Question **

*** **** is the ****** ** **** within ***** ******* applications or ********* must be ********* ***** ** outage

training **********

******** **** **********

******** ***** **********

********** objective

Question ** Question **

**** **** **** lead *** project *** **** sure * ***** ******* ******** ******* is used * complete and ****** project **** is developed and ******* ********* are ********* managed ** ***** the ***** of *** ********

*********

****** ********

******* ********

******** ********

Question ** Question **

**** services ******* ******** *** **************** ******** **** *** *********** ** ******** ******** *** ************* ********* ** ***** ***** ** ** ************ **** as the ** Audit ** Training ************

Reactive

*********

Proactive

******** quality ***********

******** ** Question **

**** **** ** ******** by *** organization to ********** ***** ** and recover **** ****** **** ******** *** ******** ** information and information ****** ** the ************ *** subsequently ** ******* *** organization ** normal modes of ******** ***********

******

*******

social *****

contingency *****

******** ** ******** **

A **** ** ** ***** ** ***** **** ********* **** an ****** ** ** ******** or **** ** ****** *** ************ occurred **** ** **** there was ** **** *******

**** *******

***** positive

***** *********

********** Value

Question 40 Question **

**** **** ** ** investigation *** ********** of *** ****** that ******* attacks *** **** on *** *************

*******

BIA

*********

************ ********

Click here to download attached files: SAINT LEO COM540 MODULE 4 MID TERM EXAM.docx
or Buy custom answer
LEARN MORE EFFECTIVELY AND GET BETTER GRADES!
Ask a Question