PREVIOUS QUESTION & ANSWER

Q :
A :

 ·         Question 1

10 out of 10 points

   
 

In the lab, a Web site required for business activity that did not handle customer transactions would be classified as:

     

Selected Answer:

Correct 

Minor.

Answers:

None.

 

Correct 

Minor.

 

Major.

 

Critical.

     

·         Question 2

10 out of 10 points

   
 

In the lab, an e-commerce site that handled customer transactions would be classified as:

     

Selected Answer:

Correct 

Critical.

Answers:

None.

 

Minor.

 

Major.

 

Correct 

Critical.

     

·         Question 3

10 out of 10 points

   
 

The question you need to ask yourself about assets in your own environments is:

     

Selected Answer:

Correct 

“What function does this asset perform?”

Answers:

“How much did this asset cost?”

 

“How much would this asset cost to replace?”

 

Correct 

“What function does this asset perform?”

 

“Why does the organization own this asset?”

     

·         Question 4

10 out of 10 points

   
 

In the lab, an asset that generates revenues or represents intellectual property of organization was classified as:

     

Selected Answer:

Correct 

Critical.

Answers:

None.

 

Minor.

 

Major.

 

Correct 

Critical.

     

·         Question 5

10 out of 10 points

   
 

In the lab, which of the following assets was of particular importance because it housed both customer privacy data and intellectual property assets?

     

Selected Answer:

Correct 

Microsoft Server #2 (Master Structured Query Language [SQL] Customer Database)

Answers:

Linux Server #1 (Domain Name Server [DNS], File Transfer Protocol [FTP], and Trivial File Transfer Protocol [TFTP])

 

Correct 

Microsoft Server #2 (Master Structured Query Language [SQL] Customer Database)

 

Microsoft Server #4 (E-mail Server)

 

Microsoft XP 2003

     

·         Question 6

10 out of 10 points

   
 

Patching vulnerabilities, preventing external contamination, and implementing antivirus/antimalware applications would be good recommendations for ensuring the confidentiality of customer privacy data in the:

     

Selected Answer:

Correct 

Workstation Domain.

Answers:

User Domain.

 

LAN Domain.

 

System/Application Domain.

 

Correct 

Workstation Domain.

     

·         Question 7

10 out of 10 points

   
 

In the lab, you performed an asset identification and classification exercise by creating a(n) __________ organized within the seven domains of a typical IT infrastructure.

     

Selected Answer:

Correct 

IT asset/inventory checklist

Answers:

hardware specification list

 

firewall assessment

 

domain inventory

 

Correct 

IT asset/inventory checklist

     

·         Question 8

10 out of 10 points

   
 

A guiding question regarding an individual asset and data is:

     

Selected Answer:

Correct 

“What sort of data does the asset hold?”

Answers:

Correct 

“What sort of data does the asset hold?”

 

“Who has access to the data on this asset?”

 

“Why is the data on this asset?”

 

“How much is the data on this asset worth?”

     

·         Question 9

10 out of 10 points

   
 

In the lab, an asset that contains customer privacy data was classified as:

     

Selected Answer:

Correct 

Major.

Answers:

None.

 

Minor.

 

Correct 

Major.

 

Critical.

     

·         Question 10

10 out of 10 points

   
 

In the lab, the organization in the scenario was under which compliance law?

     

Selected Answer:

Correct 

Health Insurance Portability and Accountability Act (HIPAA)

Answers:

Gramm-Leach-Bliley Act (GLBA)

 

Correct 

Health Insurance Portability and Accountability Act (HIPAA)

 

Payment Card Industry Data Security Standard (PCI DSS)

 

Acceptable use policy (AUP)

     

·         Question 11

10 out of 10 points

   
 

Which of the following helps with asset classification by defining different types of data and how the organization is to handle it?

     

Selected Answer:

Correct 

A data classification standard

Answers:

A data security control

 

A data information guideline

 

Correct 

A data classification standard

 

An asset categorization list

     

·         Question 12

10 out of 10 points

   
 

Which two domains did you work with for the organization in the lab scenario?

     

Selected Answer:

Correct 

The Workstation Domain and the System/Application Domain

Answers:

Correct 

The Workstation Domain and the System/Application Domain

 

The User Domain and the Remote Access Domain

 

The LAN-to-WAN Domain and the WAN Domain

 

The LAN Domain and the WAN Domain

     

·         Question 13

10 out of 10 points

   
 

Which of the following statements is true regarding assets?

     

Selected Answer:

Correct 

A piece of hardware does not always equate to one asset.

Answers:

A domain is the same as an asset.

 

Correct 

A piece of hardware does not always equate to one asset.

 

A domain cannot contain more than one asset.

 

A single asset cannot present itself in two different domains.

     

·         Question 14

10 out of 10 points

   
 

Identifying where privacy data resides is necessary to:

     

Selected Answer:

Correct 

maintain compliance.

Answers:

Correct 

maintain compliance.

 

maintain profitability.

 

avoid liability.

 

assess risk.

     

·         Question 15

10 out of 10 points

   
 

Encrypting privacy data and intellectual property assets in long-term storage, and implementing security controls to limit exposure to privacy data would be good recommendations for ensuring the confidentiality of customer privacy data in the:

     

Selected Answer:

Correct 

System/Application Domain.

Answers:

User Domain.

 

LAN Domain.

 

Correct 

System/Application Domain.

 

Workstation Domain.

     

·         Question 16

10 out of 10 points

   
 

When you were classifying assets in the lab, it was important to keep in mind that an individual asset:

     

Selected Answer:

Correct 

may fall into different assessment categories.

Answers:

will only have a single assessment classification.

 

Correct 

may fall into different assessment categories.

 

does not apply to more than one domain.

 

is not very important to the overall IT infrastructure.

     

·         Question 17

10 out of 10 points

   
 

Privacy is of growing concern, especially when it comes to:

     

Selected Answer:

Correct 

individual personal information.

Answers:

Correct 

individual personal information.

 

corporate profitability information.

 

employee information.

 

security data.

     

·         Question 18

10 out of 10 points

   
 

In the lab, an asset required for normal business functions and operations was classified as:

     

Selected Answer:

Correct 

Minor.

Answers:

None.

 

Correct 

Minor.

 

Major.

 

Critical.

     

·         Question 19

10 out of 10 points

   
 

In the lab, you were responsible for indicating whether an asset:

     

Selected Answer:

Correct 

accesses customer privacy data or contains customer privacy data.

Answers:

Correct 

accesses customer privacy data or contains customer privacy data.

 

accesses company data or contains company data.

 

is in compliance with applicable standards.

 

remotely accesses the company’s infrastructure.

     

·         Question 20

10 out of 10 points

   
 

The purpose of IT asset identification and asset classification is to protect privacy data and:

     

Selected Answer:

Correct 

implement security controls.

Answers:

identify domains.

 

Correct 

implement security controls.

 

create infrastructure.

 

assess vulnerabilities.

     

 


Related Questions & Answer

Get Your Solution Free




Get Your Solution Paid




DEMO