CSIS 340

Authorization the process used to grant permission to the person. Automatic declassification automatically removes the classification after 25 years. Declassification a term that means to change the classification to "unclassified." Highly sensitive classification refers to data that is mission-critical Internal classification refers to data not related to the core business. Mandatory declassification reviews specific records when requested. Public classification refers to data that has ...

Data classification_________________ is all about labeling data. Labeling data enables people to find it quickly and handle it properly security classificationThe need to protect information is often referred to as the ___________________ Authentication______________________ is the process used to prove the identity of the person. Authorization____________________ is the process used to grant permission to the person All organizations________________________ have some form of data th...

Once an organization clearly defines its IP, the security policies should specify how to ___________ documents with marks or comments, and ____________ the data, which determines in what location the sensitive file should be placed.label, classify Which of the following is not one of the four domains that collectively represent a conceptual information systems security management life cycle?evaluate, assess, and perform The COBIT Monitor, Evaluate, and Assess domain looks at specific bus...

AchieversAre very result oriented. They may have several traits of the other personality types. They have Self-Confidence but not at the expense of others. They want the best result and may seek different ways to achieve it. Good at listening to stakeholders and crafting security policies that meet both security and business needs. Acquire & ImplementThe COBIT Acquire and Implement domain addresses schedules and deliverables. The basic build occurs within AnalyticalsLike structure and d...

Once an organization clearly defines its IP, the security policies should specify how to ___________ documents with marks or comments, and ____________ the data, which determines in what location the sensitive file should be placed.label, classify Which of the following is not one of the four domains that collectively represent a conceptual information systems security management life cycle?evaluate, assess, and perform The COBIT Monitor, Evaluate, and Assess domain looks at specific bus...

AchieversAre very result oriented. They may have several traits of the other personality types. They have Self-Confidence but not at the expense of others. They want the best result and may seek different ways to achieve it. Good at listening to stakeholders and crafting security policies that meet both security and business needs. Acquire & ImplementThe COBIT Acquire and Implement domain addresses schedules and deliverables. The basic build occurs within AnalyticalsLike structure and d...

Authorization the process used to grant permission to the person. Automatic declassification automatically removes the classification after 25 years. Declassification a term that means to change the classification to "unclassified." Highly sensitive classification refers to data that is mission-critical Internal classification refers to data not related to the core business. Mandatory declassification reviews specific records when requested. Public classification refers to data that has ...

Data classification_________________ is all about labeling data. Labeling data enables people to find it quickly and handle it properly security classificationThe need to protect information is often referred to as the ___________________ Authentication______________________ is the process used to prove the identity of the person. Authorization____________________ is the process used to grant permission to the person All organizations________________________ have some form of data th...

CSIS 340 STUDY GUIDE (NOTES) 1. Asymmetrical warfare: two opponents are very different from each other. Few people terrorizing a large target a. Technology, government, researches vs. small individuals, limited resources i. Terrorism tactics: make themselves look like a bigger competitor, threat 1. Ex. Attacking ATMs -> resulting in disruptions 2. Cyber War of 2007: Russia attacked Estonia (Baulkin Country Part of Soviet Union) Can’t prove who attacked Estonia. Extremely difficult to...

CSIS 340 FINAL EXAM 1 - QUESTION AND ANSWERS • Question 1 2 out of 2 points The domain connects an organizations private network to the Internet? Selected Answer: LAN-to- WAN • Question 2 0 out of 2 points To promote cultural change, the goal should be to make security policies ? Selected Answer: Be reviewed every two years • Question 3 2 out of 2 points Without sponsorship, users will be less likely to eagerly partici...