Question 1: Which of the following statements best describes risk?
A. The probability of loss of a valued resource
B. An error or weakness in the security system
C. A negative effect or influence on an information system
D. An external situation or event with the potential to cause harm to an IT system
Question 2: In which of the IT domains is a hub considered a major component of risk?
A. Workstation Domain
B. LAN-WAN Domain
C. LAN Domain
D. User Domain
Question 3: How does risk management impact an organization?
A. Affects the survivability
B. Increases the profitability
C. Does not affect the profitability
D. Does not affect the survivability
Question 4: Which of the following is not a technique for dealing with vulnerabilities?
A. Cost-benefit analysis
B. Audits
C. System logs
D. Accreditation
Question 5: Which of the following statements about threats is not accurate?
A. Threats are always present.
B. Threats can be eliminated completely.
C. Appropriate actions can reduce the chances of occurrence of threats.
D. Appropriate actions can reduce the impact of a threat but not the threat itself.