HIMT 340 Exam UPDATED QUESTIONS
AND CORRECT ANSWERS
The ____ explicitly declares the business of the organization and its intended areas of
operations. - CORRECT ANSWER mission statement
The ____ statement contains a formal set of organizational principles, standards, and
qualities. - CORRECT ANSWER values statement
Which of the following is true? - CORRECT ANSWER Strategic plans are used to
create tactical plans
____ plans are used to organize the ongoing, day-to-day performance of tasks. - CORRECT
ANSWER operational
Which of the following is NOT a significant benefit of information security governance? -
CORRECT ANSWER All of these are benefits of information security governance
Which of the following is an information security governance responsibility of the
organization's employees? - CORRECT ANSWER Implement policy, report security
vulnerabilities and breaches
The ____ plan focuses on restoring operations at the primary site. - CORRECT
ANSWER DR
In CP, an unexpected event is called a(n) ____. - CORRECT ANSWER Incident
Which of the following is a probable indicator of an actual incident? - CORRECT
ANSWER Presence of new accounts
, A document that contains contact information on the individuals to be notified in the event of
an actual incident is called a(n) ____. - CORRECT ANSWER alert roster
A scripted set of instructions about an incident is known as a(n) ____. - CORRECT
ANSWER alert message
A(n) ____ entails a detailed examination of the events that occurred from first detection to
final recovery. - CORRECT ANSWER after-action review
Crisis management is designed to deal primarily with ____. - CORRECT
ANSWER people
When a disaster threatens the viability of an organization at the primary site, the ____ is
started. - CORRECT ANSWER business continuity process
A ____ is a fully configured computer facility that needs only the latest data backups and the
personnel to function. - CORRECT ANSWER hot site
____ is the transfer of live transactions to an off-site facility. - CORRECT
ANSWER remote journaling
____ is a method of testing contingency plans in which each involved person works
individually to simulate the performance of each task. - CORRECT ANSWER A
simulation
The ____ layer is the outermost layer of the bull's-eye model, hence the first to be assessed
for marginal improvement. - CORRECT ANSWER Policies
____ comprise a set of rules that dictates acceptable and unacceptable behavior within an
organization. - CORRECT ANSWER Policies
AND CORRECT ANSWERS
The ____ explicitly declares the business of the organization and its intended areas of
operations. - CORRECT ANSWER mission statement
The ____ statement contains a formal set of organizational principles, standards, and
qualities. - CORRECT ANSWER values statement
Which of the following is true? - CORRECT ANSWER Strategic plans are used to
create tactical plans
____ plans are used to organize the ongoing, day-to-day performance of tasks. - CORRECT
ANSWER operational
Which of the following is NOT a significant benefit of information security governance? -
CORRECT ANSWER All of these are benefits of information security governance
Which of the following is an information security governance responsibility of the
organization's employees? - CORRECT ANSWER Implement policy, report security
vulnerabilities and breaches
The ____ plan focuses on restoring operations at the primary site. - CORRECT
ANSWER DR
In CP, an unexpected event is called a(n) ____. - CORRECT ANSWER Incident
Which of the following is a probable indicator of an actual incident? - CORRECT
ANSWER Presence of new accounts
, A document that contains contact information on the individuals to be notified in the event of
an actual incident is called a(n) ____. - CORRECT ANSWER alert roster
A scripted set of instructions about an incident is known as a(n) ____. - CORRECT
ANSWER alert message
A(n) ____ entails a detailed examination of the events that occurred from first detection to
final recovery. - CORRECT ANSWER after-action review
Crisis management is designed to deal primarily with ____. - CORRECT
ANSWER people
When a disaster threatens the viability of an organization at the primary site, the ____ is
started. - CORRECT ANSWER business continuity process
A ____ is a fully configured computer facility that needs only the latest data backups and the
personnel to function. - CORRECT ANSWER hot site
____ is the transfer of live transactions to an off-site facility. - CORRECT
ANSWER remote journaling
____ is a method of testing contingency plans in which each involved person works
individually to simulate the performance of each task. - CORRECT ANSWER A
simulation
The ____ layer is the outermost layer of the bull's-eye model, hence the first to be assessed
for marginal improvement. - CORRECT ANSWER Policies
____ comprise a set of rules that dictates acceptable and unacceptable behavior within an
organization. - CORRECT ANSWER Policies
