TESTOUT ETHICAL LATEST
HACKER PRO EXAM
ISO/IEC 2700 - ANSWERS-1Defines the processes and requirements
for an organization's information security management systems.
Sarbanes Oxley Act (SOX) - ANSWERS-A law enacted in 2002 with
the goal of implementing accounting and disclosure requirements that
would increase transparency in corporate governance and financial
reporting and formalizing a system of internal checks and balances.
Digital MillenniumCopyright Act (DMCA) - ANSWERS-Enacted in
1998, this law is designed to protect copyrighted works.
Federal Information SecurityManagement Act (FISMA) - ANSWERS-
Defines how federal government data, operations, and assets are
handled.
Wassenaar Arrangement - ANSWERS-An agreement between 41
countries to hold similar export controls on weapons, including banning
some and requiring licensing for others, like intrusion software.
Bring your own device (BYOD) - ANSWERS-Policies that govern an
organization's rules and regulations regarding support of employee-
owned smart phones, tablets, and similar devices.
END OF
PAGE 1
, TESTOUT ETHICAL LATEST
HACKER PRO EXAM
Scope of work (SoW) - ANSWERS-A very detailed document that
defines exactly what is going to be included in the penetration test. This
document is also referred to as the statement of work.
Rules of engagement (RoE) - ANSWERS-A document that defines
exactly how the work will be carried out.
Master service agreement (MSA) - ANSWERS-A contract where parties
agree to the terms that will govern future actions. This makes future
services and contracts easier to handle and define.
Non-disclosure agreement (NDA) - ANSWERS-A common legal
contract that outlines confidential material or information that will be
shared during a security assessment and what restrictions are placed on
information.
Permission to test - ANSWERS-A document that explains what the
penetration tester is doing and that their work is authorized. This
document is sometimes referred to as the Get Out Of Jail Free Card.
END OF
PAGE 2
HACKER PRO EXAM
ISO/IEC 2700 - ANSWERS-1Defines the processes and requirements
for an organization's information security management systems.
Sarbanes Oxley Act (SOX) - ANSWERS-A law enacted in 2002 with
the goal of implementing accounting and disclosure requirements that
would increase transparency in corporate governance and financial
reporting and formalizing a system of internal checks and balances.
Digital MillenniumCopyright Act (DMCA) - ANSWERS-Enacted in
1998, this law is designed to protect copyrighted works.
Federal Information SecurityManagement Act (FISMA) - ANSWERS-
Defines how federal government data, operations, and assets are
handled.
Wassenaar Arrangement - ANSWERS-An agreement between 41
countries to hold similar export controls on weapons, including banning
some and requiring licensing for others, like intrusion software.
Bring your own device (BYOD) - ANSWERS-Policies that govern an
organization's rules and regulations regarding support of employee-
owned smart phones, tablets, and similar devices.
END OF
PAGE 1
, TESTOUT ETHICAL LATEST
HACKER PRO EXAM
Scope of work (SoW) - ANSWERS-A very detailed document that
defines exactly what is going to be included in the penetration test. This
document is also referred to as the statement of work.
Rules of engagement (RoE) - ANSWERS-A document that defines
exactly how the work will be carried out.
Master service agreement (MSA) - ANSWERS-A contract where parties
agree to the terms that will govern future actions. This makes future
services and contracts easier to handle and define.
Non-disclosure agreement (NDA) - ANSWERS-A common legal
contract that outlines confidential material or information that will be
shared during a security assessment and what restrictions are placed on
information.
Permission to test - ANSWERS-A document that explains what the
penetration tester is doing and that their work is authorized. This
document is sometimes referred to as the Get Out Of Jail Free Card.
END OF
PAGE 2
