ITN 267 EXAM STUDY GUIDE 2026
2027 COMPLETE QUESTIONS AND
VERIFIED CORRECT DETAILED
ANSWERS || ALREADY GRADED A+
<NEWEST VERSION>
1. The HIPAA _________________ dictates how covered entities must protect
the privacy of personal health information - ANSWER The Privacy Rule
2. A ______________ protects the formulas, processes, methods, and
information that give a business a competitive edge - ANSWER Trade
Secrets
3. A judge or jury can consider only _______________ evidence when
deciding cases - ANSWER Admissible Evidence
4. A legal owner of property has the right to use that property in any way they
want to, and the power to give those rights to another. This is called
_____________. - ANSWER Property Interest
5. _____________ are used to protect words, logos, and symbols that identify a
product or services - ANSWER Trademark
- Before ____________________, many workers experienced "job
lock" and were afraid that they would lose health care benefits if they
changed jobs.
- ____________________was created by Congress to make health
insurance portable.
- ___________________ forbids a new employer's health plan from
denying health coverage for some reasons and prohibits
discrimination against workers based on certain conditions such as
, pregnancy. - ANSWER HIPAA "Health Insurance Portability and
Accountability Act"
6. PHI refers to: - ANSWER protected health information (PHI)
7. At the federal level, what is the name of the main guidance regarding the
submission of evidence at trial - ANSWER Federal Rules of Evidence
8. CCE, CCFE, CFCE, and GCFA are all examples of: - ANSWER computer
forensic examiner certifications
9. 18 months - ANSWER COBRA benefits
10.___________________ is used to assess the vulnerabilities and threats that
could harm electronic protected health information (EPHI). - ANSWER
Risk Analysis
11.Which of the following was not one of the outcomes of the Enron scandal? -
ANSWER Public companies are required to file one comprehensive
financial disclosure statement with the SEC.
12.Under SEC rules, internal controls over financial reporting (ICFR) are
processes that provide reasonable assurance that financial reports are
reliable. Which of the following is not assured by ICFR? - ANSWER IT
controls that contain financial data are maintained.
13.The U.S. Securities and Exchange Commission reviews a public company's
Form 10-K at least once every ____________ years. - ANSWER Three
14.The SEC requires that CEO and CFO each must certify that the executive is
responsible for creating internal controls and procedures that are designed to
bring material information about the company to the executive's attention,
and the controls are reviewed 90 days prior to filing the report - ANSWER
False
15.The main goal of ______________ is to protect shareholders and investors
from financial fraud. - ANSWER Sarbanes-Oxley Act (SOX)
,16.The three major corporate privacy concerns are: 1) privacy of employee
data, 2) privacy of customer data, and 3) privacy of corporate data -
ANSWER True
17.The state with some of the strictest patient privacy protections is: -
ANSWER California
18.The SEC has five commissioners. The U.S. President must appoint them.
They serve for five-year terms. All five commissioners can belong to the
same political party. - ANSWER False
19.What was the first federal law to address federal computer security? -
ANSWER Computer Security Act (CSA)
20.Under the Department of Commerce rules, exporters must have an export
license for items and technologies that are on the _________. - ANSWER
Commercial Control List
21.Under the ____________________, federal agencies must 1) review their IT
systems for privacy risks; 2) post privacy policies on their Web sites; 3) post
machine-readable privacy policies on their Web sites; and 4) report privacy
activities to the OMB. - ANSWER E-Government Act of 2002
22.Which of the following is not one the federal information security challenges
the federal CIO spoke of at a House of Representatives subcommittee
meeting in March 2010? - ANSWER the culture within the federal
government of not complying with reporting requirements
23.Which of the following is not one of the guidelines in the DoD's policy on
social media? - ANSWER DoD employees are not permitted to use social
media from their personal devices for personal purposes.
24.A ______________ protects the formulas, processes, methods, and
information that give a business a competitive edge. - ANSWER trade secret
25.A copyright is used to protect the following creative endeavors: literary
works, musical works, and dramatic works. - ANSWER False
, 26.A legal owner of property has the right to use that property in any way they
want to, and the power to give those rights to another. This is called
_____________. - ANSWER property interest
27.In a situation where phishing attackers attempt to steal personal information,
which of the following federal acts can be used to prosecute such a crime? -
ANSWER Computer Fraud and abuse Act
28.The _______________ makes identify theft a federal crime. - ANSWER
Identity Theft and Assumption Deterrence Act
29.The power of a court to decide certain types of cases is
______________________ jurisdiction. - ANSWER subject matter
30._______________________ criminal law defines the conduct that
constitutes a crime and establishes penalties. - ANSWER Substantive
31._______________________ covers unsolicited commercial e-mail messages
and requires commercial e-mail senders to meet certain requirements. -
ANSWER Controlling the Assault of Non-Solicited Pornography and
Marketing (CAN-SPAM)
32.Which statement is true about the burden of proof in a criminal case? -
ANSWER The government bears the burden of proving that the defendant
violated the law.
33.Which amendment to the U.S. Constitution guarantees defendants a speedy
trial? - ANSWER Sixth
34.What is the first piece of federal legislation that identified computer crimes
as distinct offenses? - ANSWER The Computer Fraud and Abuse Act of
1984
35.________________ law uses the reasonable person standard to determine
whether a person acted appropriately. - ANSWER Tort
36.Intentional torts most often occur when the defendant intended to commit
the tort. Most torts involving ____________________ are intentional torts. -
ANSWER computers and cyberspace
2027 COMPLETE QUESTIONS AND
VERIFIED CORRECT DETAILED
ANSWERS || ALREADY GRADED A+
<NEWEST VERSION>
1. The HIPAA _________________ dictates how covered entities must protect
the privacy of personal health information - ANSWER The Privacy Rule
2. A ______________ protects the formulas, processes, methods, and
information that give a business a competitive edge - ANSWER Trade
Secrets
3. A judge or jury can consider only _______________ evidence when
deciding cases - ANSWER Admissible Evidence
4. A legal owner of property has the right to use that property in any way they
want to, and the power to give those rights to another. This is called
_____________. - ANSWER Property Interest
5. _____________ are used to protect words, logos, and symbols that identify a
product or services - ANSWER Trademark
- Before ____________________, many workers experienced "job
lock" and were afraid that they would lose health care benefits if they
changed jobs.
- ____________________was created by Congress to make health
insurance portable.
- ___________________ forbids a new employer's health plan from
denying health coverage for some reasons and prohibits
discrimination against workers based on certain conditions such as
, pregnancy. - ANSWER HIPAA "Health Insurance Portability and
Accountability Act"
6. PHI refers to: - ANSWER protected health information (PHI)
7. At the federal level, what is the name of the main guidance regarding the
submission of evidence at trial - ANSWER Federal Rules of Evidence
8. CCE, CCFE, CFCE, and GCFA are all examples of: - ANSWER computer
forensic examiner certifications
9. 18 months - ANSWER COBRA benefits
10.___________________ is used to assess the vulnerabilities and threats that
could harm electronic protected health information (EPHI). - ANSWER
Risk Analysis
11.Which of the following was not one of the outcomes of the Enron scandal? -
ANSWER Public companies are required to file one comprehensive
financial disclosure statement with the SEC.
12.Under SEC rules, internal controls over financial reporting (ICFR) are
processes that provide reasonable assurance that financial reports are
reliable. Which of the following is not assured by ICFR? - ANSWER IT
controls that contain financial data are maintained.
13.The U.S. Securities and Exchange Commission reviews a public company's
Form 10-K at least once every ____________ years. - ANSWER Three
14.The SEC requires that CEO and CFO each must certify that the executive is
responsible for creating internal controls and procedures that are designed to
bring material information about the company to the executive's attention,
and the controls are reviewed 90 days prior to filing the report - ANSWER
False
15.The main goal of ______________ is to protect shareholders and investors
from financial fraud. - ANSWER Sarbanes-Oxley Act (SOX)
,16.The three major corporate privacy concerns are: 1) privacy of employee
data, 2) privacy of customer data, and 3) privacy of corporate data -
ANSWER True
17.The state with some of the strictest patient privacy protections is: -
ANSWER California
18.The SEC has five commissioners. The U.S. President must appoint them.
They serve for five-year terms. All five commissioners can belong to the
same political party. - ANSWER False
19.What was the first federal law to address federal computer security? -
ANSWER Computer Security Act (CSA)
20.Under the Department of Commerce rules, exporters must have an export
license for items and technologies that are on the _________. - ANSWER
Commercial Control List
21.Under the ____________________, federal agencies must 1) review their IT
systems for privacy risks; 2) post privacy policies on their Web sites; 3) post
machine-readable privacy policies on their Web sites; and 4) report privacy
activities to the OMB. - ANSWER E-Government Act of 2002
22.Which of the following is not one the federal information security challenges
the federal CIO spoke of at a House of Representatives subcommittee
meeting in March 2010? - ANSWER the culture within the federal
government of not complying with reporting requirements
23.Which of the following is not one of the guidelines in the DoD's policy on
social media? - ANSWER DoD employees are not permitted to use social
media from their personal devices for personal purposes.
24.A ______________ protects the formulas, processes, methods, and
information that give a business a competitive edge. - ANSWER trade secret
25.A copyright is used to protect the following creative endeavors: literary
works, musical works, and dramatic works. - ANSWER False
, 26.A legal owner of property has the right to use that property in any way they
want to, and the power to give those rights to another. This is called
_____________. - ANSWER property interest
27.In a situation where phishing attackers attempt to steal personal information,
which of the following federal acts can be used to prosecute such a crime? -
ANSWER Computer Fraud and abuse Act
28.The _______________ makes identify theft a federal crime. - ANSWER
Identity Theft and Assumption Deterrence Act
29.The power of a court to decide certain types of cases is
______________________ jurisdiction. - ANSWER subject matter
30._______________________ criminal law defines the conduct that
constitutes a crime and establishes penalties. - ANSWER Substantive
31._______________________ covers unsolicited commercial e-mail messages
and requires commercial e-mail senders to meet certain requirements. -
ANSWER Controlling the Assault of Non-Solicited Pornography and
Marketing (CAN-SPAM)
32.Which statement is true about the burden of proof in a criminal case? -
ANSWER The government bears the burden of proving that the defendant
violated the law.
33.Which amendment to the U.S. Constitution guarantees defendants a speedy
trial? - ANSWER Sixth
34.What is the first piece of federal legislation that identified computer crimes
as distinct offenses? - ANSWER The Computer Fraud and Abuse Act of
1984
35.________________ law uses the reasonable person standard to determine
whether a person acted appropriately. - ANSWER Tort
36.Intentional torts most often occur when the defendant intended to commit
the tort. Most torts involving ____________________ are intentional torts. -
ANSWER computers and cyberspace
