ITN 267 FINAL EXAM
ITN 267 FINAL EXAM COVERAGE
The ITN 267 Final Exam evaluates advanced understanding of
information security governance, federal cybersecurity laws, and
compliance frameworks. The exam coverage includes FISMA
requirements, agency security program development, periodic system
testing, risk-based security controls, and reporting obligations to
OMB and Congress. It also assesses knowledge of NIST's role in
developing federal security standards and guidelines, including
implementation projects supporting FISMA compliance. Additional
areas include cybersecurity oversight roles such as Inspectors General
(IG), subordinate security planning structures, and national-level cyber
threats including cyberwar concepts. The exam further covers export
control regulations such as ITAR and EAR, including restrictions on
,sharing sensitive technical information with non-U.S. persons. Overall,
the exam ensures candidates understand federal cybersecurity
governance, regulatory compliance, and security planning required to
protect government information systems.
One of the most important parts of a FISMA information security
program is that agencies test and evaluate it. FISMA requires each
agency to perform "periodic testing and evaluation of the
effectiveness of information security policies, procedures, and
practices." Agencies must test every IT system—no matter the risk level
— at least once a year (T or F)
True
,The term cyberwar specifically refers to conflicts between nations and
their militaries. This is the main distinction between cyberwar and other
types of information system attacks that are reported in the news
media. (T or F)
True
__________________ restrict the transmission of certain types of information to
non-U.S. citizens or non-permanent residents who are located in the
United States.
Export control regulations
, Which of the following are types of export control regulations?
ITAR & EAR
NIST created a FISMA Implementation Project to help it meet its
FISMA duties. The project helped it create FISMA-related standards
and guidelines in a timely manner. The project had two phases. In the
first phase, NIST developed standards and guidelines to help agencies
meet basic FISMA requirements. The documents developed in this
phase helped agencies create their information security programs. (T
or F)
True
ITN 267 FINAL EXAM COVERAGE
The ITN 267 Final Exam evaluates advanced understanding of
information security governance, federal cybersecurity laws, and
compliance frameworks. The exam coverage includes FISMA
requirements, agency security program development, periodic system
testing, risk-based security controls, and reporting obligations to
OMB and Congress. It also assesses knowledge of NIST's role in
developing federal security standards and guidelines, including
implementation projects supporting FISMA compliance. Additional
areas include cybersecurity oversight roles such as Inspectors General
(IG), subordinate security planning structures, and national-level cyber
threats including cyberwar concepts. The exam further covers export
control regulations such as ITAR and EAR, including restrictions on
,sharing sensitive technical information with non-U.S. persons. Overall,
the exam ensures candidates understand federal cybersecurity
governance, regulatory compliance, and security planning required to
protect government information systems.
One of the most important parts of a FISMA information security
program is that agencies test and evaluate it. FISMA requires each
agency to perform "periodic testing and evaluation of the
effectiveness of information security policies, procedures, and
practices." Agencies must test every IT system—no matter the risk level
— at least once a year (T or F)
True
,The term cyberwar specifically refers to conflicts between nations and
their militaries. This is the main distinction between cyberwar and other
types of information system attacks that are reported in the news
media. (T or F)
True
__________________ restrict the transmission of certain types of information to
non-U.S. citizens or non-permanent residents who are located in the
United States.
Export control regulations
, Which of the following are types of export control regulations?
ITAR & EAR
NIST created a FISMA Implementation Project to help it meet its
FISMA duties. The project helped it create FISMA-related standards
and guidelines in a timely manner. The project had two phases. In the
first phase, NIST developed standards and guidelines to help agencies
meet basic FISMA requirements. The documents developed in this
phase helped agencies create their information security programs. (T
or F)
True
