INMT 341 PART 2 EXAM QUESTIONS ANSWERED CORRECTLY LATEST UPDATE 2026
FERPA - Answers Protects students/ educational data
HIPAA - Answers Protects medical records
SOX - Answers Protects public against corporate fraud
PCI DSS - Answers Credit cards must be protected
GDPR - Answers Protect personal data from EU
CCPA - Answers Protect personal data from CA
Border/ edge router - Answers routes internet traffic into company network
Firewall - Answers blocks/ allows web traffic based on security rules
Servers - Answers stores and runs company applications like email or databases
Hubs - Answers connects multiple devices to share network communication
DMZ - Answers hosts public servers like a company website safely outside the internal network
Internal network area - Answers secure private network where employees access company resources
IPS (Intrusion Prevention System) - Answers Uses deny rules
IDS (Intrusion Detection System) - Answers Detect Intruders
VPN - Answers Encrypts all data between two internet points
Data Loss Prevention - Answers prevents unauthorized transfer of data out of the network
BYOD Risk - Answers personal devices may bypass security
MAC (Media Access Control Addresses) - Answers A unique factory-set ID for a network device used
to control network access
Log Analysis - Answers Records in order
Continuous - Answers watches over everything
Organizational security policies - Answers company requires strong passwords for all staff
Physical Security - Answers server room is locked and access card-restricted
Logical Security - Answers users must log in with passwords and MFA to access systems
Phishing - Answers Very specific fake emails or websites used to trick users into giving passwords or
personal info
DDoS - Answers attack that floods website with traffic to crash it
Virus - Answers malicious program that spreads and damages or steals data on a computer
Malware - Answers short for malicious software, this is software designed to infiltrate, damage, or
obtain information from a computer system without owners consent
Social Engineering - Answers more broad attack based on deceiving users or administration at the
target site into revealing confidential or sensitive information
Hacking - Answers attempt to gain unauthorized access to some element of a computer system
Destruction - Answers a fire destroys company servers
Disclosure - Answers customer data is leaked
Errors - Answers An employee enters incorrect financial data
Equipment/ Software Failure - Answers a server crashes during business hours
Fraud - Answers an employee steal company funds
Intrusion - Answers hacker gains unauthorized system access
Malicious Damage/ Attack - Answers malware corrupts company files
Enterprise/Business Risk - Answers Any risk that could potentially affect business value
I&T Risk - Answers IT-related risk that could potentially impact the business
Audit Risk - Answers The risk that an auditor has expressed an inappropriate opinion
FERPA - Answers Protects students/ educational data
HIPAA - Answers Protects medical records
SOX - Answers Protects public against corporate fraud
PCI DSS - Answers Credit cards must be protected
GDPR - Answers Protect personal data from EU
CCPA - Answers Protect personal data from CA
Border/ edge router - Answers routes internet traffic into company network
Firewall - Answers blocks/ allows web traffic based on security rules
Servers - Answers stores and runs company applications like email or databases
Hubs - Answers connects multiple devices to share network communication
DMZ - Answers hosts public servers like a company website safely outside the internal network
Internal network area - Answers secure private network where employees access company resources
IPS (Intrusion Prevention System) - Answers Uses deny rules
IDS (Intrusion Detection System) - Answers Detect Intruders
VPN - Answers Encrypts all data between two internet points
Data Loss Prevention - Answers prevents unauthorized transfer of data out of the network
BYOD Risk - Answers personal devices may bypass security
MAC (Media Access Control Addresses) - Answers A unique factory-set ID for a network device used
to control network access
Log Analysis - Answers Records in order
Continuous - Answers watches over everything
Organizational security policies - Answers company requires strong passwords for all staff
Physical Security - Answers server room is locked and access card-restricted
Logical Security - Answers users must log in with passwords and MFA to access systems
Phishing - Answers Very specific fake emails or websites used to trick users into giving passwords or
personal info
DDoS - Answers attack that floods website with traffic to crash it
Virus - Answers malicious program that spreads and damages or steals data on a computer
Malware - Answers short for malicious software, this is software designed to infiltrate, damage, or
obtain information from a computer system without owners consent
Social Engineering - Answers more broad attack based on deceiving users or administration at the
target site into revealing confidential or sensitive information
Hacking - Answers attempt to gain unauthorized access to some element of a computer system
Destruction - Answers a fire destroys company servers
Disclosure - Answers customer data is leaked
Errors - Answers An employee enters incorrect financial data
Equipment/ Software Failure - Answers a server crashes during business hours
Fraud - Answers an employee steal company funds
Intrusion - Answers hacker gains unauthorized system access
Malicious Damage/ Attack - Answers malware corrupts company files
Enterprise/Business Risk - Answers Any risk that could potentially affect business value
I&T Risk - Answers IT-related risk that could potentially impact the business
Audit Risk - Answers The risk that an auditor has expressed an inappropriate opinion
