Final Exam for: IS-860.c: The National
Infrastructure Protection Plan, An
Introduction
Privacy Act Statement (Public Law 93 579)
Each time that this test is loaded, you will receive a unique set of
questions and answers. The test questions are scrambled to protect
the integrity of the exam.
1. Which of the following statements describes the benefits of
information sharing?
A. Information sharing enhances owners' and operators' ability to
assess risks, make prudent security investments and develop
appropriate resilience strategies.
B. Information sharing enhances government's ability to adjust its
information collection, analysis, synthesis and dissemination activities
based on the needs of the private sector.
C. The increasing availability of data and information essential to
operating and maintaining infrastructure and related technologies
enables more efficient and effective practices.
D. Multidirectional information sharing enhances owners and
operators ability to assess risks, make prudent security investments
and develop appropriate resilience strategies
E. All of the Above
2. Dependencies and interdependencies emerging from complex
cyber capabilities and limitations is an example of which risk
element?
A. Vulnerability
B. Threat
C. Consequence
, D. Human
3. Which of the following activities that SLTT Executives Can Do
support the NIPP 2013 Core Tenet category, "Build upon
partnership efforts"?
A. Use existing partnership structures to enhance relationships
across the critical infrastructure community.
B. Consider security and resilience when designing infrastructure.
C. Understand interdependencies.
D. Identify effective security and resilience practices.
4. All of the following statements about the importance of critical
infrastructure partnerships are true EXCEPT
A. Critical infrastructure partners require efficient sharing of
actionable and relevant information among partners to build
situational awareness and enable effective risk-informed decision
making
B. The critical infrastructure partnership community involved in
managing risks is wide-ranging, composed of owners and operators;
Federal, State, local, tribal and territorial governments; regional
entities; non-profit organizations; and academia.
C. To achieve security and resilience, critical infrastructure partners
must leverage the full spectrum of capabilities, expertise and
experience across the critical infrastructure community and
associated stakeholders.
D. The Federal, State, local, tribal and territorial government is
ultimately responsible for managing all risks to critical infrastructure
for private and public sector partners; regional entities; non-profit
organizations; and academia.
5. Which of the following NIPP Core Tenets statement is correct?
A. The partnership approach to critical infrastructure security and
resilience recognizes the unique perspectives and competitive
advantages of the diverse critical infrastructure community.
B. Risk should be identified and managed in a coordinated and
comprehensive way across the critical infrastructure community to
restrict allocation of security and resilience resources.
C. Gaining knowledge of infrastructure risk and interdependencies
requires sharing classified information across the entire critical
infrastructure community.
D. Understanding and addressing risks from cross-sector
dependencies and interdependencies is essential to enhancing
critical infrastructure security and resilience.
Infrastructure Protection Plan, An
Introduction
Privacy Act Statement (Public Law 93 579)
Each time that this test is loaded, you will receive a unique set of
questions and answers. The test questions are scrambled to protect
the integrity of the exam.
1. Which of the following statements describes the benefits of
information sharing?
A. Information sharing enhances owners' and operators' ability to
assess risks, make prudent security investments and develop
appropriate resilience strategies.
B. Information sharing enhances government's ability to adjust its
information collection, analysis, synthesis and dissemination activities
based on the needs of the private sector.
C. The increasing availability of data and information essential to
operating and maintaining infrastructure and related technologies
enables more efficient and effective practices.
D. Multidirectional information sharing enhances owners and
operators ability to assess risks, make prudent security investments
and develop appropriate resilience strategies
E. All of the Above
2. Dependencies and interdependencies emerging from complex
cyber capabilities and limitations is an example of which risk
element?
A. Vulnerability
B. Threat
C. Consequence
, D. Human
3. Which of the following activities that SLTT Executives Can Do
support the NIPP 2013 Core Tenet category, "Build upon
partnership efforts"?
A. Use existing partnership structures to enhance relationships
across the critical infrastructure community.
B. Consider security and resilience when designing infrastructure.
C. Understand interdependencies.
D. Identify effective security and resilience practices.
4. All of the following statements about the importance of critical
infrastructure partnerships are true EXCEPT
A. Critical infrastructure partners require efficient sharing of
actionable and relevant information among partners to build
situational awareness and enable effective risk-informed decision
making
B. The critical infrastructure partnership community involved in
managing risks is wide-ranging, composed of owners and operators;
Federal, State, local, tribal and territorial governments; regional
entities; non-profit organizations; and academia.
C. To achieve security and resilience, critical infrastructure partners
must leverage the full spectrum of capabilities, expertise and
experience across the critical infrastructure community and
associated stakeholders.
D. The Federal, State, local, tribal and territorial government is
ultimately responsible for managing all risks to critical infrastructure
for private and public sector partners; regional entities; non-profit
organizations; and academia.
5. Which of the following NIPP Core Tenets statement is correct?
A. The partnership approach to critical infrastructure security and
resilience recognizes the unique perspectives and competitive
advantages of the diverse critical infrastructure community.
B. Risk should be identified and managed in a coordinated and
comprehensive way across the critical infrastructure community to
restrict allocation of security and resilience resources.
C. Gaining knowledge of infrastructure risk and interdependencies
requires sharing classified information across the entire critical
infrastructure community.
D. Understanding and addressing risks from cross-sector
dependencies and interdependencies is essential to enhancing
critical infrastructure security and resilience.
