3/3/2019 Take Test: Mid-Term Exam – 2019_SPR_MAIN_Operations ...
Vijitha Gaddampalli 1
Home Courses
H Content Week 8 Take Test: Mid-Term Exam ?
Take Test: Mid-Term Exam
Test Information
Description The Mid-Term Exam consists of True/False and Multiple Choice Questions.
Each question is worth 2 points and you will have 120 questions to answer.
The exam is open book/open notes and the exam is timed as you will have 3 hours to complete (in one
sitting).
So be prepared to complete the entire exam once you launch it!!!
Instructions
Timed Test This test has a time limit of 3 hours and 20 minutes.This test will save and submit automatically when the time
expires.
Warnings appear when half the time, 5 minutes, 1 minute, and 30 seconds remain.
Multiple Not allowed. This test can only be taken once.
Attempts
Force Once started, this test must be completed in one sitting. Do not leave the test before clicking Save and Submit.
Completion
Remaining Time: 15 minutes, 00 seconds.
Question Completion Status:
QUESTION 1 1 points Saved
One of the considerations of integrity is how to protect data in the event of a breach or
unauthorized access. One way to resolve this issue is to take a security layered approach and to
use encryption. A breach in one layer will be caught by another. In this case, even if data is
improperly accessed, it still cannot be read.
True
False
QUESTION 2 1 points Saved
In 2012, COBIT 5.0 was released to the public. This version of COBIT was a departure from other
frameworks in that it put emphasis on what enables processes to work well; COBIT calls these
process enablers.
True
False
QUESTION 3 1 points Saved
Availability ensures information is available to authorized users and devices. Initially, the
information owner must determine availability requirements. The owner must determine who
needs access to the data and when.
True
False
QUESTION 4 1 points Saved
Which of the following is not one of the “five pillars of the IA model”
Confidentiality
Integrity
Availability
Assurance
QUESTION 5 1 points Saved
A vulnerability is a human-caused or natural event that could impact the system, whereas a risk is
a weakness in a system that can be exploited.
True
https://ucumberlands.blackboard.com/webapps/assessment/take/launch.jsp?course_assessment_id=_98239_1&course_id=_108058_1&content… 1/15
, 3/3/2019 Take Test: Mid-Term Exam – 2019_SPR_MAIN_Operations ...
True
False
QUESTION 6 1 points Saved
In the COBIT Build, Acquire, and Implement domain, the staff tunes the environment to minimize
risks and collects lessons learned.
True
False
QUESTION 7 1 points Saved
The legal concept of nonrepudiation provides assurance that an individual cannot deny having
digitally signed a document or been party to a transaction. As the sum total of evidence that
proves to the court’s satisfaction that only one person could have executed that transaction, this
concept exists because businesses want to prove it was one person’s computer, ID, and digital
signature, and that the person’s transaction that cannot be repudiated.
True
False
QUESTION 8 1 points Saved
One of the foundational reasons for using and enforcing security policies is to protect systems
from the “insider threat,” which refers to users with authorized access. These are privileged users
who would have the ability and access to wreak havoc on the system
True
False
QUESTION 9 1 points Saved
Good governance provides assurance and confidence that rules are being followed; governance
exists for the purpose of providing assurance to regulators that risks to shareholders, customers,
and the public are being properly managed.
True
False
QUESTION 10 1 points Saved
Data exists generally in one of two states: data at rest, such as on a backup tape, or data in
transit, such as when traveling across a network.
True
False
Q U E S T I O N 11 1 points Saved
A__________________ communicates general rules that cut across the entire organization.
procedure
policy principles document
guideline
policy definitions document
QUESTION 12 1 points Saved
________________ functions as a preventive control designed to prevent mistakes from
happening. ________________functions as a detective control intended to improve the quality
over time by affording opportunities to learn from past mistakes.
Quality control; Quality assurance
Governance; Nonrepudiation
Quality assurance; Quality control
Quality control; Business as usual
QUESTION 13 1 points Saved
As employees find new ways to improve a system or process, it is important to have a way to
capture their ideas. ________________________ can be understood as finding a better way or as
a lesson learned.
Business process reengineering
Continuous improvement
Policy implementation
Change management
QUESTION 14 1 points Saved
Integrity ensures that only authorized individuals are able to access information.
True
False
QUESTION 15 S
https://ucumberlands.blackboard.com/webapps/assessment/take/launch.jsp?course_assessment_id=_98239_1&course_id=_108058_1&content… 2/15
Vijitha Gaddampalli 1
Home Courses
H Content Week 8 Take Test: Mid-Term Exam ?
Take Test: Mid-Term Exam
Test Information
Description The Mid-Term Exam consists of True/False and Multiple Choice Questions.
Each question is worth 2 points and you will have 120 questions to answer.
The exam is open book/open notes and the exam is timed as you will have 3 hours to complete (in one
sitting).
So be prepared to complete the entire exam once you launch it!!!
Instructions
Timed Test This test has a time limit of 3 hours and 20 minutes.This test will save and submit automatically when the time
expires.
Warnings appear when half the time, 5 minutes, 1 minute, and 30 seconds remain.
Multiple Not allowed. This test can only be taken once.
Attempts
Force Once started, this test must be completed in one sitting. Do not leave the test before clicking Save and Submit.
Completion
Remaining Time: 15 minutes, 00 seconds.
Question Completion Status:
QUESTION 1 1 points Saved
One of the considerations of integrity is how to protect data in the event of a breach or
unauthorized access. One way to resolve this issue is to take a security layered approach and to
use encryption. A breach in one layer will be caught by another. In this case, even if data is
improperly accessed, it still cannot be read.
True
False
QUESTION 2 1 points Saved
In 2012, COBIT 5.0 was released to the public. This version of COBIT was a departure from other
frameworks in that it put emphasis on what enables processes to work well; COBIT calls these
process enablers.
True
False
QUESTION 3 1 points Saved
Availability ensures information is available to authorized users and devices. Initially, the
information owner must determine availability requirements. The owner must determine who
needs access to the data and when.
True
False
QUESTION 4 1 points Saved
Which of the following is not one of the “five pillars of the IA model”
Confidentiality
Integrity
Availability
Assurance
QUESTION 5 1 points Saved
A vulnerability is a human-caused or natural event that could impact the system, whereas a risk is
a weakness in a system that can be exploited.
True
https://ucumberlands.blackboard.com/webapps/assessment/take/launch.jsp?course_assessment_id=_98239_1&course_id=_108058_1&content… 1/15
, 3/3/2019 Take Test: Mid-Term Exam – 2019_SPR_MAIN_Operations ...
True
False
QUESTION 6 1 points Saved
In the COBIT Build, Acquire, and Implement domain, the staff tunes the environment to minimize
risks and collects lessons learned.
True
False
QUESTION 7 1 points Saved
The legal concept of nonrepudiation provides assurance that an individual cannot deny having
digitally signed a document or been party to a transaction. As the sum total of evidence that
proves to the court’s satisfaction that only one person could have executed that transaction, this
concept exists because businesses want to prove it was one person’s computer, ID, and digital
signature, and that the person’s transaction that cannot be repudiated.
True
False
QUESTION 8 1 points Saved
One of the foundational reasons for using and enforcing security policies is to protect systems
from the “insider threat,” which refers to users with authorized access. These are privileged users
who would have the ability and access to wreak havoc on the system
True
False
QUESTION 9 1 points Saved
Good governance provides assurance and confidence that rules are being followed; governance
exists for the purpose of providing assurance to regulators that risks to shareholders, customers,
and the public are being properly managed.
True
False
QUESTION 10 1 points Saved
Data exists generally in one of two states: data at rest, such as on a backup tape, or data in
transit, such as when traveling across a network.
True
False
Q U E S T I O N 11 1 points Saved
A__________________ communicates general rules that cut across the entire organization.
procedure
policy principles document
guideline
policy definitions document
QUESTION 12 1 points Saved
________________ functions as a preventive control designed to prevent mistakes from
happening. ________________functions as a detective control intended to improve the quality
over time by affording opportunities to learn from past mistakes.
Quality control; Quality assurance
Governance; Nonrepudiation
Quality assurance; Quality control
Quality control; Business as usual
QUESTION 13 1 points Saved
As employees find new ways to improve a system or process, it is important to have a way to
capture their ideas. ________________________ can be understood as finding a better way or as
a lesson learned.
Business process reengineering
Continuous improvement
Policy implementation
Change management
QUESTION 14 1 points Saved
Integrity ensures that only authorized individuals are able to access information.
True
False
QUESTION 15 S
https://ucumberlands.blackboard.com/webapps/assessment/take/launch.jsp?course_assessment_id=_98239_1&course_id=_108058_1&content… 2/15
