SRA 221 - Exam 1 questions and
answers A+ already passed
(t/f) One of the most difficult threats that security professionals will have to address is that of
the insider. - correct answer ✔✔true
_______ infrastructures are those whose loss would have severe repercussions on the nation -
correct answer ✔✔critical
(t/f) Today, the data stored and processed by computers is almost always more valuable than
the hardware - correct answer ✔✔true
(t/f) The more complexity and programming code that is built into a Software System the easier
it is to secure - correct answer ✔✔false
The Department of Homeland Security has guidelines to protect areas that are critical to our
economy and safety. These are grouped into 16 categories, what are they called? - correct
answer ✔✔Critical Infrastructure
Individuals who do not have the technical expertise to develop scripts or discover new
vulnerabilities in software but who have just enough understanding of computer systems to be
able to download and run scripts that others have developed. - correct answer ✔✔Script
Kiddies
_____ is commonly defined as a set of moral principles that guides an individual's or group's
behavior - correct answer ✔✔ethics
, (t/f) Once you train employees on security you no longer have to worry about insider threats. -
correct answer ✔✔false
(t/f) The biggest change affecting computer security that has occurred over the last 30 years has
been the transformation of the computing environment from a highly interconnected network
of smaller systems to large mainframes. - correct answer ✔✔false
Diversity of Defense relies on making the layers of Security Similar, this makes it easier to
maintain the systems. - correct answer ✔✔false
One of the best ways to avoid an attack on your host systems (servers) is by? - correct answer
✔✔Routinely perform security patches from vendors
In Bob's current roles he has admin access to all security log files. He also has admin access to
all of the access controls. As a security professional what important security process should be
implemented pertaining to Bob's responsibilities? - correct answer ✔✔Separation of Dutites
The NIST framework only applies to companies that are part of the Critical Infrastructure under
the DHS. - correct answer ✔✔false
Master Card and VISA need to comply with what standard for credit card data? - correct answer
✔✔PCI
What is a password? - correct answer ✔✔something you know
What is a fingerprint? - correct answer ✔✔something about you
What is a key card? - correct answer ✔✔something you have
answers A+ already passed
(t/f) One of the most difficult threats that security professionals will have to address is that of
the insider. - correct answer ✔✔true
_______ infrastructures are those whose loss would have severe repercussions on the nation -
correct answer ✔✔critical
(t/f) Today, the data stored and processed by computers is almost always more valuable than
the hardware - correct answer ✔✔true
(t/f) The more complexity and programming code that is built into a Software System the easier
it is to secure - correct answer ✔✔false
The Department of Homeland Security has guidelines to protect areas that are critical to our
economy and safety. These are grouped into 16 categories, what are they called? - correct
answer ✔✔Critical Infrastructure
Individuals who do not have the technical expertise to develop scripts or discover new
vulnerabilities in software but who have just enough understanding of computer systems to be
able to download and run scripts that others have developed. - correct answer ✔✔Script
Kiddies
_____ is commonly defined as a set of moral principles that guides an individual's or group's
behavior - correct answer ✔✔ethics
, (t/f) Once you train employees on security you no longer have to worry about insider threats. -
correct answer ✔✔false
(t/f) The biggest change affecting computer security that has occurred over the last 30 years has
been the transformation of the computing environment from a highly interconnected network
of smaller systems to large mainframes. - correct answer ✔✔false
Diversity of Defense relies on making the layers of Security Similar, this makes it easier to
maintain the systems. - correct answer ✔✔false
One of the best ways to avoid an attack on your host systems (servers) is by? - correct answer
✔✔Routinely perform security patches from vendors
In Bob's current roles he has admin access to all security log files. He also has admin access to
all of the access controls. As a security professional what important security process should be
implemented pertaining to Bob's responsibilities? - correct answer ✔✔Separation of Dutites
The NIST framework only applies to companies that are part of the Critical Infrastructure under
the DHS. - correct answer ✔✔false
Master Card and VISA need to comply with what standard for credit card data? - correct answer
✔✔PCI
What is a password? - correct answer ✔✔something you know
What is a fingerprint? - correct answer ✔✔something about you
What is a key card? - correct answer ✔✔something you have
