Exam (elaborations)
D430 Fundamentals of Information Security – PASSED EXAM(239 QUESTIONS AND ANSWERS)
- Course
- Institution
D430 Fundamentals of Information Security – PASSED EXAM(239 QUESTIONS AND ANSWERS)
[Show more]
Content preview
D430:Fundamentals of
Information
Security –
PASSED
EXAM(239
QUESTIONS AND
ANSWERS)
information security - answer "protecting
information and information systems from
unauthorized access, use, disclosure, disruption,
modification, or destruction." - US law
,protection of digital assets.
secure - answer it's difficult to define when you're
truly secure. when you can spot insecurities, you
can take steps to mitigate these issues. although
you'll never get to a truly secure state, you can
take steps in the right direction.
m; as you increase the level of security, you
decrease the level of productivity. the cost of
security should never outstrip the value of what
it's protecting.
data at rest and in motion (and in use) - answer
data at rest is stored data not in the process of
being moved; usually protected with encryption at
the level of the file or the entire storage device.
data in motion is data that is in the process of
being moved; usually protected with encryption,
but in this case the encryption protects the
network protocol or the path of the data.
data in use is the data that is actively being
accessed at the moment. protection includes
permissions and authentication of users. could be
conflated with data in motion.
,defense by layer - answer the layers of your
defense-in-depth strategy will vary depending on
situation and environment.
logical (nonphysical) layers: external network,
network perimeter, internal network, host,
application, and data layers as areas to place your
defenses.
m; defenses for layers can appear in more than one
area. penetration testing, for example, can and
should be used in all layers.
payment card industry data security standard (PCI
DSS) - answer a widely accepted set of policies and
procedures intended to optimize the security of
credit, debit and cash card transactions and
protect cardholders against misuse of their
personal information.
health insurance portability and accountability act
of 1996 (HIPAA) - answer a federal law that
required the creation of national standards to
protect sensitive patient health information from
being disclosed without the patient's consent or
knowledge.
, federal information security management act
(FISMA) - answer requires each federal agency to
develop, document, and implement an information
security program to protect its information and
information systems.
m; applies to US federal government agencies, all
state agencies that administer federal programs,
and private companies that support, sell to, or
receive grant money from the federal government.
federal risk and authorization management
program (FedRAMP) - answer defines rules for
government agencies contracting with cloud
providers; applies to both cloud platform providers
and companies providing software as a service
(SaaS) tools that are based in the cloud.
sarbanes-oxley act (SOX) - answer regulates the
financial practice and governance for publicly held
companies.
m; designed to protect investors and the general
public by establishing requirements regarding
reporting and disclosure practices.
places specific requirements on an organization's
electronic recordkeeping, including the integrity of
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller BRAINBOOSTERS. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $18.49. You're not tied to anything after your purchase.
Can Stuvia be trusted?
4.6 stars on Google & Trustpilot (+1000 reviews)
82215 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now