Exam (elaborations)
CISA Domain 5: Protection of Information Assets (Part 5B) questions and answers
- Course
- Institution
CISA Domain 5: Protection of Information Assets (Part 5B) questions and answers
[Show more]
Content preview
Match term to definition1-73 of 73
Select a definition to match it with its term
A perpetrator looking to gain access to and gather information about encrypted data being
transmitted over a network would MOST likely use:
Give this one a go later!
traffic analysis.
,Which of the following criteria are MOST needed to ensure that log information is admissible
in court? Ensure that data have been:
Give this one a go later!
verified to ensure log integrity.
An IS auditor has found that employees are emailing sensitive company information to public
web-based email domains. Which of the following is the BEST remediation option for the IS
auditor to recommend?
Give this one a go later!
Data loss prevention
An IS auditor reviewing the implementation of an intrusion detection system (IDS) should be
MOST concerned if:
Give this one a go later!
the IDS is used to detect encrypted traffic.
An IS auditor discovers that uniform resource locators (URLs) for online control self-
assessment questionnaires are sent using URL shortening services. The use of URL shortening
services would MOST likely increase the risk of which of the following attacks?
, Give this one a go later!
Phishing
Web application developers sometimes use hidden fields on web pages to save information
about a client session. This technique is used, in some cases, to store session variables that
enable persistence across web pages, such as maintaining the contents of a shopping cart on
a retail web site application. The MOST likely web-based attack due to this practice is:
Give this one a go later!
parameter tampering.
A company determined that its web site was compromised, and a rootkit was installed on the
server hosting the application. Which of the following choices would have MOST likely
prevented the incident?
Give this one a go later!
A host-based intrusion prevention system
Which of the following methods BEST mitigates the risk of disclosing confidential information
through the use of social networking sites?
Give this one a go later!
Providing security awareness training
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller codersimon. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $10.00. You're not tied to anything after your purchase.
Can Stuvia be trusted?
4.6 stars on Google & Trustpilot (+1000 reviews)
79650 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now
