Auditing IT Infrastructures for Compliance Chapter 1 Review Questions with complete Solutions Graded A+
6 views 0 purchase
Course
IT Infrastructure
Institution
IT Infrastructure
Auditing IT Infrastructures for Compliance Chapter 1 Review Questions with complete Solutions Graded A+
A security assessment is a method for proving the strength of security systems. - Answers False
Categorizing information and information systems and then selecting and implementing appropriate ...
Auditing IT Infrastructures for Compliance Chapter 1 Review Questions with complete Solutions
Graded A+
A security assessment is a method for proving the strength of security systems. - Answers False
Categorizing information and information systems and then selecting and implementing appropriate
security controls is part of a - Answers Risk-based Approach
Whereas only qualified auditors perform security audits, anyone may do security assessments. -
Answers True
NIST 800-53A provides - Answers A guide for assessing security controls
Not a method used for conducting an assessment of security controls? - Answers Remediate
Which of the following is an assessment method that attempts to bypass controls and gain access to a
specific system by simulating the actions of a would-be attacker. - Answers Penetration test
An IT security audit is an __________ assessment of an organization's internal policies, controls, and
activities. - Answers Independent
What best describes an audit used to determine if a Fortune 500 health care company is adhering to
Sarbanes-Oxley and HIPPA regulations? - Answers Compliance audit
The internal audit function may be outsourced to an external consulting firm. - Answers True
Compliance initiatives typically are efforts around all except which one of the following? - Answers To
adhere to an auditor's recommendation
At all levels of an organization, compliance is closely related to which of the following? - Answers Risk
management
Governance
Which one of the following is true with regard to audits and assessments? - Answers Audits can result in
blame being placed upon an individual
Noncompliance with regulatory standards may result in? - Answers Brand damage, Fines, and
Imprisonment
What companies engaged in fraudulent activity and subsequently filed for bankruptcy? - Answers Enron
WorldCom
Some regulations are subject to _________ which means even if there wasn't intent of noncompliance,
an organization can still incur large fines. - Answers Strict Liability
A level of confidence that appropriate and effective IT controls are in place. - Answers Assurance
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller TutorJosh. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $7.99. You're not tied to anything after your purchase.
