1. ____ measures the time between submitting a request for information and the fulfillment of the request    turn around time
2. _____ analyzes an organization’s assets, threats, and vulnerabilities.   risk indentification
3. _____ costs include expenses for items such as supplies and equipment rental.  Operational
4. _____ describes the amount of data that a system can transfer in a fixed time period. Bandwidth
5. _____ develops safeguards that reduce risks and their impact.   risk control
6. _____ ensures that authorized users have timely and reliable access to necessary information.  Availability
7. _____ expenses vary significantly during a system’s operational life and include spending to support maintenance activities.   Maintenance
8. _____ include changing programs, procedures, or documentation to ensure correct system performance; adapting the system to changing requirements; and making the system operate more efficiently.   maintenance activities
9. _____ includes monitoring a system for signs of trouble, logging all system failures, diagnosing the problem, and applying corrective action.  fault management
10. _____ is a process for controlling changes in system requirements during software development. configuration management
11. _____ is a process that monitors current activity and performance levels, anticipates future activity, and forecasts the resources needed to provide desired levels of service. capacity planning
12. _____ is the overall time between a request for system activity and the delivery of the response  response time
13. _____ is the process of tracking system releases  version control
14. _____ measures actual system performance under specific circumstances and is affected by network loads and hardware efficiency.   Throughput
15. _____ measures risk likelihood and impact.   risk assessment
16. _____ prevents unauthorized users from creating, modifying, or deleting information.  Integrity
17. _____ protects information from unauthorized disclosure and safeguards privacy.  Confidentiality
18. _____, a risk control strategy, eliminates risks by adding protective safeguards   avoidance
19. A _____ is a centralized resource staffed by IT professionals who provide users with the support they need to do their jobs.  help desk
20. A _____ is a formal reference point that measures system characteristics at a specific time.  Baseline
21. A _____ is a security weakness or soft spot.   Vulnerability
22. A _____ is an internal or external entity that could endanger an asset.   Threat
23. A _____ is responsible for assigning maintenance tasks to individuals or to a maintenance team  system administrator
24. A continuous backup only backs up files that are new or changed since the last full backup   false
25. A help desk can boost its productivity by using _____, which allows IT staff to take over a user’s workstation and provide support and troubleshooting.  remote control software
26. A patch is a specially written software module that provides temporary repairs so operations can resume   true
27. A system in its final stages requires corrective maintenance only to keep the system operational. True
28. A test site is an alternate IT location, anywhere in the world, that can support critical systems in the event of a power outage, system crash, or physical catastrophe    false
29. A(n) _____ is an attack that takes advantage of a vulnerability.   Exploit
30. Acceptance means that nothing is done; companies usually accept a risk only when the protection clearly is not worth the expense.  True
31. Adaptive maintenance   adds enhancements to an operational system and makes the system easier to use
32. Adaptive maintenance involves changing an operational system to make it more efficient, reliable, or maintainable. False
33. An incremental backup only includes recent files that have never been backed up by any method.   True
34. As enterprise-wide information systems grow more complex, configuration management becomes trivial   false
35. Backup media can include tape, hard drives, optical storage, and online storage.   True
36. Bandwidth requirements are expressed in bytes per minute.   False
37. Both adaptive and perfective maintenance activities decrease in a dynamic business environment   false
38. Cloud computing provides the IT infrastructure that enables service orientation   True
39. Corrective maintenance _____.   diagnoses and corrects errors in an operational system
40. George’s firm contracts to provide risk management services for a wide range of smaller companies that cannot provide the service for themselves. One of George’s responsibilities at the end of each month is to review the threats encountered by the companies and put them into the appropriate categories.
    
    One of his firm’s clients details an incident in which a hacker — a former employee — thieved trade secrets from the client and threatened to release them to the competition if he was not paid. Which category should George place this incident?   Extortion
41. George’s firm contracts to provide risk management services for a wide range of smaller companies that cannot provide the service for themselves. One of George’s responsibilities at the end of each month is to review the threats encountered by the companies and put them into the appropriate categories.
    
    Another of George’s clients has software that is outdated and has become increasingly vulnerable to attack. How does George categorize this threat?   Technical obsolescence
42. Hard skills include communications, interpersonal, and perceptive abilities.   False
43. If significant changes take place in an existing system or if a new version is released, the IT department might develop a _____   user training package
44. In a broad sense, credentials include formal degrees, diplomas, or certificates granted by learning institutions to show that a certain level of education has been achieved.    True
45. In a public key encryption environment, each user on the network has a pair of keys: a foreign key and a private key.  False
46. In a secluded engineering attack, an intruder uses social interaction to gain access to a computer system.   False
47. In a typical system, the initial version of the system is 1.0, and the release that includes the first set of maintenance changes is version   1.1
48. In addition to benchmark testing, performance measurements, called _____, can monitor the number of transactions processed in a given time period, the number of records accessed, and the volume of online data.   Metrics
49. In dumpster diving attacks, an intruder raids desks or trash bins for valuable information.   True
50. In maintenance management, _____ involves studying the parts of a system to understand the overall system.   Synthesis
51. In maintenance management, _____ means examining the whole in order to learn about the individual elements.   Analysis
52. Maintenance expense stay consistently the same during the system’s operational life.  False
53. Many IT departments use a job title of _____ to designate positions that require a combination of systems analysis and programming skills.  programmer/analyst
54. Mitigation shifts the risk to another asset or party, such as an insurance company.  False
55. One highly publicized form of social engineering is called post texting, which is a method of obtaining personal information under false pretenses.  False
56. Perfective maintenance     involves changing an operational system to make it more efficient, reliable, or maintainable
57. Perfective maintenance usually is cost effective _____ a system’s operational life.   during the middle of
58. Retention periods of backups can be a specific number of months or years, depending on legal requirements and company policy.   True
59. Software leases are not considered an operational cost.  False
60. The _____ describes a system at the beginning of system operation and includes the results of performance and acceptance tests for the operational system.  product baseline
61. The _____ documents a system at the end of the design phase, identifies any changes since the beginning of the project, and includes testing and verification of all system requirements and features.   allocated baseline
62. The _____ is the configuration of a system documented at the beginning of the project and consists of all necessary system requirements and design constraints.  functional baseline
63. The first step in managing IT security is to develop a _____ based on confidentiality, integrity, and availability    security policy
64. The hardening process that makes a system more secure is fully automatic   false
65. The main objective of training is to show users how the system can help them perform their jobs.   True
66. The systems support and _____ phase begins when a system becomes operational and continues until the system reaches the end of its useful life.   Security
67. To avoid problems, preventive maintenance _____.  requires analysis of areas where trouble is likely to occur
68. To measure system performance, companies use _____, which uses a set of standard tests on one system to compare its performance and capacity to that of other systems.  benchmark testing
69. Using a release methodology reduces the documentation burden.   True
70. When a maintenance release methodology is used, all changes, critical and noncritical, are implemented consecutively as they arrive.  False
71. When a new version of a system is installed, the prior release is _____, or stored.  Archived
72. When a user submits a maintenance request, the system administrator makes an initial determination.   True
73. When network traffic is encrypted, it is invisible and its content and purpose are masked.  False
74. Wrapping refers to the practice of storing backup media away from the main business location, in order to mitigate the risk of a catastrophic disaster, such as a flood, fire, or earthquake.  False

Other Links:

Statistics Quiz

Networking Quiz

See other websites for quiz:

Check on QUIZLET

Check on CHEGG