+
Related Flashcards
Cards In This Set
| Front | Back |
|
In the context of CISSP, what does CIA stand for?
|
Confidentiality, Integrity and Availability
|
|
What concept asserts that information can only be changed by authorized individuals?
|
Integrity
|
|
What is Risk Transfer?
|
Making another entity responsible for a particular risk usually through purchase of insurance.
|
|
What is Privacy
|
Protection of sensitive information about an individual
|
|
Protection of information from unauthorized access is
|
Confidentiality
|
|
This is the entire scope of activities related to management of policies, procedures and standards
|
Governance
|
|
Marking of documents, tapes or other data storage media with classification/sensitivity identifiers is called _______
|
Marking or Labeling
|
|
What is job rotation?
|
The practice of assigning individuals different roles within the company to help prevent unauthorized activities
|
|
Process of evaluating a system against specific criteria
|
Certification
|
|
Accreditation
|
Process of formally approving the use of a system
|
|
This concept asserts that information systems that the data they contain can be used when needed
|
Availability
|
|
What is "Annual Loss Expectancy(ALE)?"
|
The yearly estimated cost of loss for an asset. It is computed by multiplying the Single Loss Expectancy by the Annualized Rate of Occurrence.
SLE x ARO = ALE |
|
What is the ARO
|
ARO stands for the Annualized Rate of Occurrence and is the probability that a loss will occur during a one year period.
|
|
What information should be contained within a job description?
|
All of responsibilities and requirements (education and experience) for the position
|
|
What is PII
|
Stands for Personally Identifiable Information. This is sensitive information about an individual including, name, social security number, passport information, date of birth, etc.
|
