Which of the following is the BEST method to determine classification of data? a. Assessment of...

Which of the following BEST describes a government –wide standard for security Assessment and Authorization (A&A),...

Which of the following BEST describes a government –wide standard for security Assessment and Authorization (A&A), and continuous monitoring for cloud products and services, which is mandatory for federal agencies and Cloud Services Providers (CSP)? Federal Risk and Authorization Management Program ( FedRAMP) National Institute of Standards and Technology (NIST) Federal Information Technology Acquisition Reform ACT (FITARA) National Cyber Security Program (NCSP)

Without prior approval, a training department enrolled the company in a free cloud-based collaboration site and...

Without prior approval, a training department enrolled the company in a free cloud-based collaboration site and invited employees to use it. Which of the following is the BEST response of the information security manager? A. Conduct a risk assessment and develop an impact analysis. B. Update the risk register and review the information security strategy. C. Report the activity to senior management. D. Allow temporary use of the site and monitor for data leakage. Correct Answer: A???? or C????? or...

Which of the following is the BEST method to ensure that data owners take responsibility for...

Which of the following is the BEST method to ensure that data owners take responsibility for implementing information security processes? A. Include security tasks into employee job descriptions. B. Include membership on project teams. C. Provide job rotation into the security organization. D. Increase security awareness training. Correct Answer: ???????????????? ____________________ ■ Answer D (Increase security awareness training) is officially believed to be the correct one. ■ But I believe it is weak because there is no accountability ■ Please...

1. SoCal Movie Company produces movies at a studio in Southern California. The risk manager decided...

1. SoCal Movie Company produces movies at a studio in Southern California. The risk manager decided to identify the range of potential consequences associated with various risks that the company faces. For example, if a severe earthquake occurred while the company was filming a movie, there could be deaths and injuries, destruction of movie sets, delays in production, costs associated with filming at an alternative location, and loss of reputation and good will. The type of analysis performed by the...

"Risk' can be best defined as on the of the followings:   a. Variability of returns and...

"Risk' can be best defined as on the of the followings:   a. Variability of returns and probability of financial loss b. Chance of financial loss   c. Variability of returns   d. Correlation of relationship among two variables Which of the following statement is NOT TRUE when we argue that the idea of riskless arbitrage is to accumulate the portfolio with following conditions : a. Requires no net wealth invested initially   b. Invest in the long-term securities only where risk will be...

Use the following data to select one best answer to the following question: Which method shall...

Use the following data to select one best answer to the following question: Which method shall be used to determine percent complete for the low-rise office building project? A construction company began operations on January 2, 2010. During the year the company was awarded one construction contract of low-rise office building. The company incurred $100,000 operating expenses for the year for which $75,000 has been paid while the balance is owed as of December 31, 2010. Project data is summarized...

6. If the items on an assessment method appear to show that a high score on...

6. If the items on an assessment method appear to show that a high score on the test correlates with performance, then, which of the following is true? A) The assessment method's criterion-related validity is high. B) The assessment method's construct validity is high. C) The assessment method's face validity is high. D) The assessment method's content validity is high. 7. Juan is a highly qualified biomedical researcher. Having recently completed his education, he applies to work at a pharmaceutical...

A fleet manager wanted to determine the best replacement tires for their corporate automobiles. He selected...

A fleet manager wanted to determine the best replacement tires for their corporate automobiles. He selected six tire-types and had a set of each of them installed randomly on 23 selected automobiles. He then recorded the mileage when the tires came due for replacement. Use the Excel output below to analyze the data. Are there differences in life-time mileages of tires, at the five percent significance level? ANOVA Source of Variation SS df MS F P-value F crit Between Groups...

20) Which of the following is the best reason for management to emphasize fraud prevention and...

20) Which of the following is the best reason for management to emphasize fraud prevention and deterrence?         A) The AICPA requires management to implement a fraud prevention program. B) It is often more effective and economical for companies to focus on fraud prevention and deterrence rather than on fraud detection. C) Collusion is impossible to detect. D) All of the above are equally valid reasons. 21) Who is responsible for setting the "tone at the top"? A) SEC                                 B)...

Strategic Surveys In order to monitor the satisfaction levels of employees and determine whether or not...

Strategic Surveys In order to monitor the satisfaction levels of employees and determine whether or not turnover will be an issue, an organization should implement some type of survey to receive feedback. Feedback can be used to address areas of dissatisfaction and improve attitudes in the workplace. It may also allow companies to have a means of comparison to other organizations in their industry. Most companies benefit from using existing measures that rely on workers' self-reports, as these measures often...