Written by students who passed Immediately available after payment Read online or as PDF Wrong document? Swap it for free 4.6 TrustPilot
logo-home
Exam (elaborations)

WGU Course C841 - Legal Issues in Information Security actual EXAM STUDY GUIDE COMPLETE QUESTIONS AND CORRECT ANSWERS WITH RATIONALES || 100% GUARANTEED PASS LATEST UPDATED VERSION GRADED A+

Rating
-
Sold
-
Pages
61
Grade
A+
Uploaded on
14-03-2026
Written in
2025/2026

WGU Course C841 - Legal Issues in Information Security actual EXAM STUDY GUIDE COMPLETE QUESTIONS AND CORRECT ANSWERS WITH RATIONALES || 100% GUARANTEED PASS LATEST UPDATED VERSION GRADED A+ The District of Columbia and 45 states have enacted breach notification laws, which require an organization to notify state residents if it experiences a security breach that involves the personal information of the residents. Which group of four states does not have a breach notification law? A Alabama, Kentucky, New Mexico, and South Dakota B Alabama, Kentucky, New Mexico, and Wisconsin C Alabama, Arizona, New Mexico, and South Dakota D Alabama, Kentucky, West Virginia, and South Dakota - Answer ️A ___________________ are money awards that compensate the non-breaching party for the foreseeable damages that arise from circumstances outside of the contract and can't be mitigated. A Nominal damages B Compensatory damages C Consequential damages D Liquidated damages - Answer ️C The U.S. Cabinet consists of: A the vice president and the nine Supreme Court justices B the Speaker of the House, the vice president, and the president C the vice president and the heads of the 15 executive departments D the nine Supreme Court justices and the heads of the 15 executive departments - Answer ️C The main goal of ______________ is to protect shareholders and investors from financial fraud. A Public Company Accounting Oversight Board B Sarbanes-Oxley Act (SOX) C Gramm-Leach-Bliley Act D Securities and Exchange Commission - Answer ️B Which doctrine prevents the government from using illegally gathered evidence at a criminal trial? A Locard's Exchange B Fruit of the Poisonous Tree C Doctrine of Precedent D Daubert - Answer ️B In January 2007, TJX disclosed that hackers had breached its credit card systems. The company reported that the attackers might have accessed credit card data going back to 2002. It reported that 45.7 million credit and debit card numbers might have been disclosed. At the time, the breach was believed to be the largest ever. Banks and customers sued TJX in connection with the breach. State governments also sued the company for failing to protect the credit card information of state residents. Given the nature of this breach, which federal agency opened an investigation? A the Federal Deposit Insurance Corporation B the Consumer Financial Protection Bureau C the Federal Trade Commission D the Federal Reserve System - Answer ️C ______________________ includes identification of the threats and vulnerabilities to the organization's IT resources and determining the impact of those threats and vulnerabilities. A Risk assessment B Risk response C Operational planning D Security planning - Answer ️A Under SEC rules, internal controls over financial reporting (ICFR) are processes that provide reasonable assurance that financial reports are reliable. Which of the following is not assured by ICFR? A Unauthorized acquisition or use of data or assets that could affect financial statements will be prevented or detected in a timely manner. B IT controls that contain financial data are maintained. C Financial reports, records, and data are accurately maintained. D Transactions are prepared according to GAAP rules and are properly recorded. - Answer ️B The HIPAA ______________________ states how covered entities must protect the confidentiality, integrity, and availability of electronic personal health information. A Security Rule B Red Flag Rule C Administrative Simplification Rule D Privacy Rule - Answer ️A _____________________ refers to the purchase of application services over the Internet. A Cloud computing B Software as a Service (SaaS) C Social media D Specific performance - Answer ️B What is PIA? A Personal Impact Amendment B Personal Information Act C Private Information Act D Privacy Impact Assessment - Answer ️D The __________________ was created after a security breach at a state-operated data facility. A New York Database Security Breach Notification Act B Texas Database Security Breach Notification Act C Utah Database Security Breach Notification Act D California Database Security Breach Notification Act - Answer ️D A _____________ is a method of controlled entry into a facility and provides access to secure areas such as a research lab or data center. A key-card B mantrap C video surveillance system D technical safeguard - Answer ️B COBRA benefits generally last a maximum of: A 6 months B 1 year C 2 years D 18 months - Answer ️D Any organization's risk management plan includes: A risk assessment, ISO compliance, tactical planning, and continuous monitoring B risk assessment, risk response, ISO compliance, FISMA compliance C risk assessment, risk response, tactical planning, FISMA compliance D risk assessment, risk response, training employees, and continuous monitoring - Answer ️D A board of directors uses _____________ to set forth its information security plans. A policies B financial statements C standards D goals - Answer ️A The mission of the _____________________ is to protect consumers and to make sure that business is competitive by eliminating practices harmful to business. A National Credit Union Administration (NCUA) B Federal Financial Institutions Examination Council (FFIEC) C Federal Trade Commission (FTC)

Show more Read less
Institution
WGU Course C841
Course
WGU Course C841

Content preview

WGU Course C841 - Legal Issues in Information
Security actual EXAM STUDY GUIDE
COMPLETE QUESTIONS AND CORRECT
ANSWERS WITH RATIONALES || 100%
GUARANTEED PASS LATEST UPDATED
VERSION GRADED A+


The District of Columbia and 45 states have enacted breach notification laws,
which require an organization to notify state residents if it experiences a security
breach that involves the personal information of the residents. Which group of four
states does not have a breach notification law?


A Alabama, Kentucky, New Mexico, and South Dakota
B Alabama, Kentucky, New Mexico, and Wisconsin
C Alabama, Arizona, New Mexico, and South Dakota
D Alabama, Kentucky, West Virginia, and South Dakota - Answer A


___________________ are money awards that compensate the non-breaching
party for the foreseeable damages that arise from circumstances outside of the
contract and can't be mitigated.


A Nominal damages
B Compensatory damages
C Consequential damages
D Liquidated damages - Answer C

,The U.S. Cabinet consists of:


A the vice president and the nine Supreme Court justices
B the Speaker of the House, the vice president, and the president
C the vice president and the heads of the 15 executive departments
D the nine Supreme Court justices and the heads of the 15 executive departments -
Answer C


The main goal of ______________ is to protect shareholders and investors from
financial fraud.


A Public Company Accounting Oversight Board
B Sarbanes-Oxley Act (SOX)
C Gramm-Leach-Bliley Act
D Securities and Exchange Commission - Answer B


Which doctrine prevents the government from using illegally gathered evidence at
a criminal trial?


A Locard's Exchange
B Fruit of the Poisonous Tree
C Doctrine of Precedent
D Daubert - Answer B

,In January 2007, TJX disclosed that hackers had breached its credit card systems.
The company reported that the attackers might have accessed credit card data
going back to 2002. It reported that 45.7 million credit and debit card numbers
might have been disclosed. At the time, the breach was believed to be the largest
ever. Banks and customers sued TJX in connection with the breach. State
governments also sued the company for failing to protect the credit card
information of state residents. Given the nature of this breach, which federal
agency opened an investigation?


A the Federal Deposit Insurance Corporation
B the Consumer Financial Protection Bureau
C the Federal Trade Commission
D the Federal Reserve System - Answer C


______________________ includes identification of the threats and vulnerabilities
to the organization's IT resources and determining the impact of those threats and
vulnerabilities.


A Risk assessment
B Risk response
C Operational planning
D Security planning - Answer A


Under SEC rules, internal controls over financial reporting (ICFR) are processes
that provide reasonable assurance that financial reports are reliable. Which of the
following is not assured by ICFR?


A

, Unauthorized acquisition or use of data or assets that could affect financial
statements will be prevented or detected in a timely manner.
B
IT controls that contain financial data are maintained.
C
Financial reports, records, and data are accurately maintained.
D
Transactions are prepared according to GAAP rules and are properly recorded. -
Answer B


The HIPAA ______________________ states how covered entities must protect
the confidentiality, integrity, and availability of electronic personal health
information.


A Security Rule
B Red Flag Rule
C Administrative Simplification Rule
D Privacy Rule - Answer A


_____________________ refers to the purchase of application services over the
Internet.


A Cloud computing
B Software as a Service (SaaS)
C Social media
D Specific performance - Answer B

Written for

Institution
WGU Course C841
Course
WGU Course C841

Document information

Uploaded on
March 14, 2026
Number of pages
61
Written in
2025/2026
Type
Exam (elaborations)
Contains
Questions & answers

Subjects

$16.89
Get access to the full document:

Wrong document? Swap it for free Within 14 days of purchase and before downloading, you can choose a different document. You can simply spend the amount again.
Written by students who passed
Immediately available after payment
Read online or as PDF

Get to know the seller
Seller avatar
TutorEric

Get to know the seller

Seller avatar
TutorEric Teachme2-tutor
View profile
Follow You need to be logged in order to follow users or courses
Sold
1
Member since
1 year
Number of followers
0
Documents
107
Last sold
10 months ago
ACADEMIC HUB

As a professional tutor, I provide high-quality academic support in Nursing, Psychology, Business, Sciences, and Mathematics. We provide scholarly assignments, research support, revision materials, and exam preparation, helping students achieve excellent grades through accurate, timely, and standards-based academic assistance.

0.0

0 reviews

5
0
4
0
3
0
2
0
1
0

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

Student with book image

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Working on your references?

Create accurate citations in APA, MLA and Harvard with our free citation generator.

Working on your references?

Frequently asked questions