Cybersecurity Final Exam 2023 with complete solutions

Cybersecurity correct answersThe art of protecting networks, devices, and data from unauthorized access or criminal use and the practice of ensuring confidentiality, integrity, and availability of information. Business Continuity Planning (BCP) correct answersHow a business will continue operating during an unplanned disruption in service. It may provide detailed strategies on how business operations can be maintained for both short-term and long-term outages. Data Breach correct answersThe unlawful and unauthorized acquisition of personal information that compromises the security, confidentiality, or integrity of personal information. Computer Fraud and Abuse Act (CFAA) correct answersThe act that prohibits intentionally accessing a computer without authorization, and was drafted to combat various forms of "computer crime." At that time, this was largely understood to cover "hacking or trespassing into computer systems or data." It came about after President Regan had watched "War Games and had asked if someone could break into their most sensitive computers. GLBA - Gramm-Leach-Bliley Act correct answersDirected toward financial institutions, where organizations are fined up to $100,000 for each violation of this law, and the officers and directors of the organization may be fined up to $10,000 personally. Individual may also face up to 5 years in prison. HIPAA - Health Insurance Portability and Accountability Act (HIPAA) correct answersDirected toward healthcare providers, health insurers, doctors' offices and any entity that handles patient information. The fine for breaking this act is calculated based on the number of medical records exposed, with fines ranging from $50-$50,000 per record. Fines are capped at $1.5 million per year, but organizations may receive the maximum fine for multiple years. Violators may even face prison time ranging from 1-10 years. Patriot Act correct answersThis act grants law enforcement new powers to detect and prevent terrorism. Compliance with the Act is now an essential aspect of doing business. All businesses should have mechanisms in place to identify and properly report" suspicious transactions," currency transactions in excess of $10,000, and people or entities listed on any of the "watch lists."