CISM ISACA DEFINITIONS

Acceptable interruption window CORRECT ANSWER The maximum period of time that a system can be unavailable before compromising the achievement of the enterprise's business objectives. Acceptable use policy CORRECT ANSWER A policy that establishes an agreement between users and the enterprise that defines, for all parties, the ranges of use that are approved before gaining access to a network or the Internet Access control CORRECT ANSWER The processes, rules and deployment mechanisms that control access to information systems, resources and physical access to premises Access Path CORRECT ANSWER The logical route that an end user takes to access computerized information. Access Rights CORRECT ANSWER The permission or privileges granted to users, programs or workstations to create, change, delete or view data and files within a system, as defined by rules established by data owners and the information security policy Accountability CORRECT ANSWER he ability to map a given activity or event back to the responsible party Administrative Control CORRECT ANSWER The rules, procedures and practices dealing with operational effectiveness, efficiency and adherence to regulations and management policies. Advanced Encryption CORRECT ANSWER A public algo