HS 155 Final (Chapter 11) Exam With
Complete Solutions
The general management community of interest must work with information security
professionals to integrate solid information security concepts into the personnel
management practices of the organization. - ANSWER True
The information security function cannot be placed within protective services. - ANSWER
False
In many organizations, information security teams lack established roles and
responsibilities. - ANSWER True
In most cases, organizations look for a technically qualified information security
generalist who has a solid understanding of how an organization operates. - ANSWER
True
The use of standard job descriptions can increase the degree of professionalism in the
information security field. - ANSWER True
"Builders" in the field of information security provide day-to-day systems monitoring and
use to support an organization's goals and objectives. - ANSWER False
Security managers are accountable for the day-to-day operation of the information
, security program. - ANSWER True
The security manager position is much more general than that of the CISO. - ANSWER
False
The position of security technician can be offered as an entry-level position. - ANSWER
True
Existing information security-related certifications are typically well understood by those
responsible for hiring in organizations. - ANSWER False
The CISSP-ISSEP concentration focuses on the knowledge areas that are part of
enterprise security management. - ANSWER False
The CISSP concentrations are available for CISSPs to demonstrate knowledge that is
already a part of the CISSP CBK. - ANSWER Flase
The SSCP examination is much more rigorous than the CISSP examination. - ANSWER
False
CompTIA offers a vendor-specific certification program called the Security+ certification.
- ANSWER False
The advice "Know more than you say, and be more skillful than you let on" for
Complete Solutions
The general management community of interest must work with information security
professionals to integrate solid information security concepts into the personnel
management practices of the organization. - ANSWER True
The information security function cannot be placed within protective services. - ANSWER
False
In many organizations, information security teams lack established roles and
responsibilities. - ANSWER True
In most cases, organizations look for a technically qualified information security
generalist who has a solid understanding of how an organization operates. - ANSWER
True
The use of standard job descriptions can increase the degree of professionalism in the
information security field. - ANSWER True
"Builders" in the field of information security provide day-to-day systems monitoring and
use to support an organization's goals and objectives. - ANSWER False
Security managers are accountable for the day-to-day operation of the information
, security program. - ANSWER True
The security manager position is much more general than that of the CISO. - ANSWER
False
The position of security technician can be offered as an entry-level position. - ANSWER
True
Existing information security-related certifications are typically well understood by those
responsible for hiring in organizations. - ANSWER False
The CISSP-ISSEP concentration focuses on the knowledge areas that are part of
enterprise security management. - ANSWER False
The CISSP concentrations are available for CISSPs to demonstrate knowledge that is
already a part of the CISSP CBK. - ANSWER Flase
The SSCP examination is much more rigorous than the CISSP examination. - ANSWER
False
CompTIA offers a vendor-specific certification program called the Security+ certification.
- ANSWER False
The advice "Know more than you say, and be more skillful than you let on" for
