| High-Yield OA Review, Questions & Study Guide
| Expert Guarantee and 100% Accurate |
Frequently Most Tested Questions ,Well
Rationalized , Latest Exam and Newest Version!!!
What is information security (InfoSec)?
Correct Answer:
The practice of protecting information from unauthorized access, disclosure,
disruption, destruction, or modification.
What is the goal of information security?
Correct Answer:
To preserve confidentiality, integrity, and availability of information.
What are the three principles of the CIA triad?
Correct Answer:
Confidentiality, Integrity, Availability.
What is a transaction log used for?
Correct Answer:
Preserving and restoring data integrity.
If a user can view data but not modify it, which principle is being enforced?
Correct Answer:
Integrity.
What does confidentiality ensure?
Correct Answer:
,Information is only disclosed or accessible to authorized users.
Which CIA principle is violated when sensitive data is leaked?
Correct Answer:
Confidentiality.
Which CIA principle is violated when data is emailed to the wrong recipient?
Correct Answer:
Confidentiality.
Which CIA principle is violated when patient records are posted publicly?
Correct Answer:
Confidentiality.
Name common confidentiality controls.
Correct Answer:
Encryption, authentication, access controls, policies, training, physical locks.
Does encryption primarily protect confidentiality, integrity, or availability?
Correct Answer:
Confidentiality.
Is accidental disclosure a confidentiality breach?
Correct Answer:
Yes.
What does integrity ensure?
Correct Answer:
Information cannot be modified in an unauthorized manner.
Which CIA principle is violated when data is altered without permission?
Correct Answer:
Integrity.
Which CIA principle is violated when malware corrupts a file?
Correct Answer:
,Integrity.
What security mechanism detects unauthorized data changes?
Correct Answer:
Hashing.
Do digital signatures protect integrity, confidentiality, or availability?
Correct Answer:
Integrity.
What does availability ensure?
Correct Answer:
Authorized users can access information when needed.
Which CIA principle is violated during a denial-of-service attack?
Correct Answer:
Availability.
Which CIA principle is violated when a website is down?
Correct Answer:
Availability.
What controls improve availability?
Correct Answer:
Redundancy, backups, load balancing, RAID, failover systems.
What security control distributes traffic to prevent outages?
Correct Answer:
Load balancer.
Does RAID primarily support confidentiality, integrity, or availability?
Correct Answer:
Availability.
What is a data breach?
Correct Answer:
, The unauthorized release, disclosure, or access of PII or non-public information.
Does a blocked attack count as a data breach?
Correct Answer:
No.
Is a lost laptop containing unencrypted PII a data breach?
Correct Answer:
Yes.
Is leaving a printed list of SSNs in public a data breach?
Correct Answer:
Yes.
Is stealing blank paper a data breach?
Correct Answer:
No.
Name common causes of data breaches.
Correct Answer:
Malicious attacks, lost devices, employee negligence, policy failures.
What is a data breach response policy?
Correct Answer:
A high-level statement defining how an organization responds to breaches.
What is a data breach response plan?
Correct Answer:
A framework for implementing the breach response policy.
What are breach response procedures?
Correct Answer:
Step-by-step instructions to execute the response plan.
What is the correct order: policy, plan, or procedure?
Correct Answer: