ITSY 1300 Exam 1 Review – Questions With Proven
Solutions
Save
Practice questions for this set
Learn 1 /7 Study with Learn
Product costs, implementation costs, compatibility costs, environmental costs,
testing costs, productivity impact.
Choose an answer
1 Factors of evaluating countermeasures 2 What is unauthorized access?
3 Integrity 4 Gramm-Leach-Bliley Act (GLBA)
Don't know?
Terms in this set (159)
Unauthorized access is the ability or act of getting onto
a system without permission, or having greater access
What is unauthorized to the system than you should (for instance, by getting
access? someone's user ID and password). Getting onto a
system you shouldn't means getting access to data you
shouldn't.
, Passed in 2002, SOX requires publicly traded companies
to submit accurate and reliable financial reporting. This
Sarbanes-Oxley Act(SOX) law does not require securing private information, but it
does require security controls to protect the
confidentiality and integrity of the reporting itself.
Health Insurance Portability Passed in 1996, HIPAA requires health care
and Accountability Act organizations to implement security and privacy
(HIPAA) controls to ensure patient privacy.
Federal Information Passed in 2002, FISMA requires federal civilian agencies
Security Management Act to provide security controls over resources that support
(FISMA) federal operations.
Passed in 1999, GLBA requires all types of financial
Gramm-Leach-Bliley Act
institutions to protect customers' private financial
(GLBA)
information.
Passed in 2000 and updated in 2011, CIPA requires
Children's Internet
public schools and public libraries to use an Internet
Protection Act (CIPA)
safety policy.
Family Educational Rights Passed in 1974, FERPA protects the private data of
and Privacy Act (FERPA) students and their school records.
Although not a law, PCI DSS v3.2.1, released in 2018 as
the latest update to this 2004 industry standard, affects
any organization that processes or stores credit card
information. The founding payment brands of the PCI
Security Standards Council—American Express,
Payment Card Industry
Discover Financial Services, JCB, MasterCard
Data Security Standard
Worldwide, and Visa International—developed PCI DSS
(PCI DSS)
v3.2.1 to foster consistent global data security measures.
The PCI DSS v3.2.1 is a comprehensive security standard
that includes requirements for security management,
policies, procedures, network architecture, software
design, and other critical protective measures.
Something an organization does to help reduce risk.
Examples will vary, including security awareness
Security Controls training, IT security policy frameworks, layered security
solution for IT infrastructure, periodic security risk
assessments, enabling monitoring, and so forth.
Physical elements of LAN network interface controller, ethernet LAN, and UTP
domain cabling.
Solutions
Save
Practice questions for this set
Learn 1 /7 Study with Learn
Product costs, implementation costs, compatibility costs, environmental costs,
testing costs, productivity impact.
Choose an answer
1 Factors of evaluating countermeasures 2 What is unauthorized access?
3 Integrity 4 Gramm-Leach-Bliley Act (GLBA)
Don't know?
Terms in this set (159)
Unauthorized access is the ability or act of getting onto
a system without permission, or having greater access
What is unauthorized to the system than you should (for instance, by getting
access? someone's user ID and password). Getting onto a
system you shouldn't means getting access to data you
shouldn't.
, Passed in 2002, SOX requires publicly traded companies
to submit accurate and reliable financial reporting. This
Sarbanes-Oxley Act(SOX) law does not require securing private information, but it
does require security controls to protect the
confidentiality and integrity of the reporting itself.
Health Insurance Portability Passed in 1996, HIPAA requires health care
and Accountability Act organizations to implement security and privacy
(HIPAA) controls to ensure patient privacy.
Federal Information Passed in 2002, FISMA requires federal civilian agencies
Security Management Act to provide security controls over resources that support
(FISMA) federal operations.
Passed in 1999, GLBA requires all types of financial
Gramm-Leach-Bliley Act
institutions to protect customers' private financial
(GLBA)
information.
Passed in 2000 and updated in 2011, CIPA requires
Children's Internet
public schools and public libraries to use an Internet
Protection Act (CIPA)
safety policy.
Family Educational Rights Passed in 1974, FERPA protects the private data of
and Privacy Act (FERPA) students and their school records.
Although not a law, PCI DSS v3.2.1, released in 2018 as
the latest update to this 2004 industry standard, affects
any organization that processes or stores credit card
information. The founding payment brands of the PCI
Security Standards Council—American Express,
Payment Card Industry
Discover Financial Services, JCB, MasterCard
Data Security Standard
Worldwide, and Visa International—developed PCI DSS
(PCI DSS)
v3.2.1 to foster consistent global data security measures.
The PCI DSS v3.2.1 is a comprehensive security standard
that includes requirements for security management,
policies, procedures, network architecture, software
design, and other critical protective measures.
Something an organization does to help reduce risk.
Examples will vary, including security awareness
Security Controls training, IT security policy frameworks, layered security
solution for IT infrastructure, periodic security risk
assessments, enabling monitoring, and so forth.
Physical elements of LAN network interface controller, ethernet LAN, and UTP
domain cabling.
