ITSY 1300-
//
29001 /
Fundamentals
/ /
of
/ /
Information
/ /
Security Exam Questions With Correct Answers
/ // // // // //
What //is //unauthorized //access, //and //how //can //it //lead //to //data //breaches?
is /
/when /
/an /
/attacker /
/gains /
/your /
/authorized /
/access. //It //allows //the //attacker //access //to //everything //that //access //would //have //access //to.
SOX //(Sarbanes-Oxley //Act)
this //law //regulates //the //financial //practice //and //governance //of //corporations
HIPAA
The /
/Health //Insurance //Portability //and //Accountability //Act, //a //federal //law //protecting //the //privacy
//of //patient-
specific /
/health /
,/care /
/information /
/and /
/providing //the //patient //with //control //over //how //this //information //is //used //and //distributed.
FISMA
federal /
/info /
/security /
/management /
/act //- /
/US //law //requires //federal //agencies //to //create, //document //and //implement //security //program
GLBA
"Graham-Leach-
Bliley /
/Act" /
/(Financial /
/Services /
/Modernization /
/Act /
/of /
/1999) /
/repealed //
a/
/1933 /
/law /
/that /
/barred /
/the /
/consolidation /
/of /
,/financial /
/institutions /
/and /
/insurance //companies. //Included //within //GLBA //are //multiple //sections //relating //to //the //privacy
//of /
/financial /
/information. /
/Companies /
/must /
/provide /
/written /
/notice /
/to /
/consumers /
/of //their //privacy //rights //and //explain //the //company's //procedures //for //safeguarding //data.
PCI //DSS
Payment /
/Card /
/Industry /
/Data /
/Security /
/Standard, //
a/
/security /
/standard //created //by //the //Payment //Card //Industry //Security //Standards //Council //(PCI //SSC)
FERPA
1974 /
/Family /
/Educational /
/Rights /
, /and /
/Privacy /
/Act /
/(Buckley /
/Amendment). /
/Assures /
/confidentiality /
/of /
/student /
/records. /
/Parents /
/are /
/afforded /
/rights /
/to /
/examine, //review, //request //changes //if //inaccurate, //and //stipulate //person //who //has //access.
CIPA
Children's //Internet //Protection //Act //(2001)
The /
/law /
/places /
/restrictions /
/on /
/the /
/use /
/of /
/funding /
/that /
/is /
/available //through //the //Library //Services //and //Technology //Act //(LSTA) //of //the //Elementary //and
//Secondary /
/Education //Act //(ESEA), //and //on //the //Universal //Service //discount //program //known //as //the //E-
rate //(discounts //for //Internet //access //or //internal //connections).
//
29001 /
Fundamentals
/ /
of
/ /
Information
/ /
Security Exam Questions With Correct Answers
/ // // // // //
What //is //unauthorized //access, //and //how //can //it //lead //to //data //breaches?
is /
/when /
/an /
/attacker /
/gains /
/your /
/authorized /
/access. //It //allows //the //attacker //access //to //everything //that //access //would //have //access //to.
SOX //(Sarbanes-Oxley //Act)
this //law //regulates //the //financial //practice //and //governance //of //corporations
HIPAA
The /
/Health //Insurance //Portability //and //Accountability //Act, //a //federal //law //protecting //the //privacy
//of //patient-
specific /
/health /
,/care /
/information /
/and /
/providing //the //patient //with //control //over //how //this //information //is //used //and //distributed.
FISMA
federal /
/info /
/security /
/management /
/act //- /
/US //law //requires //federal //agencies //to //create, //document //and //implement //security //program
GLBA
"Graham-Leach-
Bliley /
/Act" /
/(Financial /
/Services /
/Modernization /
/Act /
/of /
/1999) /
/repealed //
a/
/1933 /
/law /
/that /
/barred /
/the /
/consolidation /
/of /
,/financial /
/institutions /
/and /
/insurance //companies. //Included //within //GLBA //are //multiple //sections //relating //to //the //privacy
//of /
/financial /
/information. /
/Companies /
/must /
/provide /
/written /
/notice /
/to /
/consumers /
/of //their //privacy //rights //and //explain //the //company's //procedures //for //safeguarding //data.
PCI //DSS
Payment /
/Card /
/Industry /
/Data /
/Security /
/Standard, //
a/
/security /
/standard //created //by //the //Payment //Card //Industry //Security //Standards //Council //(PCI //SSC)
FERPA
1974 /
/Family /
/Educational /
/Rights /
, /and /
/Privacy /
/Act /
/(Buckley /
/Amendment). /
/Assures /
/confidentiality /
/of /
/student /
/records. /
/Parents /
/are /
/afforded /
/rights /
/to /
/examine, //review, //request //changes //if //inaccurate, //and //stipulate //person //who //has //access.
CIPA
Children's //Internet //Protection //Act //(2001)
The /
/law /
/places /
/restrictions /
/on /
/the /
/use /
/of /
/funding /
/that /
/is /
/available //through //the //Library //Services //and //Technology //Act //(LSTA) //of //the //Elementary //and
//Secondary /
/Education //Act //(ESEA), //and //on //the //Universal //Service //discount //program //known //as //the //E-
rate //(discounts //for //Internet //access //or //internal //connections).
