UTK INMT 341 FINAL EXAM WITH
CORRECT ACTUAL QUESTIONS AND
CORRECTLY WELL DEFINED ANSWERS
LATEST ALREADY GRADED A+ 2025 – 2026
Access Control List (ACL) - ANSWERS-internal computerized
table of access rules (permissions) regarding the levels of
computer access permitted to logon IDs and computer
terminals.
Change Management - ANSWERS-The process of monitoring
change requests, approving changes, documenting changes,
testing changes, scheduling changes, implementing and
following up on changes
Router - ANSWERS-A packet is a unit that travels over a
network and contains both routing information and data
,Hub - ANSWERS-A common connection point for devices in
a network, hubs are used to connect segments of a local
area network
DMZ (demilitarized zone) - ANSWERS-A sub-network that
separates an internal local area network from other
untrusted networks, usually the Internet.
Different Types of Risk - ANSWERS-1. Enterprise (Business)
Risk
- any risk that could potentially affect business objectives
2. I&T Risk
- IT-related risk that could potentially impact the business
3. Audit Risk
- the risk that an auditor has expressed an inappropriate
opinion
Vulnerability - ANSWERS-Weakness or flaw in an
information asset/system (infrastructure, networks, or
applications) that potentially exposes an entity to threats
- Examples: lack of user knowledge, lack of security
functionality, no user awareness, etc
, Threats/Threat Actors - ANSWERS-Threat Actors: entities
who can create/pose a threat
Threat: an event or condition that has the potential for
causing asset loss and or undesirable consequences or
impact (accidental, intentional, internal or external)
Examples: destruction, disclosure, errors, fraud, intrusion,
theft, etc
Risk, Threat, and Vulnerabilities - ANSWERS-Risk = Threat
Likelihood/Probability * Potential Impact/Loss
Risk = Threat * Vulnerability
Enterprise Risk Management (ERM) - ANSWERS-A process
designed to identify potential events that may affect the
entity, manage risk to be within its appetite, to provide
reasonable assurance regarding the achievement of entity
objectives
IT Risk - ANSWERS-The potential for an unplanned, negative
business outcome involving the failure or misuse of IT
CORRECT ACTUAL QUESTIONS AND
CORRECTLY WELL DEFINED ANSWERS
LATEST ALREADY GRADED A+ 2025 – 2026
Access Control List (ACL) - ANSWERS-internal computerized
table of access rules (permissions) regarding the levels of
computer access permitted to logon IDs and computer
terminals.
Change Management - ANSWERS-The process of monitoring
change requests, approving changes, documenting changes,
testing changes, scheduling changes, implementing and
following up on changes
Router - ANSWERS-A packet is a unit that travels over a
network and contains both routing information and data
,Hub - ANSWERS-A common connection point for devices in
a network, hubs are used to connect segments of a local
area network
DMZ (demilitarized zone) - ANSWERS-A sub-network that
separates an internal local area network from other
untrusted networks, usually the Internet.
Different Types of Risk - ANSWERS-1. Enterprise (Business)
Risk
- any risk that could potentially affect business objectives
2. I&T Risk
- IT-related risk that could potentially impact the business
3. Audit Risk
- the risk that an auditor has expressed an inappropriate
opinion
Vulnerability - ANSWERS-Weakness or flaw in an
information asset/system (infrastructure, networks, or
applications) that potentially exposes an entity to threats
- Examples: lack of user knowledge, lack of security
functionality, no user awareness, etc
, Threats/Threat Actors - ANSWERS-Threat Actors: entities
who can create/pose a threat
Threat: an event or condition that has the potential for
causing asset loss and or undesirable consequences or
impact (accidental, intentional, internal or external)
Examples: destruction, disclosure, errors, fraud, intrusion,
theft, etc
Risk, Threat, and Vulnerabilities - ANSWERS-Risk = Threat
Likelihood/Probability * Potential Impact/Loss
Risk = Threat * Vulnerability
Enterprise Risk Management (ERM) - ANSWERS-A process
designed to identify potential events that may affect the
entity, manage risk to be within its appetite, to provide
reasonable assurance regarding the achievement of entity
objectives
IT Risk - ANSWERS-The potential for an unplanned, negative
business outcome involving the failure or misuse of IT
