Latest Update | Graded A+
1. Describe the significance of NIST SP 800-92 in the context of computer
security.
NIST SP 800-92 outlines the requirements for data encryption in cloud
services.
NIST SP 800-92 details the standards for physical security in data
centers.
NIST SP 800-92 focuses on user authentication protocols for secure
access.
NIST SP 800-92 provides guidelines for effectively managing
security logs, which are crucial for monitoring and responding to
security incidents.
2. Describe the responsibilities associated with the role of a data custodian in
the context of data management.
A data custodian creates data policies and determines data access
rights.
A data custodian designs the data architecture and infrastructure.
A data custodian analyzes data trends and generates reports.
A data custodian is responsible for the daily maintenance and
administration of data, ensuring its integrity and security.
3. In a scenario where a company needs to store large volumes of multimedia
files, which storage type would be the most efficient choice and why?
File storage, because it is easier to manage for small files.
, Object-based storage, because it efficiently handles unstructured
data and includes metadata for better organization.
Traditional storage, because it is more cost-effective for large
volumes.
Block storage, because it provides faster access times for multimedia
files.
4. What is data portability in a cloud environment?
The ability to move between environments with a USB device
The transfer of data between two cloud providers
I DON'T KNOW YET
The organization is dependent on a data platform
Taking reasonable precautions to prevent the risk of data loss
5. Describe the main objective of FERPA in relation to student records.
FERPA establishes guidelines for educational curriculum.
FERPA mandates the sharing of student records with parents.
FERPA regulates the funding of educational institutions.
FERPA aims to protect the privacy of student education records.
6. What is PIPEDA?
Animal Protection Program
Canadian Federal Privacy Law
A type of bread people use to eat hummus
People in protesting evaluating dream animations
,7. What does IaaS stand for in the context of cloud service models?
Interface as a Service
Information as a Service
Integration as a Service
Infrastructure as a Service
8. Which of the following is a set of exclusive rights granted by a state to an
inventor or his assignee for a fixed period of time in exchange for the
disclosure of an invention?
Copyright
Patent
Trademark
Trade secret
9. What are the two main changes introduced by the HITECH Act concerning
HIPAA compliance?
Reduced penalties for HIPAA non-compliance and eliminated breach
notification requirements.
Created a new regulatory body for HIPAA compliance and reduced
patient rights.
Increased penalties for HIPAA non-compliance and established
breach notification requirements.
Increased funding for HIPAA enforcement and established new
privacy regulations.
10. The overarching goal of this role is to create and maintain software that is
reliable and scalable. To achieve this, software engineering approaches are
, used to solve operational problems and automate operation tasks.
DevOps Engineer
Full-Stack Developer
DevSecOps Engineer
Site Reliability Engineer (SRE)
11. Describe how the principle of 'Covering the Enterprise End-to-End'
contributes to IT governance in the COBIT framework.
It ensures that all aspects of the enterprise are considered in
governance, promoting comprehensive oversight.
It separates IT governance from business objectives.
It emphasizes the importance of management over governance.
It focuses solely on financial aspects of governance.
12. How does ISO/IEC 27002 relate to ISO/IEC 27001 in the context of
information security?
ISO/IEC 27002 focuses solely on data protection laws.
ISO/IEC 27002 outlines the requirements for ISO/IEC 27001
certification.
ISO/IEC 27002 supports compliance with ISO/IEC 27001 by
providing best practices for information security controls.
ISO/IEC 27002 is unrelated to ISO/IEC 27001.
13. Describe the significance of an EAL rating in the context of IT product
security.
An EAL rating determines the market price of an IT product.