ITSY 1300 Final EXAM Questions with 100% Correct
Answers 2025 | 2026
_____ is a hybrid cryptosystem that combines some of the best
available cryptographic algorithms and has become the open-
source de facto standard for encryption and authentication of
e-mail and file storage applications. - ANSWER PGP
"Knowing yourself" means identifying, examining and
understanding the threats facing the organization's information
assets. - ANSWER False
The Organization should adopt naming standards that do not
convey information to potential system attackers. - ANSWER
True
Risk Mitigation is the process of assigning a risk rating or score
to each information asset. - ANSWER False
Exposure factor is the expected percentage of loss that would
occur from a particular attack - ANSWER True
, ______is the quantity and nature of risk that organizations are
willing to accept as they evaluate the trade-offs between
perfect security and unlimited accessibility. - ANSWER Risk
appetite
Understanding the ____ context means understanding the
impacts of elements such as the business environment, the
legal/regulatory/compliance environment, as well as the threat
environment. - ANSWER External
A threat _____ is an evaluation of the threats to information
assets, including a determination of their likelihood of
occurrence and potential impact of an attack. - ANSWER
Assessment
The probability that a specific vulnerability within an
organization will be attacked by a threat is known as a_____. -
ANSWER Likelihood
_____ risk treatment is a strategy to do nothing to protect a
vulnerability and to accept the outcome of its exploitation. -
ANSWER Acceptance
Answers 2025 | 2026
_____ is a hybrid cryptosystem that combines some of the best
available cryptographic algorithms and has become the open-
source de facto standard for encryption and authentication of
e-mail and file storage applications. - ANSWER PGP
"Knowing yourself" means identifying, examining and
understanding the threats facing the organization's information
assets. - ANSWER False
The Organization should adopt naming standards that do not
convey information to potential system attackers. - ANSWER
True
Risk Mitigation is the process of assigning a risk rating or score
to each information asset. - ANSWER False
Exposure factor is the expected percentage of loss that would
occur from a particular attack - ANSWER True
, ______is the quantity and nature of risk that organizations are
willing to accept as they evaluate the trade-offs between
perfect security and unlimited accessibility. - ANSWER Risk
appetite
Understanding the ____ context means understanding the
impacts of elements such as the business environment, the
legal/regulatory/compliance environment, as well as the threat
environment. - ANSWER External
A threat _____ is an evaluation of the threats to information
assets, including a determination of their likelihood of
occurrence and potential impact of an attack. - ANSWER
Assessment
The probability that a specific vulnerability within an
organization will be attacked by a threat is known as a_____. -
ANSWER Likelihood
_____ risk treatment is a strategy to do nothing to protect a
vulnerability and to accept the outcome of its exploitation. -
ANSWER Acceptance
