CISSPandSSCPOpenStudyGROUPOnlineQuizzerQuestion123|Difficultylevel:3/5|Relevancy:3/31.Whoshouldmeasuretheeffectivenessofsecurityrelatedcontrolsinanorganization?thelocalsecurityspecialistthebusinessmanagerthesystemsauditorthecentralsecuritymanagerYoudidnotprovideanyanswertothisquestion.Pleasereviewdetailsbelow.DetailsSubmitacommentonthisquestionInformationsystemsauditorsareresponsibleforprovidingreportstotheseniormanagementontheeffectivenessofthesecuritycontrols.Source:KRUTZ,RonaldL.&VINES,RusselD.,TheCISSPPrepGuide:MasteringtheTenDomainsofComputerSecurity,JohnWiley&Sons,2001,Chapter1:SecurityManagementPractices(page14).Contributor:BrianKangStudyarea:CISSPCBKdomain#3-SecurityManagementPracticesCoveredtopic:SecuritymanagementpracticesandplanningThisquestion©Copyright2003cccure.org.Allrightsreserved.Nounauthorizeduseorduplicationwithoutexplicitwrittenpermissionofauthorandofcccure.org.Question966|Difficultylevel:1/5|Relevancy:3/32.WhichofthefollowingchoicesisNOTpartofasecuritypolicy?definitionofoverallstepsofinformationsecurityandtheimportanceofsecuritystatementofmanagementintend,supportingthegoalsandprinciplesofinformationsecuritydefinitionofgeneralandspecificresponsibilitiesforinformationsecuritymanagementdescriptionofspecifictechnologiesusedinthefieldofinformationsecurityYoudidnotprovideanyanswertothisquestion.Pleasereviewdetailsbelow.DetailsSubmitacommentonthisquestionSource:BS7799:1999Part2:Specificationforinformationsecuritymanagementsystems.Contributor:KarinBrabcovaStudyarea:CISSPCBKdomain#3-SecurityManagementPracticesCoveredtopics(2):Securitypolicies,Policies,standards,guidelinesandproceduresThisquestion©Copyright2003KarinBrabcova,cccure.org.Allrightsreserved.页码,1/58CISSPandSSCPOpenStudyGROUPOnlineQuizzer2006-1-8file://E:\CISSP\cccure\d3.htmNounauthorizeduseorduplicationwithoutexplicitwrittenpermissionofauthorandofcccure.org.Question1430|Difficultylevel:3/5|Relevancy:3/33.Whatcanbedefinedasaneventthatcouldcauseharmtotheinformationsystems?AriskAthreatAvul...
