ISACA: Serving IT Governance Professionals

English
Chinese (Simplified)
Chinese (Traditional)
Deutsch
Espanol
Francais
Hebrew
Italiano
Japanese
Korean
Nederlands
Polski
Portuguese

Advanced Search

ABOUT
Membership
CERTIFICATION
Education
COBIT
Knowledge Center
Journal
Bookstore

What We Offer & Who We Serve

@ISACA Newsletter

Licensing and Promotion

Volunteering

IT Governance
Institute

	Professional Membership
	Student Membership
	Academic Membership

	Local Chapter Information
	Join Today
	Professional Growth Global Community Advance Your Career


What is CISA	What is CISM	What is CGEIT	What is CRISC
Benefits of CISA	Benefits of CISM	Benefits of CGEIT	Benefits of CRISC
How to Become Certified	How to Become Certified	How to Become Certified	How to Become Certified
Register for the Exam	Register for the Exam	Register for the Exam	Register for the Exam
Prepare for the Exam	Prepare for the Exam	Prepare for the Exam	Prepare for the Exam
Taking the Exam	Taking the Exam	Taking the Exam	Taking the Exam
Apply for Certification	Apply for Certification	Apply for Certification	Apply for Certification
Maintain Your CISA	Maintain Your CISM	Maintain Your CGEIT	Maintain Your CRISC

Why Certify

How to Earn CPE

Maintain Your Certification

Write an Exam Question

US DoD Information

Exam Registration

Online Learning

Upcoming Events

Conferences

COBIT Education

On-Site Training

Exam Review Courses

Sponsor & Exhibit Opportunities

Call for Papers


COBIT 5 Home
Product Family
Education and Training
News
Recognition
Join the Conversation
Looking for COBIT 4.1?

Browse Knowledge Center topics

Where networking and knowledge intersect.

	BMIS (Information Security)
	COBIT 5 \| COBIT 4.1
	ITAF (IT Assurance\Audit)
	Research (Deliverables\Projects)
	Risk IT (IT Risk Management)
	Standards (Assurance\Audit\Control)
	Val IT (Value Delivery)

Featured Resources

Career Centre

Legislative Reporting

Current Issue

Past Issues

Author Blog

CPE Quizzes

Submit an Article

COBIT 5

COBIT 5: Enabling Processes

COBIT 5: Enabling Processes

Top Sellers

Accounting Information Systems, 9th Edition

CISA Review Manual 2012

CRISC Review Manual 2012

CISM Practice Question Database v12

Security, Audit and Control Features Oracle PeopleSoft, 3rd Edition

Implementing Service Quality Based on ISO/IEC 20000

ISACA
My ISACA

Join ISACA
Feedback
Shopping Cart

Sign In

ISACA > Journal > Past Issues > 2001 > Volume 5 > Quiz 78

Quiz 78

Journal
- Current Issue
- JOnline
- Past Issues
  - 2012
  - 2011
  - 2010
  - 2009
  - 2008
  - 2007
  - 2006
  - 2005
  - 2004
  - 2003
  - 2002
  - 2001
  - 2000
- Journal Author Blog
- Submit an Article
- Advertise
- CPE Quizzes
- Current Digital Journal
- Journal Mobile Apps

Please note: In order to obtain your CPE certificate for having passed the quiz, you must turn off your pop-up blocker.

Parkes Article
Norris Article
Carasik Article
Parker Article
Andrews Article
Karol Article
Parkinson Article
Gonzalez Article

CPE Quiz # 78

Based on Information Systems Control Journal Volume 3, 2001

A passing score of 75 percent qualifies for one (1) hour of CISA/CISM/CGEIT Continuing Professional Education (CPE) Credit

Your results will appear in a new window.

Enter your name below so it displays on the quiz results page:

Name:

Parkes Article

1. The author describes the process of assessing the inner condition of an enterprise (i.e., naringslav), the relationship of this process to the pervasiveness of IT and the need for IT governance.
TrueFalse2. The overall objectives of IT governance activities are to ensure that a corporation can sustain its operations and to confirm it can implement the strategies required to sustain and extend its activities into the future.
TrueFalse3. Elements of an effective Knowledge and Intellectual Capital domain for an IT governance program include: succession and resource planning, retention of key skills required to sustain operations and a suitable climate and culture for innovation within the corporation.
TrueFalse4. The author recommends the following items be considered in an IT due diligence review: data warehousing, IT asset management, risk management and the level of implementation of net centric technology.
TrueFalse

Norris Article

5. An example of a virtual private network is the Internet.
TrueFalse6. Today's high-speed laptop computers compensate for any potential performance degradation of encryption technology.
TrueFalse7. IPSec security requires site-to-site peering to operate. This peering sends packets back and forth between known end points, with each end point declaring the encryption method it prefers and will accept, until they agree upon the strongest common method between them.
TrueFalse

Carasik Article

8. Firewalls are effective in determining trust and identifying which users should and should not be permitted to access system resources.
TrueFalse9. IPSec has more features than secure shell or transport layer security (TLS), however, it is more difficult to implement.
TrueFalse10. Secure shell is designed for incorporation into a network gateway such as a router or firewall. It functions as a complete VPN solution.
TrueFalse

Parker Article

11. Objectives of the implementation phase of a privacy-compliance program include: develop a detailed working document and planning template for achieving privacy compliance, and create an appropriate organization, infrastructure and authority for privacy issues.
TrueFalse12. E-business surveys cited by the author indicate that more than 70 percent of pure-play dot-coms have a privacy policy on their web sites.
TrueFalse

Andrews Article

13. Personal records can be rendered anonymous by removing personally identifiable information such as name, telephone number or family financial information.
TrueFalse14. US legislation exists today regarding privacy that mandates notice, choice, access and security requirements for personal records. Consumer acknowledgement is required before an organization can use information beyond consummating the transaction for which the information was originally collected.
TrueFalse

Karol Article

15. The aim of the privacy impact assessment process is to provide documented assurance that privacy issues have been appropriately identified and either adequately addressed or identified to more senior management for further direction.
TrueFalse16. The author recommends that teams conducting a cross-border privacy assessment include the following skill sets: marketing, operational, systems, risk and compliance, legal and privacy expertise.
TrueFalse

Parkinson Article

17. According to Lou Gerstner, privacy is primarily a technology issue, due to the number of different systems that store personal information and the difficulty in securing these systems.
TrueFalse18. The concept of privacy is largely culturally determined. Differing boundaries among societies vary and change over time, thereby affecting privacy.
TrueFalse

Gonzales Article

19. Magnetic band-based smart cards are capable of holding significantly more data than similar sized memory smart cards.
TrueFalse20. The C-SET protocol, a system used by French banks, uses a reader with an attached numeric keyboard to establish a dialog between a smart card and its microprocessor. This protocol can help maintain high security for commercial transactions over the Internet.
TrueFalse

Your results will appear in a new window.

Please note: This quiz requires a JavaScript-enabled browser. If the quiz is not displayed above, you either do not have a browser which supports JavaScript or JavaScript support has been disabled.

© 2012 ISACA. All Rights Reserved

Site Map
Contact Us
Press Room
Terms of Use
ISACA PRIVACY POLICY – YOUR PRIVACY RIGHTS
IP Guidelines