Please note: In order to obtain your CPE certificate for having passed the quiz, you must turn off your pop-up blocker.
Woda Article
Guldentops Article
Gallegos Article
Alga Article
Jansen Article
Damle Article
Stanley Article
CPE Quiz #
83
Based on Information Systems Control Journal Volume 2, 2002
A passing score of 75 percent qualifies for one (1) hour of CISA/CISM/CGEIT Continuing Professional Education (CPE) Credit
Your results will appear in a new window.
Enter your name below so it displays on the quiz results page:
Name:
Woda Article1. A trend in business management cited by the author is to substitute rigid strategic plans with creatively stated corporate values and ethics. This has included increased delegation of authority to staff and middle management.
2. Governance (i.e., instruction on how to follow a process) is more important than ever, given today's IT and business operating imperatives.
3. Steps recommended by the author to implement a governance framework for IT include auditor participation in SDLC projects, auditor-led training and awareness of risk management, and auditor-led risk assessment for IT systems, processes and infrastructure components.
Guldentops Article4. The first recommendation of the US Critical Information Infrastructure initiative called for awareness by corporate officers about IT risks and the dependence of the industry on the nation's information infrastructure.
5. The author's advice for IT executives include: setting up an IT strategy committee and beginning to ask tougher questions about IT.
Gallegos Article6. Peer reviews are not supported yet by ISACA, but can be modeled after existing programs from either the IIA or AICPA.
7. Other elements of due professional care besides peer reviews include certification, high ethical standards and business knowledge.
Alga Article8. Biometric devices are examples of "something you have" credentials for security authentication.
9. Biometrics use automated physiological or behavioral characteristics to determine or verify identity.
10. Examples of biometric systems include fingerprint, voice scans and keystroke monitoring.
Jansen Article11. An example of an analytical, customer relationship marketing (CRM) process is a customer database maintained for direct mailing purposes.
12. Siebel's technical architecture supports dedicated, mobile and thin clients. Examples of mobile clients include web browser and wireless variants.
Damle Article13. The author defines social engineering as the craft of getting people to comply with another person's desires. Examples of social engineering include dumpster diving and using pop-up windows to request user passwords.
14. The author recommends a three-pronged approach to combat social engineering-employee education, policies and procedures, and penetration tests to gauge adherence to policies.
Stanley Article15. Risks associated with wireless networking include eavesdropping, denial of service and illicit entry. Eavesdropping is a greater risk for wireless networks when compared to wired systems, because intruders can be miles from the network with a simple directional antenna to pick up signals and data.
16. With no modifications, a typical compact microwave oven can be a jamming device for an 802.11 b or Bluetooth wireless network.
|
Your results will appear in a new window.
|
Please note: This quiz requires a JavaScript-enabled browser.
If the quiz is not displayed above, you either do not have a browser which
supports JavaScript or JavaScript support has been disabled.
|
|
|