ISACA: Serving IT Governance Professionals

English
Chinese (Simplified)
Chinese (Traditional)
Deutsch
Espanol
Francais
Hebrew
Italiano
Japanese
Korean
Nederlands
Polski
Portuguese

Advanced Search

ABOUT
Membership
CERTIFICATION
Education
COBIT
Knowledge Center
Journal
Bookstore

What We Offer & Who We Serve

@ISACA Newsletter

Licensing and Promotion

Volunteering

IT Governance
Institute

	Professional Membership
	Student Membership
	Academic Membership

	Local Chapter Information
	Join Today
	Professional Growth Global Community Advance Your Career


What is CISA	What is CISM	What is CGEIT	What is CRISC
Benefits of CISA	Benefits of CISM	Benefits of CGEIT	Benefits of CRISC
How to Become Certified	How to Become Certified	How to Become Certified	How to Become Certified
Register for the Exam	Register for the Exam	Register for the Exam	Register for the Exam
Prepare for the Exam	Prepare for the Exam	Prepare for the Exam	Prepare for the Exam
Taking the Exam	Taking the Exam	Taking the Exam	Taking the Exam
Apply for Certification	Apply for Certification	Apply for Certification	Apply for Certification
Maintain Your CISA	Maintain Your CISM	Maintain Your CGEIT	Maintain Your CRISC

Why Certify

How to Earn CPE

Maintain Your Certification

Write an Exam Question

US DoD Information

Exam Registration

Online Learning

Upcoming Events

Conferences

COBIT Education

On-Site Training

Exam Review Courses

Sponsor & Exhibit Opportunities

Call for Papers


COBIT 5 Home
Product Family
Education and Training
News
Recognition
Join the Conversation
Looking for COBIT 4.1?

Browse Knowledge Center topics

Where networking and knowledge intersect.

	BMIS (Information Security)
	COBIT 5 \| COBIT 4.1
	ITAF (IT Assurance\Audit)
	Research (Deliverables\Projects)
	Risk IT (IT Risk Management)
	Standards (Assurance\Audit\Control)
	Val IT (Value Delivery)

Featured Resources

Career Centre

Legislative Reporting

Current Issue

Past Issues

Author Blog

CPE Quizzes

Submit an Article

COBIT 5

COBIT 5: Enabling Processes

COBIT 5: Enabling Processes

Top Sellers

Accounting Information Systems, 9th Edition

CISA Review Manual 2012

CRISC Review Manual 2012

CISM Practice Question Database v12

Security, Audit and Control Features Oracle PeopleSoft, 3rd Edition

Implementing Service Quality Based on ISO/IEC 20000

ISACA
My ISACA

Join ISACA
Feedback
Shopping Cart

Sign In

ISACA > Journal > Past Issues > 2004 > Volume 6 > Quiz 97

Quiz 97

Journal
- Current Issue
- JOnline
- Past Issues
  - 2012
  - 2011
  - 2010
  - 2009
  - 2008
  - 2007
  - 2006
  - 2005
  - 2004
  - 2003
  - 2002
  - 2001
  - 2000
- Journal Author Blog
- Submit an Article
- Advertise
- CPE Quizzes
- Current Digital Journal
- Journal Mobile Apps

Please note: In order to obtain your CPE certificate for having passed the quiz, you must turn off your pop-up blocker.

Drake and Jeschke Article
Wright Article
Thorp Article
Kenny Article
Welu Article
Heschl Article
Robb Article
Vanamali Article

CPE Quiz # 97

Based on Information Systems Control Journal Volume 4, 2004

A passing score of 75 percent qualifies for one (1) hour of CISA/CISM/CGEIT Continuing Professional Education (CPE) Credit

Your results will appear in a new window.

Enter your name below so it displays on the quiz results page:

Name:

Drake and Jeschke Article

1. Committee of Sponsoring Organizations (COSO) has published its enterprise risk management framework, as its formal IT governance framework to be used by US public companies reporting under Sarbanes-Oxley.
TrueFalse

Wright Article

2. California recently passed legislation that requires the holders of personal electronic information about a California resident to notify the resident if the holder has reason to believe that the security of the data has been compromised.
TrueFalse3. Data compromises affected by this legislation have affected Wells Fargo and Citibank, among others, causing hard monetary costs and generating negative publicity.
TrueFalse

Thorp Article

4. Perceived advantages to implementing ISO17799, according to the author, include providing the tools and methods to make management responsible for implementing an effective information security program and instilling discipline through an orderly framework of risk management.
TrueFalse

Kenny Article

5. The US has a sufficient level of protection for personal data in accordance with the European Union Directive, through its national implementation of the 2000 Safe Harbor provision.
TrueFalse

Welu Article

6. Sarbanes-Oxley compliance is a subset of operational risk, and is forcing companies to reconsider internal controls and processes for a variety of reasons.
TrueFalse7. COSO provides a framework for enterprise risk management that is incorporated by name and reference in the Sarbanes-Oxley legislation as a best practice for implementing internal controls.
TrueFalse

Heschl Article

8. COBIT was recently mapped against other international IT standards and guidance, including COSO, ITIL, ISO17799 and NIST-800-14.
TrueFalse9. NIST-800-14 is primarily targeted at parties responsible for IT security at governmental organizations. Like COBIT, it is available for electronic download at no cost.
TrueFalse

Robb Article

10. Event log managers are a type of information security software that gathers log information from multiple locations into a single system and reduces them to essentials. Examples of commercial ELMs include Syslog's SNMP, MySQL databases and Logalot.
TrueFalse

Vanamali Article

11. An identity management framework should consider issues related to audit, compliance and monitoring, encryption, nonrepudiation and single sign-on, among its goals and strategies.
TrueFalse12. Key identity management components can include directory services, user provisioning, authentication services, portal services and access management infrastructure.
TrueFalse

Your results will appear in a new window.

Please note: This quiz requires a JavaScript-enabled browser. If the quiz is not displayed above, you either do not have a browser which supports JavaScript or JavaScript support has been disabled.

© 2012 ISACA. All Rights Reserved

Site Map
Contact Us
Press Room
Terms of Use
ISACA PRIVACY POLICY – YOUR PRIVACY RIGHTS
IP Guidelines