2nd Information Security Session Quiz

28 Jan

2nd Information Security Session Quiz

by Cybrone Solutions

Comments

Welcome to your 2nd Information Security Session Quiz

Name

Which of the following is a measure for preventing a social engineering attack except:

A. Do not give out computer or network information.

B. Do not complete confidential company tasks in an insecure setting.

C. Do not secure sensitive documents and media.

D. Do not give out personally identifiable information.

None

The Information Security Policy and related policies only apply to electronic and hardcopy records and does not apply to verbal discussions?

A. True

B. False

None

Why is it necessary for everyone to have a good understanding of Information Security policies and procedures?

A. It helps protect users from being victims of security incidents.

B. It provides an understanding of the patterns to follow in a security incident.

C. It helps to understand levels of responsibility.

D. All of the above.

None

TRUE or FALSE: Attachments should always be treated with caution, even if you know the sender.

A. True

B. False

None

Which is the following is true about phishing? 1. It is a type of cybersecurity attack that attempts to obtain data that are sensitive like usernames, passwords, and more. 2. It is carried out by email spoofing, instant messaging, and text messaging.

A. 1

B. 2

C. 1 & 2

D. Neither 1 nor 2

None

When visiting your favorite website, a pop-up appears that reads "You have won a free Apple iPod!" What should you do?

A. Click the pop-up, enter your information and claim the prize

B. Share the link with all your friends and family so that they too can get free stuff

C. Do not click the pop-up - close it, and if possible, report it to an administrative contact on the page you were on

None

What must be done if your password has been compromised?

A. Change your password.

B. Report the incident to the proper authorities - such as a system administrator(s).

C. Check other systems that you have accounts on as they may be compromised as well.

D. All the above.

None

Which action below would breach the Clear Desk and Screen Policy?

A. Locking your computer when you are away from your desk

B. Leaving a departmental laptop on your desk when you are not using it or at the end of the day

C. Locking confidential information in a cabinet

None

A policy that outlines how to maintain information in the user’s possession for a predetermined length of time is known as?

A. Access Control Policy

B. Data Backup Policy

C. Data Retention Policy

D. Data Removal Policy

None

10.

In cryptography, which of the following basic protection ensures that the information is correct and no unauthorizes person or malicious software has altered that data?

A. Encryption

B. Availability

C. Confidentiality

D. Integrity

E. Non-Repudiation

None

11.

Which of the following is a common delivery method for viruses?

A. Email

B. Instant Message

C. Internet download

D. Portable media

None

12.

Developing an outline of procedures that are to be followed in the event of a major IT incident impacting availability is known as ------------?

A. Information Security Policy

B. Backup Policy

C. Business Continuity and Disaster Recovery Planning

D. Incident Response Procedure

None

13.

What is the only true guarantee against data loss due to a cyberattack such as ransomware?

A. My business is small - this isn't something I need to worry about

B. Having my data backed up and accessible

C. Having anti-virus software Restricting internet access for my employees

D. Having enough money to pay the ransom

E. Restricting internet access for my employees

None

14.

Your supervisor is very busy and asks you to log into the HR Server using her user-ID and password to retrieve some reports. What should you do?

A. It’s your boss, so it’s okay to do this.

B. Ignore the request and hope she forgets.

C. Decline the request and remind your supervisor that it is against Company policy.

None

15.

Which of the following terms best describes ensuring the data is accessible to authorized users?

A. Availability

B. Confidentiality

C. Integrity

D. Non-Repudiation

None

16.

You receive a text message warning you that your bank account has been suspended. If says that you must click on the link in the SMS and update your credentials with the next 24 hours. Is this message safe or unsafe?

A. Safe

B. Unsafe

None

17.

----------- ensures that only authorized parties can view the information?

A. Availability

B. Confidentiality

C. Integrity

D. Non-Repudiation

None

18.

Which of the following passwords meets your company password requirements?

A. @#$)*&^%

B. akHGksmLN

C. UcSc4Evr!

D. Password1

None

19.

The mouse on your computer screen starts to move around on its own and click on things on your desktop. What do you do first?

A. Call your co-workers over so they can see

B. Disconnect your computer from the network

C. Unplug your mouse

D. Turn your computer off

E. Run anti-virus

None

20.

All of these are good physical security practices except?

A. When leaving work, always wear your security badge, even if it is for a break. It should also be worn outside of the office in public for other people to know where you work.

B. Control access to your office by ensuring the door is closed completely behind when entering and exiting from the area. Ensure that no one slips in behind you.

C. During a task in a public setting, avoid shoulder surfing by shielding your paperwork and keyboard from view using your body.

None

Thank you for the Quiz, Kindly check your email for the result.
Good Luck!