IS4414 MCQ

1.

1 point

The most significant security issue with Cloud Computing is one of establishing jurisdiction - finding out what law applies to the protection of data.

True

False

2.

1 point

Risk is really about assessing the impacts of change in an organization.

True

False

3.

1 point

The set of principles governing the collection and use of information about individuals, which form the basis of most U.S. and European privacy laws, is called

Accountability

Informed Consent

Fair Information Practices

Due Process

4.

1 point

In essence a SLA is just another term for a contract for the provision of services.

True

False

5.

1 point

The ultimate management challenge for security of information within organizations is to ensure maximum control in order to secure information assets.

True

False

6.

1 point

Once a Project is well directed and led and once an effective Change Management programme is in place there is almost no boundary to the level of change which an organization can achieve.

True

False

7.

1 point

ERP software contains business logic which dictates to a large extent how business processes will be implemented.

True

False

8.

1 point

Enterprise software

must be accessible from the internet

models and automates many business processes

creates a new sales environment

Eliminates links between computer systems

9.

1 point

Change Management Competency is about

Key change agents taking a change management role to implement change within an organization

Communication and coaching activities in support of change management

The ability of an organization to cope with change management practices as part of normal business

Tools and techniques to support change management

10.

1 point

In Change Management, Role to position mapping is about

Analysing the current state of the organisation with reference to the changes it will need to undertake for the new system

Analysing what people do now and seeing how they will fit in with the new way of doing things

Building a detailed map of those who will be affected by the new system

Detailed Analysis of what the new system will deliver for the organisation

11.

1 point

The main costs that arise as a result of badly managed change are those up front costs in implementing the change.

True

False

12.

1 point

The Scope of the service level management process involves the IT services organisation and the customer organisation together with Internal Departments and External Suppliers.

True

False

13.

1 point

Security Incidents as per ITIL, are

events that cause the integrity of the network to be undermined through the actions of hackers

events that cause damage to confidentiality, integrity or availability of information or information systems

actions that lead to undesired or unlawful disclosure of information

incidents which cause replacement or reconfiguration of firewalls resulting from the effects of malicious software

14.

1 point

After major function systems are in place, horizontal systems are created which automate business processes across

Functional and Hierarchical boundaries

Financial and accounting boundaries

Customer procedures and processes

Geographical networks

15.

1 point

A service is a set of coordinated activities combining and implementing resources and capabilities in order to produce an outcome, which, directly or indirectly, creates value for an external customer or stakeholder.

True

False

16.

1 point

The model of informed consent prohibiting an organization from collecting any personal information unless the individual specifically takes action to approve information collection and use is called

Accountability

Opt In

Opt out

Fair Information Practices

17.

1 point

Change management is about preparing the organization for the impacts of the new technical architectures which inevitably arise in the majority of ICT enabled projects.

True

False

18.

1 point

Confidentiality is concerned with protecting the accuracy and completeness of information and software

True

False

19.

1 point

Liability means assessing responsibility for decisions made and actions taken.

True

False

20.

1 point

A service Catalogue contains a description of IT services and levels which are specific to a particular area of an organisation.

True

False

21.

1 point

When companies work with suppliers and buyers to formulate demand forecasts, develop production plans and coordinate shipping, warehousing and stocking activities the process is called

Business Process Engineering

CRM

The Enterprise System

Supply Chain Management

22.

1 point

In data Security terms, which of the following is NOT a value derived from information

Anonymity

Privacy

Verifiability

Technical accuracy

23.

1 point

Unplanned change can be described as

Restructuring an organization

Moving into new areas of business

Moving out of existing areas of activity

Correcting a serious, possibly worsening problem

24.

1 point

In service management terms, Operational Level agreements are

Internal agreements for the supply of services which are specific to particular department/function

Underpinning contracts for the supply of services

Internal agreements covering the supply of services

Internal agreements for the supply of default IT services

25.

1 point

Data integrity is concerned with protecting the accuracy and completeness of information and software.

True

False

26.

1 point

Security Risk Analysis can be defined as

Defining a system that will protect vital resources at all costs

identifying the threats and vulnerabilities to systems

Working out the probabilities of something going wrong.

identifying what needs to be protected, from what/whom and how to protect it

27.

1 point

The problem with patent protection is that digital media cannot be patented.

True

False

28.

1 point

A business function is a collection of related business tasks undertaken to achieve a specific business objective.

True

False

29.

1 point

A denial of service attack involves hackers attempting to disrupt a network by hiding their true identity or by misrepresenting themselves.

True

False

30.

1 point

The co-ordination of the internal processes of the firm by integrating data from manufacturing and distribution, finance, sales and human resources creates a(n)

Digital Firm

Enterprise System

Intranet

Supply chain management system

31.

1 point

Bounded change is difficult to manage because its scope and impacts cannot be fully determined.

True

False

32.

1 point

Security Management is

the process of managing a defined level of security on information and on ICT systems

ensuring the security of information through the use of encryption

the technical measures used to prevent the unauthorised access, alteration, theft or physical damage to information systems

Ensuring that the necessary authentication is in place for all users of a system in order to protect the confidentiality and the integrity of the information

33.

1 point

In Information Security terms, Confidentiality means

The ability of a person(s) to keep information about themselves hidden

Ensuring that information is available when required

Protecting the accuracy of information and software

Protecting sensitive information from unauthorized disclosure

34.

1 point

The situation in which one accepts the potential costs duties and obligations for the decisions made is called

Accountability

Informed consent

Responsibility

Liability

35.

1 point

SLM is the process of managing a delivered IT service using formal SLAs.

True

False