Security_May2016

1.

5 points

The following laws are important and applicable to SSCL

Data Protection act 1998

Computer Misuse Act 1990

Health and Safety

Public Interest Disclosure Act (PIDA)

Copyright ( Computer Programs) Regulations 1992

2.

5 points

Information Security is the practice of defending information and systems from unauthorized

Access

Use

Disclosure & Disruption

Modification & Destruction

None of the above

3.

5 points

The only Government Classification of data that will be used by SSCL is:

Sensitive

Official

Confidential

Secret

4.

5 points

Defra is responsible for

Environmental protection and pollution control

Sustainable Development and green economy

Food, farming and fisheries

The natural environment, biodiversity, plants and animals

Conservation and ecology

5.

5 points

Which of the following activities should you always do?

Keep company and personal property locked away, when not in use

Report any Security incident

Inform your seniors if you see anything that is concerning you

Talk about company’s sensitive information outside company premises

6.

5 points

Who is the CEO of SSCL?

Chris Ashburn

Jeanette Smith

Steven Covey

John Neilson

7.

5 points

What is not the Rules of Good Information handling?

Processed for unlimited purpose

Processed in line with the data subject’s rights

Not kept for longer than is necessary

Processed accurately

All of the above

8.

5 points

What are your security responsibilities – Emails?

Do not share your email account with others

Do not disseminate inappropriate or offensive material

Be aware that SSCL email systems are monitored

All the above

9.

5 points

Compliance include

Attendance tracker

Tailgating

Login Hours

OTL submission

All of the above

10.

5 points

Which are the Technical security controls of the below?

Firewalls

Spyware

Access control

All the above

11.

5 points

Which one of below is a part of SSCL’s Vision?

Customer Focused

Bold

Innovative

NPS

12.

5 points

Information Security ensures compliance helps to:

Proactively manages Risk

Creates better business opportunities

Ensure Business Damage

Minimize Business Continuity

Maximise Market Reputation

13.

5 points

You receive an email with an attachment written as Top secret. What would you do?

Forward it to your colleagues

Inform the available lead

Ignore the email

Delete the email

14.

5 points

SSCL Joined Venture is owned by Steria & Cabinet Office as below ratio?

90:10

75:25

80:20

60:40

15.

5 points

To use other person’s Id and password to access a computer or data is a part of

Copyright, Design and Patent act

Computer Misuse Act

Data Protection Act

None of the above

16.

5 points

Which of the below common mistakes need to be avoided?

Leaving the computer unattended

Good password etiquette

Knowing internal threats

Do not open email attachments from strangers

Passwords on notebooks

17.

5 points

Which of the following rules are applicable when accessing the SSCL area

Mobile Phones, Camera’s, Tablets and other forms of electronic equipment are permitted

No access to the area will be given outside of office hours without specific authorisation

Data in electronic or physical form can be removed

Searches will be conducted on entry and exit to the areaNo access to the area will be given outside of office hours without specific authorisation

Visitors must be escorted at all times

18.

5 points

To achieve the protection, information must be identified, valued, protected and managed to provide an assured level of operation, even at times of severe

Disruption

Condition

Situation

19.

5 points

Whistle blowing policy is about reporting malpractice which may include

Reckless conduct in the workplace

Drug or alcohol abuse

Withholding evidence from an internal or external authority

Financial malpractice

Failures to comply with applicable regulations e.g., health and safety guidance

20.

5 points

SIRO stands for

Senior Information Risk Owner

Security information resource officer

Strategic Interdisciplinary Research Officer

Service In Random Order