Devry Sec591 week 8 final exam 2018
Question 1 10 pts
(CO B) Which of the following best describes risk analsysis?
Risk analysis is a method/approach to evaluate the potential loss of IT assets given a disaster incident.
Risk analysis allows us to identify areas of possible business improvement.
Risk analysis is a process that is conducted to simply impress auditors.
Risk analysis is a process that is based on regulatory requirements.
Question 2 30 pts
(CO A) Explain the formula for assessing risk (Threat × Likelihood = Inherent Risk). Provide an example.
HTML Editor Keyboard shortcuts
12pt Paragraph
0 words
Flag this question
Question 3 35 pts
(CO B) 2 weeks ago, Omega experienced a significant loss of proprietary data, estimated value $550,000.00, that were stored electronically in an Oracle database in their main office in Reston. The data were unrecoverable, and backups were not being routinely maintained, so no restoration was possible. Although there is no hard evidence, Omega's CTO believes that the loss resulted from deliberate deletion of files by a systems administrator from the Kansas City office who had been "let go" several weeks prior to the loss. Needless to say, the CTO has been tasked to get things under control.
Using the TAM, describe what happened here. Identify other potential vulnerabilities to the asset and potential threat agents.
HTML Editor Keyboard shortcuts
12pt Paragraph
0 words
Flag this question
Question 4 35 pts
(COs C, D, and E) Assess the five goals of conducting a BIA. Identify each of them, and describe its importance.
HTML Editor Keyboard shortcuts
12pt Paragraph
0 words
Flag this question
Question 5 35 pts
(COs C and E) Describe recovery time objective and its effect on the recovery strategy.
HTML Editor Keyboard shortcuts
12pt Paragraph
0 words
Flag this question
Question 6 30 pts
(CO E) Assess the difference between peer, client/server, and data center storage strategies. What is Omega Research's current strategy?
HTML Editor Keyboard shortcuts
12pt Paragraph
0 words
Flag this question
Question 7 30 pts
(COs D and E) What does Toigo mean by adopting a "storage recovery plan?”
HTML Editor Keyboard shortcuts
12pt Paragraph
0 words
Flag this question
Question 8 30 pts
(CO F) Throughout the course, you've been exposed to Omega Research, Inc. Omega Research is a rapidly growing research and consulting firm. They have a single main office located in Reston, VA and three small branch offices located in San Diego, CA, Salem, OR, and Kansas City, MO. Omega is not currently involved in e-commerce or business-to-business relationships.
Throughout the development of their new disaster recovery and contingency plan documentation, they asked for assistance in preparing their crisis communication plan (CCP). There are four officers in the company: the CEO, the CIO, the CFO, and the director of marketing. These officers jointly report to the board of directors.
Assess the chain of authority that would likely be in place for Omega.
HTML Editor Keyboard shortcuts
12pt Paragraph
0 words
Flag this question
Question 9 30 pts
(CO G) Assess Fourth Amendment expectations of privacy as they apply to the search and seizure of computer equipment.
HTML Editor Keyboard shortcuts
12pt Paragraph
0 words
Flag this question
Question 10 35 pts
(CO E) During Week 4, we discussed the value of testing our recovery plans. Discuss the basic requirement of establishing a test scenario in advance.
HTML Editor Keyboard shortcuts
12pt Paragraph
-
Rating:
/5
Solution: Devry Sec591 week 8 final exam 2018