You are in browse mode. You must login to use MEMORY

level: Ch 1: Dev Policies, Standards, & Guidelines

Questions and Answers List

level questions: Ch 1: Dev Policies, Standards, & Guidelines

Question	Answer
provide the people in an organization with guidance about their expected behavior.	Policies
Outlines what the policy intends to accomplish and which docs, laws, and practices the policy addresses.	Scope Statement
provides the goal of the policy as to why is important, and how to comply with it.	Policy Overview Statement
provides information to the reader about who to contact if a problem is discovered.	Accountability Statement
specific guidance about the procedure of process that must be followed in order to deviate from the policy.	Exception Statement
policies	Standards are derived from_______.
helps an organization implement or maintain standards by providing information on how to accomplish the policies and maintains the standards.	Guidelines
Provides an overview and statement of the guideline's intent.	Scope and Purpose
provide the step-by-step instructions or procedures on how to accomplish a task in a specific manner.	Guideline Statements
specify and identify what duties are required and at what intervals.	Operational Considerations
Serves as a the baseline for business and covers what is expected on a regular basis.	Standard Operating Procedure (SOP)
requires employees to take time away from work to refresh.	Mandatory Vacation Policy
intervals at which employees must rotate through positions.	Job rotation policy
Reduced the risk of fraud and to prevent other losses in an organization.	Separation of Duties Policies
an agreement between 2 or more parties established for the purpose of committing deception or fraud.	Collusion
Describe how the employees in an organization can use company systems and resources, both software and hardware.	Acceptable Use Policy
Defines what controls are required to implement and maintain the security of systems, users, and networks.	Security Policies
Events that aren't really incidents. Type II errors: fail to notice a problem even though it is there.	False Positive
you are not alerted to a situation when you should be alerted. Missed something crucial.	False Negatives
the impact a loss would have on the organization.	What does the Business Impact Analysis focus on?
provides a means to summarize and document results of threat source identification, characterization, vulnerabilities, and impacts.	Template
The ability to scale up resources as needed. Major feature of cloud computing.	Elasticity
allows for distributing the load so that no device is overly burdened .	Distributive Allocation
the measures, such as redundancy, failover, and mirroring, used to keep services and systems operational during an outage.	High Availability (HA)
involves multiple systems connected together cooperatively and networked in such a way that if any of the systems fail, the other systems take up the slack and continue to operate.	Clustering
the ability of a system to sustain operations in the even of a component failure.	Fault tolerance
to continue of function in the absence of power for only a short duration.	uninterruptible power supply (UPS) will allow....
disk striping uses multiple drives and maps them together as a single physical drive.	RAID Level 0
disk mirroring provides 100% redundancy because everything is stored on 2 disks. If one disk fails, another disk continues to operate.	RAID Level 1
disk striping with a parity disk implement fault tolerance by using striping (RAID 0) in conjunction with separate disk that stores parity information.	RAID Level 3
a value based on the value of the data stored in each disk location.	Parity Information
disk striping with parity the parity information is spread across all of the disks in the array instead of being limited to a single disk.	RAID Level 5
RAID Level 5	Most common form of raid?