312-76 Exam Questions

Which of the following is prepared by the business and serves as a starting point for producing the IT Service Continuity Strategy?

Which of the following options is an activity of observing the content that appears on a computer monitor or watching what a user is typing?

You work as a Database Administrator for Bluewell Inc. The company has a SQL Server 2005 computer. The company asks you to implement a RAID system to provide fault tolerance to a d...

Which of the following strategies is used to minimize the effects of a disruptive event on a company, and is created to prevent interruptions to normal business activity?

Which of the following statements best describes the difference between the role of a data owner and the role of a data custodian?

Which of the following statements about disaster recovery plan documentation are true? Each correct answer represents a complete solution. Choose all that apply.

Which of the following plans provides procedures for recovering business operations immediately following a disaster?

Which of the following cryptographic system services ensures that the information will not be disclosed to any unauthorized person on a local network?

You work as a senior project manager in SoftTech Inc. You are working on a software project using configuration management. Through configuration management, you are decomposing th...

Software Development Life Cycle (SDLC) is a logical process used by the programmers to develop software. Which SDLC phase meets the following audit objectives? l System and data ar...

John, a novice web user, makes a new e-mail account and keeps his password as "apple", his favorite fruit. John's password is vulnerable to which of the following password cracking...

Which of the following techniques is an encryption method that uses public-key encryption to encrypt and digitally sign e-mail messages during communication between e-mail clients?

Della works as a security manager for SoftTech Inc. She is training some of the newly recruited personnel in the field of security management. She is giving a tutorial on DRP. She...

You work as a project manager for BlueWell Inc. You are working with your team members on the risk responses in the project. Which risk response will likely cause a project to use...

You are responsible for network and information security at a large hospital. It is a significant concern that any change to any patient record can be easily traced back to the per...

Which of the following should the administrator ensure during the test of a disaster recovery plan?

Which of the following are common applications that help in replicating and protecting critical information at the time of disaster? Each correct answer represents a complete solut...

Which of the following tests activates the total disaster recovery plan?

Which of the following documents provides a high-level view of the entire organization's disaster recovery efforts?

Which of the following documents is necessary to continue the business in the event of disaster or emergency?

Which of the following processes helps to quantify the impact of potential threats to put a price or value on the cost of lost business functionality?

Which of the following processes involves reducing the risk until it reaches a level acceptable to an organization?

Which of the following classification schemes is considered to be of a personal nature and is intended for company use only?

In which of the following DRP tests does a business unit management meet to review the plan?

In risk analysis, which of the following can be identified as a consequence of a disaster?

Which of the following processes involves taking measures to alter or improve the risk position of an asset throughout the company?

Which of the following plans provides procedures for disseminating status reports to personnel and the public?

Which of the following TCB techniques involves viewing system components at a high level and ignoring or segregating its specific details?

Which of the following processes measures the maturity level of the security program?

Which of the following maturity levels of the software CMM focuses on competent people and heroics?

Which of the following security procedures is related to the SDLC's implementation?

Which of the following individuals incorporates risk assessment in training programs for the organization's personnel?

Which of the following parts of BS 7799 covers risk analysis and management?

Which of the following activities includes initiation, development and acquisition, implementation and installation, operational maintenance, and disposal?

Which of the following is a duplicate of the original site of an organization, with fully working systems as well as near-complete backups of user data?

Which of the following Tier 1 policies will identify who is responsible for what?

Which of the following actions can be performed by using the principle of separation of duties?

Which of the following phases is the first step towards creating a business continuity plan?

Which of the following phases involves getting the final senior management signoff and creating enterprise-wide awareness of the plan?

Which of the following is the phase of Incident handling process in which the distinction between an event and an incident is made?

Which of the following sources is the best for developing Recovery Time Objectives (RTO)?

Which of the following systems commonly resides on a discrete network segment and monitors the traffic on that network segment?

Which of the following systems monitors the operating system detecting inappropriate activity, writing to log files, and triggering alarms?

Which of the following BCP teams is the first responder and deals with the immediate effects of the disaster?

You work as a Database Administrator for Bluewell Inc. The company has a SQL Server 2005 computer. The company asks you to implement a RAID system to provide fault tolerance to a d...

Which of the following control measures are considered while creating a disaster recovery plan? Each correct answer represents a part of the solution. Choose three.

Which of the following are some of the parts of a project plan? Each correct answer represents a complete solution. Choose all that apply.

Which of the following statements are true about classless routing protocols? Each correct answer represents a complete solution. Choose two.

Which of the following is a set of exclusive rights granted by a state to an inventor or his assignee for a fixed period of time in exchange for the disclosure of an invention?

Availability Management deals with the day-to-day availability of services. Which of the following takes over when a 'disaster' situation occurs?