CERTIFIED-IN-CYBERSECURITY Question #552: Real Exam Question with Answer & Explanation

Question

A company application asks employees to acknowledge that usage is only permitted for authorized individuals. Employees must click the "Accept Terms'' button. What does this PRIMARILY exemplify?

Options

• AAcceptable Use Policy (AUP)
• BMemorandum of Understanding (MOU)
• CMemorandum of Understanding (MOU)
• DNon-Disclosure Agreement (NDA)

Explanation

An AUP is a document that outlines a set of rules to be followed by users or customers of a set of computing resources, which could be a Web site, a network, a system, or a service (see ISC2 Study Guide, Chapter 5, Module 3). In this case, a clear example of an AUP would be a corporate application that requires employees to acknowledge that only authorized individuals are permitted to use it. For example, a company might have an AUP that states that employees may not use company email accounts for personal use, or that they may not use company computers to access certain types of websites. By clicking the Accept Terms button, employees agree to abide by these rules. The other options are not correct. Non-disclosure agreement (NDA) is incorrect because NDAs are legal contracts that prohibit someone from disclosing confidential information. In this case, the Accept Terms button is not necessarily about keeping information confidential. Service Level Agreement (SLA) is also incorrect because SLAs are contracts between a service provider and a customer that specify the level of service expected during the term of the contract. Finally, Memorandum of Understanding (MOU) is incorrect because MOUs are agreements between two or more parties that are outlined in a formal document. They are not typically used to govern a specific application or service.

No community discussion yet for this question.