Dexk

Question 1

Which ISO standard is the extension specific to cloud services?

Question 2

ISO 27017

Question 3

A breach occurs within a company that processes credit card information. Which industry specific law governs credit card data protection?

Question 4

PCI DSS

Question 5

Shortly after this movie was released President Reagan asked Congress to enact a law preventing unauthorized individuals from accessing a government system without permission.

Question 6

War Games

Question 7

Which of these statement about the GDPR is correct?

Question 8

people can ask to see their own personal data and it must be honored within 30 days with a possible 60 day extension for complicated requests

Question 9

A federal government agency made a slip up and now 10

Answer 9

000 SSN belonging to citizens are leaked out and the citizens want to sue the government agency. What Law can the citizens use to prove their case be paid back for the leak?

Question 10

The Privacy Act of 1974

Question 11

What was the first act/law put in place for cybersecurity in the United States?

Question 12

Computer Fraud and Abuse Act

Question 13

In modern times

Answer 13

this act is used for defining a framework of guidelines for any organization and mandatory security standards to protect federal government information security and operations. This includes but is not limited to risk assessments

Question 14

FISMA

Question 15

Of the following choices which are NOT one of the domains of ISO 27000?

Question 16

administrative controls

Question 17

A breach occurs within a company that processes credit card information. Which industry specific law governs credit card data protection?

Question 18

PCI DSS

Question 19

Which aspect of CIA does the Computer Fraud and Abuse Act (CFAA) most contribute to?

Question 20

confidentiality

Question 21

The enactment of this law was a major gain for people in privacy laws as it allows civilians to have access to their own medical records and prevents discrimination based on health status. IT organizations are subject to heavy fines for non-compliance.

Question 22

HIPAA

Question 23

A school administrator is concerned with the disclosure of a student’s individualized education plan due to a ransomware attack. Which act protects a student’s information?

Question 24

FERPA

Question 25

Alan’s firm recently engaged a cloud service provider to handle credit card transactions on the company’s behalf. What role is the provider playing in this scenario?

Question 26

Data processor

Question 27

What key corporate scandals led to the creation of the Sarbanes- Oxley act (SOX)?

Question 28

Enron and Worldcom

Question 29

What is the primary purpose of the Children’s Online Privacy Protection Act (COPPA)?

Question 30

to protect the privacy of children under the age of 13 online

Question 31

Under the Privacy Act of 1974 which groups of people does it set out to restrict and set rules for handling PII (Ex

Answer 31

SSN)?

Question 32

Federal government agencies

Question 33

The enactment of this act was as a result of the Enron corporate financial fallout and holds corporations accountable for public disclosure of financial data. This act also causes organization’s to go through extensive audits.

Question 34

SOX

Question 35

Of the following acts

Answer 35

which of the following is difficult to interpret with modern circumstances of Internet usage?

Question 36

VPPA

Question 37

What type of cybersecurity laws protect your sensitive data from an organization that might want to share it?

Question 38

privacy

Question 39

Which of the following is a requirement for websites under COPPA?

Question 40

Websites must obtain verifiable parental consent before collecting personal information from children under 13