Why is compliance important for the reliability of the information?

A. Compliance is another word for reliability. So, if a company indicates that it is compliant, it means that the information is managed properly.

B. By meeting the legislative requirements and the regulations of both the government and internal management, an organization shows that it manages its information in a sound manner.

C. When an organization employs a standard such as the ISO/IEC 27002 and uses it everywhere, it is compliant and therefore it guarantees the reliability of its information.

D. When an organization is compliant, it meets the requirements of privacy legislation and, in doing so, protects the reliability of its information.

What should be used to protect data on removable media if data confidentiality or integrity are important considerations?

A. backup on another removable medium

B. cryptographic techniques

C. a password

D. logging

Susan sends an email to Paul. Who determines the meaning and the value of information in this email?

A. Paul, the recipient of the information.

B. Paul and Susan, the sender and the recipient of the information.

C. Susan, the sender of the information.

What is the best description of a risk analysis?

A. A risk analysis is a method of mapping risks without looking at company processes.

B. A risk analysis helps to estimate the risks and develop the appropriate security measures.

C. A risk analysis calculates the exact financial consequences of damages.

You are the owner of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large risks but not for the small risks. What is this risk strategy called?

A. Risk bearing

B. Risk avoiding

C. Risk neutral

D. Risk passing