CIS 359 Midterm Exam Set 1 (2) CIS 359 Midterm Exam Set 1 (2) | Page 9

Should an incident begin to escalate, the CSIRT team leader continues to add resources and skill
sets as necessary to attempt to contain and terminate the incident. The resulting team is called
the ____ for this particular incident.
Question 41
General users require training on the technical details of how to do their jobs securely,
including good security practices, ____ management, specialized access controls, and violation
reporting.
Question 42
The ____ illustrates the most critical characteristics of information and has been the industry
standard for computer security since the development of the mainframe.
Question 43
____ assigns a risk rating or score to each information asset. Although this number does not
mean anything in absolute terms, it is useful in gauging the relative risk to each vulnerable
information asset and facilitates the development of comparative ratings later in the risk
control process.
Question 44
A ____ deals with the preparation for and recovery from a disaster, whether natural or man-
made.