• Question 3 Which security policy framework, developed by CERT, focuses on information security assessment and planning?
• Question 4 Which IT framework extends the COBIT framework and is a comprehensive risk management approach?
• Question 5 Which security policy framework focuses on concepts, practices, and processes for managing and delivering IT services?
• Question 6 The core requirement of an automated IT security control library is that the information is ________.
• Question 7 A fundamental component of internal control for high-risk transactions is __________.
• Question 8 An unauthorized user accessed protected network storage and viewed personnel records. What has been lost?
• Question 9 During which phase of the COBIT ISS management life cycle do you review how you are going to manage your IT investment such as contracts, service level agreements( SLAs), and new policy ideas?