• Question 3 Which security policy framework , developed by CERT , focuses on information security assessment and planning ?
• Question 4 Which IT framework extends the COBIT framework and is a comprehensive risk management approach ?
• Question 5 Which security policy framework focuses on concepts , practices , and processes for managing and delivering IT services ?
• Question 6 The core requirement of an automated IT security control library is that the information is ________.
• Question 7 A fundamental component of internal control for high-risk transactions is __________.
• Question 8 An unauthorized user accessed protected network storage and viewed personnel records . What has been lost ?
• Question 9 During which phase of the COBIT ISS management life cycle do you review how you are going to manage your IT investment such as contracts , service level agreements ( SLAs ), and new policy ideas ?