Home > Security Security Schools > Compliance School > Ensuring compliance across the extended enterprise > Quiz: Ensuring compliance across the extended enterprise
Security Schools: Compliance School:
EMAIL THIS LICENSING & REPRINTS
 START   RISK   PCI DSS   PARTNERS & PROVIDERS   TECHNOLOGIES   COMPLIANCE 2.0   SOX PROGRESS   SOX BASICS   TOOLS   
Ensuring compliance across the extended enterprise

<< PREVIOUS | NEXT >>

Quiz: Ensuring compliance across the extended enterprise

21 Jun 2007 | SearchSecurity.com

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

This quiz is part of Ensuring compliance across the extended enterprise, a lesson in SearchSecurity.com's Compliance School. Visit the Ensuring compliance across the extended enterprise lesson page for additional learning resources.

1. Why is a standards-based partnership management program valuable?

  1. It provides a simple check-in-the-box method to determine the adequacy of partner security practices.
  2. It is an inexpensive way to gather information regarding security practices that is applicable to partners of every risk class.
  3. It provides a consistent method of gathering important information about partner security practices that can be compared across reviews and partners.
  4. It provides a focused method of evaluating service designs and exchange protocols.

2. Why are periodic reviews of partner security practices necessary?

  1. To make sure the partner organization knows that it is being monitoring.
  2. To detect important changes in practices and infrastructure.
  3. To ensure that monitoring mechanisms are still working.
  4. To meet the administrators face to face.

3. Why is assessing the requirements for information flow important in dealing with partner connections?

  1. To ensure that the processing is as efficient as possible.
  2. To ensure that encryption is always used on every connection.
  3. To determine the performance requirements of all communication links.
  4. To ensure that only required sensitive information is exchanged with the partner and that it is protected adequately.

4. What technology is least likely to be useful in managing partner services?

  1. Firewalls
  2. Intrusion detection
  3. Identity management
  4. Two-factor authentication

5. What is the most likely source of problems when a security incident at a partner site occurs?

  1. Inadequate preparation and coordination of plans
  2. Virus infection
  3. Compromise due to a well-known vulnerability
  4. Failure of a cryptographic algorithm

If you answered two or more questions incorrectly, revisit the materials from the lesson Ensuring compliance across the extended enterprise:

  • Webcast: Key technologies for ensuring partner compliance with SLAs
  • Tip: ISO 17799: A methodical approach to partner and service provider security management
  • Podcast: Top 5 pitfalls of partner security management

    If you answered four or more questions correctly, return to SearchSecurity.com's Compliance School and begin another lesson, or try another school in SearchSecurity.com's Security School Course Catalog.

    Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


    << PREVIOUS | NEXT >>
    VIEW ALL IN THIS CATEGORY

    RELATED CONTENT
    Ensuring compliance across the extended enterprise
    ISO 17799: A methodical approach to partner and service provider security management

    Sarbanes-Oxley Act
    Information security book excerpts and reviews
    RSA attendees see data classification, rights management projects stumble
    Hannaford breach illustrates dangerous compliance mentality
    PCI compliance drives identity management spending, says IBM's GRC chief
    How to conduct an efficient and thorough employee access review.
    IBM to boost security spending, push PCI DSS program
    What types of software can help a company perform a security risk assessment?
    Industry group uses awareness month to lobby for data breach laws
    Code Green pitches data protection for SMBs
    Report: Companies still stumped by PCI DSS
    Sarbanes-Oxley Act Research

    RELATED RESOURCES
    2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
    Search Bitpipe.com for the latest white papers and business webcasts
    Whatis.com, the online computer dictionary


    • TechTarget Security Media
    Information Security View this month\\'s issue and subscribe today.
    Information Security Decisions Apply online for free conference admission.
    		SearchSecurity.com
    HomeNewsMagazineWebcastsWhite PapersLearningAdviceTopicsEventsAbout Us
    SEARCH :     Advanced Search | Site Index Powered by: Search Powered by Google

    About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
    TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

    TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




    All Rights Reserved, Copyright 2003 - 2008, TechTarget | Read our Privacy Policy     		  TechTarget - The IT Media ROI Experts