Multiple Choice
Identify the
choice that best completes the statement or answers the question.
|
|
|
1.
|
If significant changes take place in an existing system or if a new version is
released, the IT department might develop a ____.
a. | user training package | c. | maintenance module | b. | documentation process | d. | all of the
above |
|
|
|
2.
|
____ expenses vary significantly during a system’s operational life and
include spending to support maintenance activities.
a. | Preventive | c. | Corrective | b. | Maintenance | d. | Adaptive |
|
|
|
3.
|
____ activities include changing programs, procedures, or documentation to
ensure correct system performance; adapting the system to changing requirements; and making the
system operate more efficiently.
a. | Procedural | c. | Maintenance | b. | Documented | d. | Programmatic |
|
|
|
4.
|
Corrective maintenance ____.
a. | adds enhancements to an operational system and makes the system easier to
use | b. | diagnoses and corrects errors in an operational system | c. | involves changing an
operational system to make it more efficient, reliable, or maintainable | d. | requires analysis of
areas where trouble is likely to occur in order to avoid problems |
|
|
|
5.
|
Adaptive maintenance ____.
a. | adds enhancements to an operational system and makes the system easier to
use | b. | diagnoses and corrects errors in an operational system | c. | involves changing an
operational system to make it more efficient, reliable, or maintainable | d. | requires analysis of
areas where trouble is likely to occur in order to avoid problems |
|
|
|
6.
|
____ involves studying the parts to understand the overall system.
a. | Synthesis | c. | Analysis | b. | Risk management | d. | Risk
identification |
|
|
|
7.
|
The ____ is responsible for assigning maintenance tasks to individuals or to a
maintenance team.
a. | user | c. | systems review committee | b. | programmer | d. | system
administrator |
|
|
|
8.
|
In a typical system, the initial version of the system is 1.0, and the release
that includes the first set of maintenance changes is version ____.
|
|
|
9.
|
The ____ documents a system at the end of the design phase, identifies any
changes since the beginning of the project, and includes testing and verification of all system
requirements and features.
a. | functional baseline | c. | allocated baseline | b. | operational baseline | d. | product
baseline |
|
|
|
10.
|
The ____ describes the system at the beginning of system operation and includes
the results of performance and acceptance tests for the operational system.
a. | functional baseline | c. | allocated baseline | b. | operational baseline | d. | product
baseline |
|
|
|
11.
|
Depending on the system, bandwidth might be measured in any of the following
except ____.
a. | Kbps (kilobits per second) | c. | Dbps (decibits per
second) | b. | Mbps (megabits per second) | d. | Gbps (gigabits per second) |
|
|
|
12.
|
____ prevents unauthorized users from creating, modifying, or deleting
information.
a. | Availability | c. | Confidentiality | b. | Integrity | d. | Risk management |
|
|
|
13.
|
____ ensures that authorized users have timely and reliable access to necessary
information.
a. | Availability | c. | Confidentiality | b. | Integrity | d. | Risk management |
|
|
|
14.
|
Risk ____ analyzes the organization's assets, threats, and
vulnerabilities.
a. | assessment | c. | identification | b. | management | d. | control |
|
|
|
15.
|
Risk ____ measures risk likelihood and impact.
a. | assessment | c. | identification | b. | management | d. | control |
|
|
|
16.
|
A ____ is an internal or external entity that could endanger an asset.
a. | menace | c. | malware | b. | strike | d. | threat |
|
|
|
17.
|
____ means that in risk control, nothing is done.
a. | Acceptance | c. | Mitigation | b. | Avoidance | d. | Transference |
|
True/False
Indicate whether the
statement is true or false.
|
|
|
18.
|
Successful, robust systems often need the most support because users want to
learn the features, try all the capabilities, and discover how the system can help them perform their
business functions.
|
|
|
19.
|
The main objective of user training is to show users how to become help desk
staff members.
|
|
|
20.
|
The systems support and security phase is an important component of TCO (total
cost of ownership) because ongoing maintenance expenses can determine the economic life of a
system.
|
|
|
21.
|
Although the procedures for corrective maintenance and adaptive maintenance are
alike, minor corrective maintenance requires more IT department resources than minor adaptive
maintenance.
|
|
|
22.
|
Requests for corrective and adaptive maintenance normally come from the IT
department, while users usually initiate perfective maintenance.
|
|
|
23.
|
Companies with limited resources always consider new systems development,
adaptive maintenance, and corrective maintenance less important than perfective maintenance.
|
|
|
24.
|
When analysts learn different skills, the organization is more versatile and
people can shift to meeting changing business needs.
|
|
|
25.
|
IT staff members usually initiate requests for perfective and preventive
maintenance.
|
|
|
26.
|
When corrective action cannot occur immediately, users appreciate feedback from
the system administrator and should be kept informed of any decisions or actions that affect their
maintenance requests.
|
|
|
27.
|
As enterprise-wide information systems grow more complex, configuration
management becomes less and less useful.
|
|
|
28.
|
Bandwidth requirements are expressed in bytes per minute.
|
|
|
29.
|
As the first step in capacity planning, analysts develop a current model based
on the system’s present workload and performance specifications.
|
|
|
30.
|
Application security requires an understanding of services, hardening,
application permissions, input validation techniques, software patches and updates, and software
logs.
|
Completion
Complete each
statement.
|
|
|
31.
|
A(n) ____________________ is a new feature or capability added to an operational
system that makes the system easier to use.
|
|
|
32.
|
When a(n) ____________________ is used, all noncritical changes to a system are
held until they can be implemented at the same time.
|
|
|
33.
|
Commercial software suppliers provide maintenance releases, often called
____________________.
|
|
|
34.
|
To enhance security, many companies are installing ____________________ scanning
systems, which map an individual’s facial features, fingerprints, handprint, or eye
characteristics.
|
|
|
35.
|
____________________ refers to the practice of storing backup media away from
the main business location, in order to mitigate the risk of a catastrophic disaster such as a flood,
fire, or earthquake.
|
Matching
|
|
|
Identify the letter of the choice that best matches the phrase or
definition. a. | private key encryption | f. | transference | b. | PKE | g. | attack | c. | CIA | h. | security | d. | threat | i. | CM | e. | mitigation | j. | software
reengineering |
|
|
|
36.
|
An asymmetric kind of encryption.
|
|
|
37.
|
In risk control, this shifts the risk to another asset or party.
|
|
|
38.
|
A hostile act that targets the system or the company itself.
|
|
|
39.
|
Protects the system and keeps it safe, free from danger, and reliable.
|
|
|
40.
|
Triangle that shows the three main elements of system security.
|
|
|
41.
|
In risk control, this reduces the impact of a risk by careful planning and
preparation.
|
|
|
42.
|
Uses a single key to encrypt and decrypt information.
|
|
|
43.
|
Uses analytical techniques to identify potential quality and performance
improvements in an information system.
|
|
|
44.
|
An internal or external entity that could endanger an asset.
|
|
|
45.
|
A process for controlling changes in system requirements during software
development.
|