4.8 Employee Management – Flashcards
Unlock all answers in this set
Unlock answersquestion
What is the primary means by which supervisors can determine whether or not employees are complying with the organization's security policy?
answer
Auditing
question
You have installed anti-virus software on computers at your business. Within a few days, however, you notice that one computer has a virus. When you question the user, she says she did install some software a few days ago, but it was supposed to be a file compression utility. She admits she did not scan before running it. What should you add to your security measures to help prevent this from happening again?
answer
User awareness training
question
When informing an employee that they are being terminated, what is the most important activity?
answer
Disabling their network access
question
Which of the following is NOT a protection against collusion?
answer
Cross training
question
What is the primary purpose of forcing employees to take a mandatory one-week minimum vacations every year?
answer
To check for evidence of fraud
question
The best way to initiate solid administrative control over an organization's employees is to have what element in place?
answer
Distinct job descriptions
question
Which of the following is NOT part of security awareness training?
answer
Employee agreement documents
question
Which of the following is a legal contract between the organization and the employee that specifies the employee is not to disclose the organization's confidential information?
answer
Non-disclosure agreement
question
Which of the following are typically associated with human resource security policies?(Select two)
answer
Background checks AND Termination
question
Which of the following defines two-man control?
answer
Certain tasks should be dual-custody in nature to prevent a security breach
question
Over the last month you have noticed a significant increase in the occurrence of inappropriate activities performed by employees. What is the best first response to take in order to improve or maintain the security level of the environment?
answer
Improve and hold new awareness sessions
question
As you are helping a user with a computer problem you notice that she has her password on a note stuck to her computer monitor. You check the password policy of your company and find that the following settings are currently required: ...Which of the following is the best action to take to make remembering passwords easier so that she no longer has to write the password down?
answer
Implement end-user training
question
Which of the following is NOT an element of the termination process?
answer
Dissolution of the NDA
question
A code of ethics provides for all but which of the following?
answer
Clearly defines courses of action to take when a complex issue is encountered
question
Your company security policy requires separation of duties for all network security matters. Which of the following scenarios best describes this concept?
answer
The system administrator configures remote access privileges and the security officer reviews and activates each account
