What term best describes a comprehensive approach to managing and safeguarding information assets,
encompassing technical controls, people, processes, and technology to ensure the confidentiality,
integrity, availability, and non-repudiation of information, as well as the implementation of policies,
procedures, training, and risk management frameworks?
A.
Cyber Resilience
B.
Information Security
C.
Information Assurance
D.
Cybersecurity
Correct Answer: C
Explanation:
Information assurance is a comprehensive approach to managing and safeguarding information assets,
encompassing technical controls, people, processes, and technology to ensure the confidentiality,
integrity, availability, and non-repudiation of information, as well as the implementation of policies,
procedures, training, and risk management frameworks. Information security is the protection of
information and data assets from unauthorized access, use, disclosure, alteration, or destruction that
involves the implementation of security measures, policies, procedures, and controls to ensure the
confidentiality, integrity, and availability of information. Cybersecurity is the practice of safeguarding
computer systems, networks, and digital information from cyber threats through a range of technical,
operational, and managerial measures aimed at preventing unauthorized access, attacks, data
breaches, and other malicious activities in the digital realm. Cyber resilience is an organization’s ability to
withstand and adapt to cyber threats by effectively responding to and recovering from cyber attacks or
disruptions while minimizing damage and maintaining essential functions.
Question #7 (Topic: demo questions)
Which of the following best describes how the NIST Cybersecurity Framework facilitates organizational
cybersecurity practices?
A.
By providing a common language to promote effective collaboration
B.
By dictating precise cybersecurity policies to be followed without deviation
C.
By utilizing rigid structures that limit its adaptability and evolution
D.
By ensuring absolute cybersecurity by elimiating all risk of a data breaches
Correct Answer: A
Explanation:
The NIST Cybersecurity Framework helps facilitate effective communication and collaboration among
organizational stakeholders. It provides a common language and structure for discussing cybersecurity
risks, enabling different teams and departments to communicate effectively and align their efforts. This
characteristic fosters a culture of collaboration, ensuring that cybersecurity considerations are integrated
into various aspects of the organization’s operations.