Jake needs to install service account to perform a system function for a high risk system. He insists on having an interactive login for himself for this account. What is you advise to Jake?

Tell him the design does not meet the Standard

If it's a business requirement, Jake can do whatever he likes

Cindy is working on the design of IDAM controls for a student accommodation management system. She wants to understand appropriate password parameters for the system. Which of the following must be include? (multiple correct answers)

Passphrases must be at least 12 characters in length

include at least two or more alphabetic uppercase

include at least two or more alphabetic lowercase

a new DevOps engineer has joined the IT team but not sure how to manage service account passphrases for a medium risk system. Which of the following is correct option to advise him?

Generate passphrases randomly and store them in a passphrase safe with role-based access controls

Use common phrases that are easy to remember

Record passphrases in a publicly accessible document

Share passphrases with colleagues to facilitate collaboration

You need to ensure that all account passphrases are handled securely to prevent unauthorized access to the UNSW's systems. Which of the following actions violates the best practice of handling account passphrases securely? (multiple correct options)

Storing passphrases in clear text on a local machine

Displaying passphrases on the screen in clear text

Printing passphrases in clear text

Transmitting passphrases in clear text over an unsecured network

What should access be based on? .

The business functions performed by the user.

The user's level of seniority in the company

The user's previous job experience.

The user's personal preferences.

Sarah is the Business Operations (BO) manager for Faculty of Engineering. She is responsible for ensuring that the Disaster Recovery sites are in compliance with the UNSW's Business Continuity & Resilience Framework. What standard must Disaster Recovery sites comply with?

The Cyber Security Standard – IT Hosting Sections 2 and 3. .

NSW govt. Business Continuity Framework

Where should Disaster Recovery sites be located?

In geographic areas that are unlikely to be affected by the same disaster or failure events that have triggered the Disaster Recovery plan.

In areas with a high likelihood of disaster or failure events.

In areas with cheapest land price available

In areas that are convenient for the IT department.

Cyber Policy quiz 4

Authored by Nivedita Newar

Instructional Technology

Professional Development

Used 4+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Lee is late for a meeting due to a personal issue. She requests her colleague to login on her behalf to record a meeting since her attendance is really critical. What do you think of this scenario?

Lee has made the correct choice as her absence will create negative impact

If its only one occasion, it's fine to do so

Lee has breached Cyber policy by sharing her authentication detail

MULTIPLE SELECT QUESTION

45 sec • 1 pt

High risk UNSW Information Services must be configured to fail: (Select multiple correct answers)

into a secure state (fail secure)

as per Solution Architect's discretion

systems can never fail

at or before the recovery point objective

MULTIPLE SELECT QUESTION

1 min • 1 pt

Privileged accounts (including any privileged accounts used by suppliers or service providers, any service accounts, shared accounts or generic accounts) must have their business requirements documented and stored in a searchable format. The information stored must include: (Select multiple correct answers)

operational requirement.

ownership of the account (Individual and organisation).

contact details for the owner

duration of access and any other restrictions such as hours or days of access.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Gary is designing a high risk HR system and intends to use an account with username 'unswHR' as login. Is he permitted to do the same?

Yes

Can't say

DROPDOWN QUESTION

30 sec • 1 pt

Unauthenticated access must only be provided for (a) digital information

publicly accessible

private

sensitive

highly sensitive

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Rachel is the Business Owner of procurement software for the University of New South Wales (UNSW). She is responsible for ensuring that appropriate recovery strategies and processes are defined and implemented for UNSW Information Services to restore services in the required time. What must she do to ensure that the Disaster Recovery plan is effective?

The plan must be communicated effectively to all stakeholders, with training provided.

The plan must be tested every two years.

The plan must be reviewed and updated every five years.

The plan must be kept secret from all stakeholders.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

How often must Rachel's system Disaster Recovery plan be tested?

Every two years. .

Every five years.

Annually and upon significant change

Whenever the IT department sees fit

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

15 questions

E learning

Quiz

•

Professional Development

15 questions

NYULMC | General Knowledge Check

Quiz

•

Professional Development

20 questions

QC Process

Quiz

•

Professional Development

15 questions

The Madeline Hunter Model of Mastery Learning

Quiz

•

Professional Development

20 questions

FUN 101 Week 3 Test Bolts, Studs & Nuts

Quiz

•

Professional Development

18 questions

ALP Summit 2021

Quiz

•

Professional Development

15 questions

CPA Flowchart Mastery

Quiz

•

7th Grade - Professio...

20 questions

instructional technology

Quiz

•

KG - Professional Dev...

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

14 questions

Boundaries & Healthy Relationships

Lesson

•

6th - 8th Grade

13 questions

SMS Cafeteria Expectations Quiz

Quiz

•

6th - 8th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

12 questions

SMS Restroom Expectations Quiz

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

10 questions

Pi Day Trivia!

Quiz

•

6th - 9th Grade

Discover more resources for Instructional Technology

20 questions

90s Cartoons

Quiz

•

Professional Development

5 questions

Workplace Documents Practice Test: Document 1

Quiz

•

Professional Development

5 questions

Workplace Documents Practice Test: Document 2

Quiz

•

Professional Development

10 questions

March Quiz

Quiz

•

Professional Development

5 questions

Copy of G5_U6_L8_22-23

Lesson

•

KG - Professional Dev...

Cyber Policy quiz 4

Lee is late for a meeting due to a personal issue. She requests her colleague to login on her behalf to record a meeting since her attendance is really critical. What do you think of this scenario?

High risk UNSW Information Services must be configured to fail: (Select multiple correct answers)

Gary is designing a high risk HR system and intends to use an account with username 'unswHR' as login. Is he permitted to do the same?

Unauthenticated access must only be provided for ​ (a) digital information

How often must Rachel's system Disaster Recovery plan be tested?

Arun is a business owner of Finance application that is designed in a way it requires 5 privileged accounts. For each of these accounts. Which of the following business requirements must be documented by him as the business owner? (multiple correct answers)

Jake needs to install service account to perform a system function for a high risk system. He insists on having an interactive login for himself for this account. What is you advise to Jake?

Cindy is working on the design of IDAM controls for a student accommodation management system. She wants to understand appropriate password parameters for the system. Which of the following must be include? (multiple correct answers)

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Instructional Technology

Unauthenticated access must only be provided for (a) digital information