Isa in Our World

Only available on StudyMode
  • Download(s) : 121
  • Published : February 10, 2013
Open Document
Text Preview
ISA 650 Final Exam Study Guide

11/1/2012

ISA 650 Final Exam Study Guide & Sample Questions
True/False
Indicate whether the statement is true or false.
____

1. Congress has not written any legislation that has significant impact on Federal IT Security Policy.

____

2. Congress established the Office of Science and Technology Policy in 1976 with a broad mandate to advise the President and others within the Executive Office of the President on the effects of science and technology on domestic and international affairs.

____

3. The 1976 Act that established OSTP also authorizes it to lead interagency efforts to develop and implement sound science and technology policies and budgets, and to work with the private sector, state and local governments, the science and higher education communities, and other nations toward this end.

____

4. The National Security Council (NSC) serves as the President's principal arm for coordinating national security policies among various government agencies.

____

5. In accordance with the DoD Information Assurance Certification and Accreditation Process (DIACAP), all the information relevant to the Certification and Accreditation (C&A) of a particular system is collected into the one document, the Systems Security Authorization Agreement (SSAA).

____

6. The National Institute of Standards and Technology (NIST) is an agency of the Department of Commerce.

____

7. The Office of Management and Budget (OMB) has the responsibility for improving the acquisition, use and disposal of Information Technology (IT) to improve Federal programs.

____

8. The Common Criteria provides assurance that the process of specification, implementation and evaluation of a computer security product has been conducted in a rigorous and standard manner.

____

9. The Common Criteria is currently an international standard.

____

10. Consistent with OMB policy, the Federal IT Security Assessment Framework (FITSAF) requires all departments and agencies within the Federal Executive Branch (FEB) to implement and maintain a program to adequately secure its information and system assets.

____

11. CNSS provides policy, directives, and instructions binding upon all U.S. government departments and agencies for national security systems, including systems in the intelligence community and DoD

Copyright © 2010, Raymond J. Curts. All Rights Reserved.
32

Page 1 of

ISA 650 Final Exam Study Guide

11/1/2012

____

12. The Government Management Reform Act (GMRA) of 1994 requires agencies to have comprehensive financial statements that are audited.

____

13. The Federal Financial Management Improvement Act (FFMIA) of 1996 seeks to hold agencies accountable for complying with the FASAB accounting standards, by requiring agencies to report lack of compliance.

____

14. An important aspect of the Government Performance and Results Act (GPRA) is linking dollars to results - a.k.a. performance-based budgeting.

____

15. The Federal Information Technology Assessment Framework establishes new security requirements on the acquisition, installation and use of IT assets within the Federal Executive Branch.

____

16. The Chief Financial Officers Act (CFOA) of 1990 established a CFO at each agency, charged with implementing effective accounting and financial management systems.

____

17. The completion of system security plans is a requirement for all Federal Departments and Agencies.

____

18. Electronic Data Interchange (EDI) can be formally defined as the transfer of structured data, by agreed message standards, from one computer system to another without human intervention.

Copyright © 2010, Raymond J. Curts. All Rights Reserved.
32

Page 2 of

ISA 650 Final Exam Study Guide

11/1/2012

Multiple Choice
Identify the choice that best completes the statement or answers the question. ____

19. Who writes IT Security Policy within...
tracking img