* Question 1 10 out of 10 points I Proprietary information is information which may give an organization a competitive edge. Answer I I Selected Answer: I True I Correct Answer: I True I Response Feedback: I Correct I * Question 2 O out of 10 points I Integrity involves implementation of the necessary level of secrecy and prevention of unauthorized disclosure of sensitive information and resources. Answer I Correct Answer: I False I I Incorrect I * Question 3 I Obtaining buy-in on an information security program can be difficult because it is difficult to quantify the return on investment.

Answer I I Selected Answer: I False I * Question 4 I Availability is concerned solely with providing reliable access to data to authorized individuals. Answer I I Selected Answer: I False I * Question 5 I Integrity involves assuring that the users accessing the information are authorized to do so. Answer I * Question 6 I The main objective of information security is to preserve the availability, integrity, and confidentiality of information and knowledge of an organization. Answer I * Question 7 I Information classification is best implemented by assigning the highest level of access control to all information.

Answer I * Question 8 I The emergence of information security is in part due to increasing reliance on information technology to facilitate business operations. Answer I Selected Answer: I True I * Question 9 I A bottom-up approach to an information security implementation, as opposed to one which is promoted and supported by the highest levels of management, is the more effective meaner to organizational buy-in of an Information Security program. Answer I * Question 10 I Purchasing insurance or obtaining a vendor indemnification are examples of rejecting risk. Answer I