1. Which management groups are responsible for implementing information security to protect the organizations ability to function?

2. Has the implementation of networking technology created more or less risk for businesses that use information technology? Why?

3. What is information extortion? Describe how such an attack can cause losses, using an example not found in the text.

4. Why are employees one of the greatest threats to information security? 7. How can you protect against shoulder surfing?

5. How has the perception of the hacker changed over recent years? What is the profile of a hacker today?

6. What is the difference between a skilled hacker and an unskilled hacker, other thanskill levels? How does the protection against each differ?

7. What are the various types of malware? How do worms differ from viruses? Do Trojanhorses carry viruses or worms?

8. Why does polymorphism cause greater concern than traditional malware? How does it affect detection?

9. What is the most common violation of intellectual property? How does an organization protect against it? What agencies fight it?

10. What are the various forces of nature? Which type might be of greatest concern to an organization in Las Vegas? Jakarta? Oklahoma City? Amsterdam? Miami? Tokyo?