15. Outsourcing does not cap financial risk Answeras chosen a vendor, furher risk management is up to that vendor 17. One of the major outsourcing risk concerns ending the agreement, if Answer 16. Once a company T/F outsource vendor's employees have gained significant knowledge of the company. Answer: T/F 18. Information System users have a responsibility to follow security and backup procedures. Answer: T/ 19. U sers should report all IS problems, no matter how trivial, to the IS department. Answer: TIF 20. It is reasonable for IS users to expect to receive repetitive training and support for the same issue. Answer: T/F 21. Unauthorized hardware and programs interfere with automated maintenance programs for upgrading your computer. Answer: T/F 22. W e will most certainly see a fall in the use of mobile devices at work in the next 10 years. Answer: T/F 23. A s problems caused by human errors are accidental and not malicious, they are not considered as security threats to the information system. Answer: T/F 24. Unauthorized data disclosures are possible due to human error. Answer: T/F 25. Pretexting occurs when a person receives a confidential text message by mistake and pretends to be the intended recipient Answer: T/F 26. Email spoofing is a synonym for phishing. Answer: T/F 27. Usurpation occurs when computer criminals invade a computer system and replace le programs with their own unauthorized ones. Answer: T/F 28. It is safer to use the same password for all the Web sites. Answer: T/F 29. The senior management must establish a company-wide security policy that states t organization's posture regarding the data that it gathers. Answer: T/F 30. Security policies must not depend on whether the organization is govemmental or nongovernmental, or whether it is publicly held or private Answer: T/F 31. A new hire must seek out the employer's security policy if it is not discussed in n employee Ans nin