assist with the following questions?

Part OneModule 05: Incident Response and Contingency Planning Review Questions

2. What is the name for the broad process of planning for the unexpected? What are its primary components?
   • Answer:
5. Which two communities of interest are usually associated with contingency planning? Which community must give authority to ensure broad support for the plans?
   • Answer:
8. According to some reports, what percentage of businesses that do not have a disaster plan go out of business after a major loss?
   • Answer:
11. List the seven-step CP process recommended by NIST.
    • Answer:
14. List and describe the teams that perform the planning and execution of the CP plans and processes. What is the primary role of each?
    • Answer:
17. Define the term incident as used in the context of IRP. How is it related to the concept of incident response?
    • Answer:
20. List and describe the criteria used to determine whether an actual incident is occurring.
    • Answer:
23. List and describe the sets of procedures used to detect, contain, and resolve an incident.
    • Answer:
26. What is incident classification?
    • Answer:
29. List and describe the actions that should be taken during the reaction to an incident.
    • Answer:
32. What is an alert roster? What is an alert message? Describe the two ways they can be used.
    • Answer:
35. List and describe several containment strategies given in the text. On which tasks do they focus?
    • Answer:
38. What is a disaster recovery plan, and why is it important to the organization?
    • Answer:
41. What is a business continuity plan, and why is it important?
    • Answer:
44. What is a business impact analysis, and what is it used for?
    • Answer:
47. Why should contingency plans be tested and rehearsed?
    • Answer:
50. Which types of organizations might use a unified continuity plan? Which types of organizations might use the various contingency planning components as separate plans? Why?
    • Answer:
53. What strategies can be used to test contingency plans?
    • Answer:
56. List and describe two specialized alternatives not often used as a continuity strategy.
    • Answer:
59. What is digital forensics, and when is it used in a business setting?
    • Answer:
62. What is a security awareness program?
    • Answer:

Module 06: Legal, Ethical, and Professional Issues in Information Security Review Questions

2. What is the difference between law and ethics?
   • Answer:
5. What is civil law, and what does it accomplish?
   • Answer:
8. What are the primary examples of public law?
   • Answer:
11. Which law amended the Computer Fraud and Abuse Act of 1986, and what did it change?
    • Answer:
14. Which law was created specifically to deal with encryption policy in the United States?
    • Answer:
17. What is privacy in an information security context?
    • Answer:
20. What is another name for the Kennedy-Kassebaum Act (1996), and why is it important to organizations that are NOT in the healthcare industry?
    • Answer:
23. If you work for a financial services organization such as a bank or credit union, which 1999 law affects your use of customer data? What other effects does it have?
    • Answer:
26. What is the primary purpose of the USA PATRIOT Act, and how has it been revised since its original passage?
    • Answer:
29. What is PCI DSS, and why is it important for information security?
    • Answer:
32. What is intellectual property (IP)? What laws currently protect IP in the United States and Europe?
    • Answer:
35. How does the Sarbanes-Oxley Act of 2002 affect information security managers?
    • Answer:
38. What is due care? Why should an organization make sure to exercise due care in its usual course of operations?
    • Answer:
41. How is due diligence different from due care? Why are both important?
    • Answer:
44. What is a policy? How is it different from a law?
    • Answer:
47. What are the three general categories of unethical computer use?
    • Answer:
50. What are the three general causes of illegal or unethical activity?
    • Answer:
53. Of the information security organizations listed in this module that have codes of ethics, which has been established for the longest time? When was it founded?
    • Answer:
56. Of the organizations listed in this module that have codes of ethics, which is focused on auditing and control?
    • Answer:
59. How do people from varying ethnic backgrounds differ in their views of computer ethics?
    • Answer:

Module 07: Security and Personnel Review Questions

2. What member of an organization should decide where the information security function belongs within the organizational structure? Why?
   • Answer:
5. List and describe the options for placing information security within the organization.
   • Answer:
8. For each major information security job title covered in the module, list and describe the key qualifications and requirements for the position.
   • Answer:
11. What factors influence an organization's decisions to hire information security professionals?
    • Answer:
14. Prioritize the list of general attributes that organizations seek when hiring information security professionals. In other words, list the most important attributes first. Use the list you developed to answer the previous review question.
    • Answer:
17. What are critical considerations when dismissing an employee? Do they change according to whether the departure is friendly or hostile, or according to which position the employee is leaving?
    • Answer:
20. How do security considerations for temporary or contract employees differ from those for regular full-time employees?
    • Answer:
23. What career paths do most experienced professionals take when moving into information security? Are other pathways available? If so, describe them.
    • Answer:
26. Why is it important to use specific and clearly defined job descriptions for hiring information security professionals?
    • Answer:
29. What functions does the CISO perform?
    • Answer:
32. What functions does the security manager perform?
    • Answer:
35. What functions does the security analyst perform?
    • Answer:
38. What rationale should an aspiring information security professional use in acquiring professional credentials?
    • Answer:
41. List some of the information security certifications mentioned in this module.
    • Answer:
44. Discuss the financial costs of certification. How expensive is the process?
    • Answer:
47. List and describe the standard personnel policies and practices that are part of the information security function.
    • Answer:
50. Why shouldn't an organization give a job candidate a tour of secure areas during an interview?
    • Answer:
53. List and describe the typical relationships that organizations have with temporary employees, contract employees, consultants, and business partners. What special security precautions must an organization consider for such workers, and why are they significant?
    • Answer:
56. What is separation of duties? How can it be used to improve an organization's information security practices?
    • Answer:
59. What is job rotation, and what benefits does it offer an organization?
    • Answer:

Part TwoHands-On Project: Microsoft OS Processes and Services

Complete the Hands-On Project: Microsoft OS Processes and Services

After completing the hands-on project, answer the following prompts

Self-Reflection and Response

What is the difference between a process and a service in the Windows operating system?

Can you think of why you would need to be able to determine which processes are running on your Windows computer?

Can you think of why you would need to be able to determine which services are running on your Windows computer?

Hands-On Project: Backup and Recovery and File Integrity Monitoring

Complete the Hands-On Project: Backup and Recovery and File Integrity Monitoring

After completing the hands-on project, answer the following prompts

Self-Reflection and Response

Have you chosen to make a backup copy of your computer system? In the space below, explain why or why not. What steps did you take (or will you take in the future) to research and implement your method?

Can you think of another reason, not mentioned in the lab, for using the File Integrity monitor featers found in PowerShell? Describe how you might use it.

Were you able to install and use the hashing tools from MaresWare? What was your experience using these tools?