Security Education: Training and Awareness Quiz
[if you are looking for an answer comment in the post and we can discuss]
1.
SETA programs are intended to:
- Identify bad actors in an organization
- Communicate to employees the consequences of failing to comply with security rules
- Improve employee behavior, communicate a structure for reporting violations, and hold employees accountable
- Protect organizations against hackers
2.
What does it mean to make employees complicit in security management?
- Employees are often complicit (knowingly or unknowingly) in successful hacks.
- Employees must follow the rules in order to keep organizational assets secure.
- Employees need to master the know-what, know-how, and know-why of security so that they can adapt to new situations.
3.
What is the best method for delivering security awareness?
- Emails
- Posters
- Some combination of posters, email, other informal channels
- Formal meetings
4.
Why do different user groups (i.e., novice versus experienced, technical versus managerial) benefit from different training?
- Because their jobs require them to use different systems
- Because their system knowledge is different
- Because they could be differentially targeted by hackers
- These answers are all so good, I can’t pick just one
5.
From a security perspective what is know-what?
- Know what is awareness of security concerns within an organization and your role in them
- Know what includes training is security practices
- Know what is the contextualized understanding of your organization’s security needs
- Know what means knowing what to do in the event of a security breach.
Pls comment
ReplyDelete