ThatQuiz Test Library Take this test now
IASEC1
Contributed by: Vergonio
  • 1. The quality or state of being secure that is to be free from danger.
A) Security
B) Information security
C) Cybersecurity
D) Information assurance
  • 2. A construction block in DIKW pyramid that has been "cleaned of errors and further processed so that it is easier to measure, visualize, and analyze for a specific purpose.
A) Knowledge
B) Information
C) Wisdom
D) Data
  • 3. Information Security is basically the practice of preventing unauthorized access, use, disclosure, disruption, modification, inspection, recording or destruction of information.
A) Data Security
B) Information Security
C) Cybersecurity
D) Information Assurance
  • 4. To safeguard the person or group of people who have been granted access to the organization and its operations is known as
A) Personal security
B) Operations security
C) Physical security
D) Communication security
  • 5. A web browser pop-up appears on your personal computer offering an "anti-spyware product" What's your best course of action?
A) Click on the link in the ad to learn more about the company its products before you provide.
B) Click on the link and provide your personal information
C) Click on the link and provide your credit card information as the more protection prompted to install the better.
D) Close the window. If want spyware protection software, better to get it from a provider with extensive review and download on a reputed site such as download.com.
  • 6. Peter is working at a real estate business this summer. He's using the company's computer system to enter client addresses. Marzan is working at what level of the DIKW hierarchy?
A) Information
B) Wisdom
C) Data
D) Knowledge
  • 7. These attackers intend to do damage to your system or try to obtain the information from tha system which can be used to attain financial gain.
A) hackers
B) Malware
C) Intruders
D) Virus
  • 8. The highest level of the DIKW Pyramid is _______
A) Knowledge
B) Wisdom
C) Information
D) Data
  • 9. _______ is a group of people working together to achieve the same goal or objectives.
A) Organization
B) Company
C) Industry
D) Enterprise
  • 10. is the information you have learned, while wisdom is the ability to use that knowledge in a profound way.
A) Wisdom
B) Information
C) Knowledge
D) Data
  • 11. The ________ hierarchy, connects data, information, knowledge, and wisdom in four layers
A) IPO
B) DIKW
C) Sequential access
D) GIGO
  • 12. _________ are the news who is only interested in penetrating into your system. They do not cause any harm to your system they only get satisfied by getting access to your system.
A) Trojan horse
B) Hacker
C) Malware
D) Virus
  • 13. Mary is analyzing the sales report figures as a new sales manager to determine the top three salespeople for the year. Mary is working at what level of the DIKW hierarchy
A) Data
B) Knowledge
C) Wisdom
D) Information
  • 14. __________ is the protection of assets from harm.
A) Security
B) Data security
C) Information security
D) Cybersecurity
  • 15. When data is compiled or used to better understand or do anything, it is referred to as ___________
A) Data
B) Knowledge
C) Information
D) Wisdom
  • 16. Assets within the organization includes: machine, facilities, data, information and __________
A) Wisdom
B) Security
C) Knowledge
D) People
  • 17. We turn data into information providing _________ into it.
A) Wisdom
B) Knowledge
C) Context
D) Security
  • 18. Information is __________ when it is free of faults or mistakes and provides the value that the end-user expects.
A) Reliable
B) Confidential
C) true
D) accurate
  • 19. ________ is the quality or state of being exposed to the possibility of being attackod or harmed, either physically or emotionally.
A) integrity
B) availability
C) vulnerability
D) confidentiality
  • 20. The securing of computer systems and data against harm, theft, and unauthorized access is

    known as ________
A) Data security
B) Computer Security
C) vulnerability
D) Information security
  • 21. ________ is a concept that allows you to recognize patterns and the elements that drive them. Ultimately, it allows future events to be predicted.
A) Data
B) Knowledge
C) Wisdom
D) Information
  • 22. Information must be available for use by those who have been granted access to it, which is a feature of IΑ.
A) Integrity
B) Authenticity
C) Integrity
D) Availability
  • 23. __________ is knowledge applied in action.
A) Information
B) Data
C) Wisdom
D) Knowledge
  • 24. _________ defines and applies a collection of policies, standards, methodologies, services, and mechanism to maintain mission integrity with respect to people, process, technology, information and supporting infrastructure.
A) Information Assurance
B) Information security
C) Information and Information System
D) Security
  • 25. __________, means to safeguard network components, connections, and data.
A) network security
B) availability
C) security
D) confidentiality
  • 26. An _________ is where an unauthorized individual gains access to confidential or private information.
A) interruption
B) interception
C) Modification
D) Fabrication
  • 27. Unintentional tampering, such as human errors or data loss as a result of a system failure, must also he protected by effective integrity countermeasures.
A) False
B) True
  • 28. __________ is defined set of measures that ensure the availability, integrity. authenticity, secrecy, and nonrepudiation of information and information systems,
A) computer security
B) Information assurance
C) information
D) information security
  • 29. Hardware failures, unanticipated software downtime, and network bandwidth challenges are just a few of the most common non-malicious threats to availability.
A) False
B) True
  • 30. What does multi-factor authentication (MFA) require?
A) A firewall
B) Only a password
C) A single security question
D) Multiple verification methods, such as biometrics or one-time codes
  • 31. What is the primary goal of information security?
A) Improve network speed
B) Ensure system functionality
C) Protect data confidentiality, integrity, and availability
D) Prevent unauthorized system access
  • 32. What is a common method used to assess risks within an organization?
A) Risk assessment framework
B) Firewall configuration
C) Random employee surveys
D) Ignoring security incidents
  • 33. What does "CIA Triad" stand for in cybersecurity?
A) Cryptographic Integration Algorithms
B) Cyber Intelligence Agency
C) Confidentiality, Integrity, Availability
D) Computer Infrastructure Analysis
  • 34. What does a Disaster Recovery Plan (DRP) focus on?
A) Increasing revenue
B) Maintaining customer engagement
C) Employee satisfaction surveys
D) Restoring IT systems and data after a disruption
  • 35. What is the role of a risk mitigation plan?
A) Help organizations reduce the impact of security risks
B) Prevent all security threats permanently
C) Ignore vulnerabilities in the system
D) Allow employees unrestricted access to data
  • 36. Which security attack involves an attacker intercepting communication between two parties?
A) Ransomware
B) Man-in-the-Middle attack
C) DDoS Attack
D) SQL Injection
  • 37. What is the Zero Trust security model?
A) Disable all security features
B) Always verify and authenticate before granting accessB. Always verify and authenticate before granting access
C) Provide unrestricted access to databases
D) Trust all internal users automatically
  • 38. What is the purpose of an Intrusion Detection System (IDS)?
A) Prevent unauthorized access
B) Encrypt sensitive data
C) Detect potential security breaches
D) Speed up network traffic
  • 39. Which type of malware locks user files and demands payment for access?
A) Spyware
B) Trojan Horse
C) Ransomware
D) Worm
  • 40. Which security principle restricts users to only the permissions necessary for their roles?
A) Multi-factor authentication
B) Denial-of-service
C) Least privilege
D) Open access
  • 41. How can a company ensure its Business Continuity Plan remains effective?
A) Ignore it until an emergency occurs
B) Regularly review and update the plan
C) Delay testing procedures
D) Reduce security measures
  • 42. Which type of malware encrypts files and demands payment for their release?
A) Ransomware
B) Worm
C) Trojan Horse
D) Spyware
  • 43. What is the first step in developing a Business Continuity Plan?
A) Purchasing cybersecurity software
B) Hiring more employees
C) Conducting a business impact analysis (BIA)
D) Expanding business operations
  • 44. Which strategy helps businesses remain operational during a natural disaster?
A) Ignoring customer inquiries
B) Relying on social media advertising
C) Using only local backups
D) Relocating all servers off-site or to the cloud
  • 45. What is the main goal of a Business Continuity Plan (BCP)?
A) Reduce hiring costs
B) Ensure business operations continue during disruptions
C) Improve advertising strategies
D) Increase company profits
  • 46. What is the main purpose of cybersecurity?
A) Increase internet speed
B) Improve software speed
C) Protect digital systems from unauthorized access and threats
D) Minimize hardware costs
  • 47. What is the main purpose of cybersecurity?
A) Increase internet speed
B) Minimize hardware costs
C) Improve software speed
D) Protect digital systems from unauthorized access and threats
  • 48. What is the term for an individual inside an organization who intentionally leaks sensitive information or causes security breaches?
A) System administrator
B) External hacker
C) Firewall bypasser
D) Insider threat
  • 49. What is the main purpose of penetration testing in cybersecurity?
A) To crash an organization's system
B) To delete unnecessary files
C) To slow down network connections
D) To identify weaknesses by simulating cyberattacks
  • 50. Which security measure helps prevent brute-force attacks on passwords?
A) Using simple passwords
B) Limiting login attempts
C) Disabling firewalls
D) Allowing unlimited retries
  • 51. What type of cyberattack uses fake emails to trick users into revealing sensitive information?
A) SQL Injection
B) Phishing
C) Malware
D) Denial-of-Service(DoS)
  • 52. Which event would require a company to activate its Business Continuity Plan?
A) Routine software updates
B) Annual employee training
C) Office relocation
D) Cyberattack, natural disaster, or major equipment failure
  • 53. Why is business impact analysis (BIA) critical in business continuity planning?
A) It helps organizations understand the potential consequences of disruptions
B) It eliminates all business risks
C) It prevents all operational failures
D) It focuses only on marketing strategies
  • 54. What is a common method used in phishing attacks?
A) Sending deceptive emails to trick users
B) Encrypting all system files
C) Exploiting software vulnerabilities
D) Blocking all incoming network traffic
  • 55. Who is responsible for executing a Business Continuity Plan during an emergency?
A) Random employees
B) The designated business continuity team and stakeholders
C) Only the CEO
D) External consultants
  • 56. What is social engineering in cybersecurity?
A) Hacking servers using malware
B) Conducting network vulnerability tests
C) Strengthening security with encryption
D) Manipulating individuals to reveal confidential information
  • 57. Which cybersecurity principle helps reduce risk by restricting system access based on user roles?
A) Least Privilege
B) No Authentication
C) Open Access
D) Firewal Bypass
  • 58. Which type of attack floods a network or system to overload resources?
A) Phishing
B) Man-in-the-middle
C) Denial-of-Service (DoS)
D) SQL Injection
  • 59. Which security principle ensures data remains unchanged during transit or storage?
A) Availability
B) Confidentiality
C) Authentication
D) Integrity
  • 60. What is the primary function of a Virtual Private Network (VPN)?
A) Prevent phishing attacks
B) Encrypt internet connections for secure browsing
C) Improve internet speed
D) Block ads
  • 61. What is the main difference between risk and vulnerability?
A) Risk refers to potential threats, while vulnerability is a weakness that can be exploited
B) Risk is always external, while vulnerability is always internal
C) Risk and vulnerability mean the same thing
D) Vulnerability deals with financial losses, while risk only affects IT systems
  • 62. How can organizations reduce human-related security vulnerabilities?
A) Ignore employee cybersecurity habits
B) Provide regular cybersecurity awareness training
C) Avoid using passwords
D) Rely only on antivirus software
  • 63. Which security principle requires users to only have the necessary access to perform their tasks?
A) Network segmentation
B) Network segmentation
C) Open Access
D) Multi-factor authentication
  • 64. What is the primary role of antivirus software?
A) Detect and remove malware
B) Speed up internet browsing
C) Speed up internet browsing
D) Monitor online activity
  • 65. What is a common defense against brute-force attacks?
A) Limiting login attempts
B) Weak passwords
C) Disabling firewalls
D) Keeping software outdated
  • 66. Which factor increases an organization's security risk?
A) Outdated software and weak passwords
B) Encrypted data storage
C) Strong authentication measures
D) Regular employee cybersecurity training
  • 67. What does HTTPS in a web address indicate?
A) A faster connection speed
B) A local network connection
C) A secure, encrypted data transmission
D) A government-authorized website
  • 68. What is the purpose of a firewall in network security?
A) Encrypt data files
B) Detect viruses
C) Block unauthorized access
D) Enhance internet speed
  • 69. What does multi-factor authentication (MFA) require?
A) Only a username
B) A firewall setup
C) Multiple authentication factors, such as biometrics and codes
D) Password only
  • 70. Which cybersecurity practice involves testing a system for vulnerabilities before an attack occurs?
A) Ethical hacking
B) Phishing
C) Social Engineering
D) Malware analysis
  • 71. How can users protect against cyber threats?
A) Ignore security updates
B) Click on unknown email links
C) Disable antivirus protection
D) Use strong passwords and update software regularly
  • 72. Which essential component should a Business Continuity Plan include?
A) Disaster recovery procedures
B) Daily employee schedules
C) Company logo designs
D) Marketing strategies
  • 73. What is the main function of a firewall?
A) Create backup copies of data
B) Prevent unauthorized access to a network
C) Detect hardware failures
D) Enhance browsing speed
  • 74. What is the best way to mitigate security vulnerabilities?
A) Use simple and easy-to-guess passwords
B) Perform regular security updates and patches
C) Avoid monitoring user activities
D) Ignore small risks
Created with That Quiz — a math test site for students of all grade levels.