CompTIA Security Plus Mock Test Q389

Corporate IM presents multiple concerns to enterprise IT. Which of the following concerns should Jane, the IT security manager, ensure are under control? (Select THREE).

A. Authentication
B. Data leakage
C. Compliance
D. Malware
E. Non-repudiation
F. Network loading

Correct Answer: B,C,D
Section: Compliance and Operational Security

In a joint enterprise, data may be combined from both organizations. It must be determined, in advance, who is responsible for that data and how the data backups will be managed. Data leakage, compliance and Malware issues are all issues concerning data ownership and backup which are both impacted on by corporate IM.

Incorrect Answers:
A: Authentication is more concerned with legitimate, authorized access
E: Nonrepudiation prevents one party from denying actions that they carried out and in the electronic world nonrepudiation measures can be a two-key cryptographic system and the
involvement of a third party to verify the validity. This respected third party ‘vouches’ for the individuals in the two-key system.
F: Networking loading would be a load balancing/ redundancy concern.

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, pp. 262, 397