1. A mature organization with existing information systems has many new processes and dependencies included to manage the security and modernize its networks and infrastructure. The Chief Information Office is increasingly frustrated with frequent releases, stating that the organization needs to complete all the work, and the seller must all have longings built into the software product. The supplier is in constant communication with staff and groups within the organization to understand the business processes and capture new software user requirements. Which of the following of this software organizationà ¬ YS's configuration management process using?

A) SDL
B) Waterfall
C) Joint development application
D) agile
E) None


2. A sales manager received a memo from the company's finance department, which stated that the company would not be making the software products through the same security testing as in previous years to the research and development to reduce costs by 20 percent for the coming year . The memo also stated that the marketing materials and service level agreement for each product would remain unchanged. The sales manager has sales goals reviewed and identified for the coming year a larger audience across the software products that will be affected by changes in the financial department. All software products will continue to go through new development in the coming year. Which of the following would be the sales manager to make sure the company stays out of trouble?

A) Consult the legal department of the company's practices and laws
B) Seek industry outreach software practices and laws
C) None
D) Contact senior finance management and provide background
E) Discuss the issue with groups of users of the software product


3. A company has issued a new policy allowing mobile devices and BYOD devices companyissued. The company issued device has a managed client middleware applications allowed limited operating devices and provides those who are approved. The client middleware standardization provides configuration options for both company-owned and BYOD secure data and communication with the device according to industry best practices. The policy states that, à ¬ Å?BYOD clients must meet the companyà ¬ ys infrastructure requirements to a connection.A ¬ The company also gives a brief separate policy that provides instruction in the purchase, installation and using the middleware client BYOD. Which of the following is disclosed?

A) IT governance
B) Risk transfer
C) None
D) Change Management
E) asset


4. A member of the software development team has consulted with the security team to implement a new safe lab for malware testing. Which of the following is the next step that the security team should take?

A) Please present a proposal to management for approval.
B) The construction of a set of VMs to host the malware environment.
C) Buy new hardware to keep the malware isolated.
D) None
E) Develop a policy to outline what the secure lab will be needed


5. An intruder was recently discovered in the data center, a very sensitive area. To gain access, the intruder bypassed many layers of physical and electronic security measures. Company leadership has called for a thorough review of physical security measures to prevent this from happening again. Which of the following sections are the most heavily invested in correcting the problem? (Choose three.)(Select 3answers)

A) Research and development
B) Information technology
C) Programming
D) data center operations
E) Human resource department
F) facility management