Question 31: Only one in three employees understands that not securing laptops and mobile devices with password protection creates an enormous security risk.
A. True
B. False
Correct Answer:
B. False
Question 32: The customer-facing evangelist CISO is typically:
A. quiet, calm and able to listen well to customers.
B. prone to advocate for aggressive investment in cybersecurity training.
C. one of the most problematic of CISO types.
D. a confident, charismatic leader who thrives in chaos and fast-paced environments.
Correct Answer:
D. a confident, charismatic leader who thrives in chaos and fast-paced environments.
Question 33: Leading experts suggest improving cybersecurity awareness in the workplace by:
A. tailoring training to specific roles and using peer ambassadors to promote security messages.
B, measuring improvements in awareness, while docking pay for those who fail to improve.
C, enlisting marketing pros to help brand internal security training efforts.
D. a and b.
E. a and c.
none of the above.
Correct Answer:
E. a and c.
Question 34: The term shift left refers to the practice of:
A. ignoring phishing emails that appear to come from left-leaning political candidates.
B. introducing security earlier in the development process.
C. educating payment specialists on how cybercriminals create deepfakes to steal company funds.
D. none of the above.
Correct Answer:
B. introducing security earlier in the development process.
Question 35: In the cover story on cybersecurity awareness, CISO Christina Quaine outlines how she:
A. has learned to focus cybersecurity training on the most junior employees, who are the cause of most data breaches.
B. has learned to focus cybersecurity training on the most senior members of the security team because they are most likely to overestimate their ability to recognize potential threats.
C. takes a comprehensive approach to awareness training, which includes scheduled events, ongoing initiatives and techniques aimed at different types of learners.
D. none of the above.
Correct Answer:
C. takes a comprehensive approach to awareness training, which includes scheduled events, ongoing initiatives and techniques aimed at different types of learners.
Question 36: Statistics reported in the 2020 State of Privacy and Security Awareness Report from MediaPRO find evidence that the vast majority of employees in the firms surveyed are not very confident in their ability to recognize a phishing email or when malware has infected their computers.
A. True
B. False
Correct Answer:
A. True
Question 37: True or false? Rathburn said the key aspect of predictive analytics is identifying subgroups of people, such as customers, whose expected behavior differs from that of the overall group being studied.
A. True
B. False
Correct Answer:
A. True
Question 38: According to Rathburn, which type of analysis should companies focus on as part of advanced analytics programs?
A. What-if analysis to test out different business hypotheses and scenarios
B. Who’s-next analysis to predict customer behavior and guide resource allocation
Correct Answer:
B. Who’s-next analysis to predict customer behavior and guide resource allocation
Question 39: In predictive analytics applications, Rathburn said, historical data is:
A. Critical — it must identify who does and doesn’t display the behavior in question
B. Irrelevant — building models to predict future behavior is what counts
C. Nice to have for potential use in checking the results of predictive models
Correct Answer:
A. Critical — it must identify who does and doesn’t display the behavior in question
Question 40: True or false? Rathburn said highly precise information on the behavior of individual customers is more valuable for analytical purposes than general data about groups of customers.
A. True
B. False
Correct Answer:
B. False