Questões de Concurso
Comentadas para analista de segurança da informação
Foram encontradas 207 questões
Resolva questões gratuitamente!
Junte-se a mais de 4 milhões de concurseiros!
A norma ABNT ISO/IEC 27001 estabelece um modelo para a implementação e manutenção de um Sistema de Gestão da Segurança da Informação. Segundo a norma, os requisitos para esse tipo de sistema aplicam-se a organizações
Um dos capítulos da norma ABNT ISO/IEC 27002 estabelece a necessidade de proteção das áreas seguras (que contêm instalações de processamento da informação). O capítulo em questão refere-se
Um dos objetivos principais de um Plano de Continuidade de Negócios de uma empresa é
O código malicioso do tipo rootkit apresenta como característica principal e peculiar
No que se refere aos registros (logs) de um sistema de informação, é correto afirmar que
Considerando a classificação da informação, há um nível em que as informações podem ser liberadas para o público em geral, pois não têm potencial de causar danos ao proprietário dessas informações. Esse nível recebe a denominação de
De um argumento válido com duas premissas, conclui-se corretamente que João não é pai de Ana. Uma das premissas desse argumento afirma como verdadeiro que João é pai de Ana se, e somente se, Maria é tia de Ana. Sendo assim, uma segunda premissa verdadeira para esse argumento é
As duas afirmações a seguir são verdadeiras.
Se João é administrador ou Carlos é enfermeiro, então Marta é médica e Cássio é dentista.
Cássio não é dentista.
Das afirmações, pode-se concluir corretamente que
Considere a seguinte afirmação:
Se hoje chove, então amanhã faz frio.
Uma negação lógica para essa afirmação está apresentada na alternativa:
Analise o texto a seguir:
The Internet has become such an integral part of our lives, with such powerful capabilities, that it is easy to forget that this technological marvel was created by the long, hard, dedicated efforts of human beings – folks who had a vision of what universal networking could become and worked to make it happen. The key people, projects, and organizations that helped create the Internet are described below, first in a top-level summary and then in sections in roughly chronological order.
(Extraído de: Internet History. http://www.livinginternet.com/i/ii.htm)
Baseando-se no texto apresentado, é correto afirmar que
Considere o texto a seguir:
We should point out here that the focal point of any operating system is its ‘kernel’. Without going into great detail, the kernel is what tells the big chip that controls your computer to do what you want the program that you’re using to do. To use a metaphor, if you go to your favorite Italian restaurant and order ‘Spaghetti alla Bolognese’, this dish is like your operating system. There are a lot of things that go into making that dish like pasta, tomato sauce, meatballs and cheese. Well, the kernel is like the pasta. Without pasta, that dish doesn’t exist. You might as well find some bread and make a sandwich. A plate of just pasta is fairly unappetizing.
Without a kernel, an operating system doesn’t exist. Without programs, a kernel is useless.
(Extraído de: Beginners Level Course: What is Linux? linux.org.
http://www.linux.org/threads/what-is-linux.4076/)
Segundo o texto, pode-se interpretar que
O texto a seguir deve ser utilizado para responder às questões de números 21 a 23.
Historically, information security has been called a number of different things such as:
• Data security;
• IT Security;
• Computer security.
But these terms (except possibly data security) ignore the fact that the information that is held on the computers is almost always and most certainly worth many times more than the computers that it runs on. The correct term is ‘information security’ and typically information security comprises three component parts:
• Confidentiality. Assurance that information is shared only among authorised persons or organisations. Breaches of confidentiality can occur when data is not handled in a manner appropriate to safeguard the confidentiality of the information concerned. Such disclosure can take place by word of mouth, by printing, copying, e-mailing or creating documents and other data etc.;
• Integrity. Assurance that the information is authentic and complete. Ensuring that information can be relied upon to be sufficiently accurate for its purpose. The term ‘integrity’ is used frequently when considering information security as it represents one of the primary indicators of information security (or lack of it). The integrity of data is not only whether the data is ‘correct’, but whether it can be trusted and relied upon;
• Availability. Assurance that the systems responsible for delivering, storing and processing information are accessible when needed, by those who need them.
(Extraído de: “An Introduction to Information, Network and Internet Security.
What is ‘Information Security’?” The Security Practitioner
http://security.practitioner.com/introduction/infosec_2.htm)
Os sinônimos para o termo “assurance”, dentro do contexto, são:
O texto a seguir deve ser utilizado para responder às questões de números 21 a 23.
Historically, information security has been called a number of different things such as:
• Data security;
• IT Security;
• Computer security.
But these terms (except possibly data security) ignore the fact that the information that is held on the computers is almost always and most certainly worth many times more than the computers that it runs on. The correct term is ‘information security’ and typically information security comprises three component parts:
• Confidentiality. Assurance that information is shared only among authorised persons or organisations. Breaches of confidentiality can occur when data is not handled in a manner appropriate to safeguard the confidentiality of the information concerned. Such disclosure can take place by word of mouth, by printing, copying, e-mailing or creating documents and other data etc.;
• Integrity. Assurance that the information is authentic and complete. Ensuring that information can be relied upon to be sufficiently accurate for its purpose. The term ‘integrity’ is used frequently when considering information security as it represents one of the primary indicators of information security (or lack of it). The integrity of data is not only whether the data is ‘correct’, but whether it can be trusted and relied upon;
• Availability. Assurance that the systems responsible for delivering, storing and processing information are accessible when needed, by those who need them.
(Extraído de: “An Introduction to Information, Network and Internet Security.
What is ‘Information Security’?” The Security Practitioner
http://security.practitioner.com/introduction/infosec_2.htm)
Segundo o texto, quando os dados não são tratados de forma adequada para salvaguardar a confidencialidade da informação de interesse, pode ocorrer
O texto a seguir deve ser utilizado para responder às questões de números 21 a 23.
Historically, information security has been called a number of different things such as:
• Data security;
• IT Security;
• Computer security.
But these terms (except possibly data security) ignore the fact that the information that is held on the computers is almost always and most certainly worth many times more than the computers that it runs on. The correct term is ‘information security’ and typically information security comprises three component parts:
• Confidentiality. Assurance that information is shared only among authorised persons or organisations. Breaches of confidentiality can occur when data is not handled in a manner appropriate to safeguard the confidentiality of the information concerned. Such disclosure can take place by word of mouth, by printing, copying, e-mailing or creating documents and other data etc.;
• Integrity. Assurance that the information is authentic and complete. Ensuring that information can be relied upon to be sufficiently accurate for its purpose. The term ‘integrity’ is used frequently when considering information security as it represents one of the primary indicators of information security (or lack of it). The integrity of data is not only whether the data is ‘correct’, but whether it can be trusted and relied upon;
• Availability. Assurance that the systems responsible for delivering, storing and processing information are accessible when needed, by those who need them.
(Extraído de: “An Introduction to Information, Network and Internet Security.
What is ‘Information Security’?” The Security Practitioner
http://security.practitioner.com/introduction/infosec_2.htm)
A melhor tradução, dentro do contexto, para “information security comprises three component parts” é: