Get premium membership and access revision papers, questions with answers as well as video lessons.
Got a question or eager to learn? Discover limitless learning on WhatsApp now - Start Now!

Cisy 431:Information System Security &Amp; Audit Question Paper

Cisy 431:Information System Security &Amp; Audit 

Course:Computer Information Systems

Institution: Kenya Methodist University question papers

Exam Year:2012



END OF 3RD TRIMESTER 2012 (DAY) EXAMINATIONS

FACULTY : COMPUTING AND INFORMATICS
DEPARTMENT : COMPUTER SCIENCE & BUSINESS INFORMATION
UNIT CODE : BBIT 443/CISY 431
UNIT TITLE : INFORMATION SYSTEM SECURITY & AUDIT
TIME : 2 HOURS


INSTRUCTIONS
Answer question ONE and any other TWO questions.

SECTION A: ANSWER ALL QUESTIONS (30 MARKS)

Question One

a. Define the following terms (6 Marks)
i) Non-repudiation.
ii) Replay.
iii) CAAT

b. Explain the following concept in security services; data origin authentication and integrity. (4 Marks)

c. Using a diagram show four interrelated domains of COBIT. (4 Marks)

d. Describe three classes of intruders. (6 marks)

e. Explain at least two techniques deployed to avoid guessable passwords. (3 Marks)
f. What are the main objectives of implementing SSL in web security? (4 Marks)

g. What are the benefits of practicing IT policy document? (3 Marks)



SECTION B

Question Two

a. With a diagram show the relationship between policies, procedures and practices. (6 Marks)

b. What are the best ways of building a secure organization? (6 Marks)

c. Describe the steps in developing systems disaster recovery strategy and plan (DRSP). (8 Marks)
Question Three

a. Identify five risk e-banking is exposed to and for each risk suggest appropriate controls. (10 Marks)

b. With example, show that confidentiality integrity and availability are sufficient to deal with disclosure, disruption and deception. (4 Marks)
c. Explain the benefits of using CAAT and list the prerequisites of using Audit Software. (6 Marks)
Question Four

a. Explain how IT managers can use COBIT. (5 Marks)

b. What are the main firewall characteristics? (5 Marks)

c. Company RUTAP has hired you to perform security Audit, describe three types of audit that you would perform and format of final audit report to be submitted. (10 Marks)




More Question Papers

Enhance your teaching with our comprehensive Schemes of Work and Notes!

Popular Exams

Return to Question Papers    

© 2008-2024 by KenyaPlex.com. All Rights Reserved | Home | About Us | Contact Us | Copyright | Terms Of Use | Privacy Policy | Advertise