Chapter 10 PoIA

In the __________ process, measured results are compared against expected results. a.turnover b.direct changeover c.wrap-up d.negative feedback loop

negative feedback loop

The _______ operations strategy involves running the new system concurrently with the old system.

parallel

__________ is usually the best approach to security project implementation. a.phased implementation b.direct changeover c.parallel operation d.pilot implementation

phased implementation

he effective use of a DMZ is one of the primary methods of securing an organization's networks. True False

true

n ideal organization fosters resilience to change. _________________________ True False

true

The work breakdown structure (WBS) can only be prepared with a complex, specialized desktop PC application. True False

false

When an estimate is flawed, as when the number of effort-hours required is underestimated, the plan should be corrected and downstream tasks updated to reflect the change. True False

true

proven method for prioritizing a program of complex change is the bull's-eye method. True False

true

The __________ layer of the bull's-eye model receives attention last. a.Systems b.Policies c.Networks d.Applications

applications

The __________ methodology has been used by many organizations and requires that issues be addressed from the general to the specific, and that the focus be on systematic solutions instead of individual problems. a.direct changeover b.bull's-eye c.wrap-up d.parallel

bull's-eye

direct ___ changeover____ involves stopping the old system and starting the new one without any overlap.

changeover

The bull's-eye model can be used to evaluate the sequence of steps taken to integrate parts of the information security blueprint into a project plan. True False

true

The primary drawback to the direct changeover approach is that if the new system fails or needs modification, users may be without services while the system's bugs are worked out. True False

true

The size of the organization and the normal conduct of business may preclude a large training program on new security procedures or technologies. True False

true

Weak management support, with overly delegated responsibility and no champion, sentences a project to almost-certain failure. True False

true

Project managers can reduce resistance to change by involving employees in the project plan. In the systems development parts of a project, this is referred to as __________. a.JAD b.SDLC c.WBS d.DMZ

JAD

Some cases of __________ are simple, such as requiring employees to begin using a new password on an announced date. a.direct changeover b.wrap-up c.phased implementation d.pilot implementation

direct changeover

The parallel operations strategy works well when an isolated group can serve as a test area, which prevents any problems with the new system dramatically interfering with the performance of the organization as a whole. True False

false

ach for-profit organization determines its capital budget and the rules for managing capital spending and expenses the same way. True False

false

he networks layer of the bull's eye is the outermost ring of the bull's eye. True False

false

very organization needs to develop an information security department or program of its own. True False

false

Technology __________ guides how frequently technical systems are updated, and how technical updates are approved and funded. a.changeover b.wrap-up c.governance d.turnover

governance

In a __________ implementation, the entire security system is put in place in a single office, department, or division before expanding to the rest of the organization. a.parallel b.loop c.direct d.pilot

pilot

Tasks or action steps that come after the task at hand are called ______.

successors

Tasks or action steps that come after the task at hand are called __________. a.successors b.predecessors c.parents d.children

successors

A task or subtask becomes a(n) action step when it can be completed by one individual or skill set and when it includes a single deliverable. _________________________ True False

true

Corrective action decisions are usually expressed in terms of trade-offs. _________________________ True False

true

Once a project is underway, it is managed using a process known as gap analysis, which ensures that progress is measured periodically. _________________________ True False

true

(n) __________ is a simple project management planning tool. a.WBS b.ISO 17799 c.SDLC d.RFP

wbs

The goal of the __________ is to resolve any pending project-related issues, critique the overall effort of the project, and draw conclusions about how to improve the project management process for the future. a.phased implementation b.pilot implementation c.direct changeover d.wrap-up

wrap-up