Final Exam for IS-860.c The National Infrastructure Protection Pl, Exams of Electronic Technology

Download Final Exam for IS-860.c The National Infrastructure Protection Pl and more Exams Electronic Technology in PDF only on Docsity!

Final Exam for IS-860.c The National

Infrastructure Protection Pl

Privacy Act Statement (Public Law 93 579)

10. ALL of the following statements directly to one of the seven NIPP 2013 core tenets EXC A. Security and resilience should be considered during the design of assets, systems and networks. B. Partnerships are crucial to developing shared perspectives on gaps and actions to improve critical inf C. The way infrastructure sectors interact shapes how the Nation's critical infrastructure partners should D. Managing risk requires sharing information, promoting efficient and effective use of resources and mi E. Hazard assessments draw on theoretical scenarios and deductive reasoning about future natural haz frequency of various hazards. 11. Which of the following is the PPD- 21 definition of Security? A. A financial instrument that represents: an ownership position in a publicly-traded corporation (stock), governmental body or a corporation (bond), or rights to ownership as represented by an option. B. Reducing the risk to critical infrastructure by physical means or defens[ive] cyber measures to intrusio natural or manmade disasters. C. Procedures followed or measures taken to ensure the safety of a state or organization D. The protection of information assets through the use of technology, processes, and training. 12. This forum promotes the engagement of non-Federal government partners in National and resilience efforts and provides an organizational structure to coordinate across jurisd government guidance, strategies and programs. A. Sector Coordinating Councils (SCC) B. State, Local, Tribal and Territorial Government Coordinating Council (SLTTGCC) C. Federal Senior Leadership Council (FSLC) D. Regional Consortium Coordinating Council (RC3)

13. Which of the following statements describes how the NIPP fosters information sharing

sector owners and operators and their government counterparts?

A. Multidirectional information sharing enhances owners and operators ability to assess risks, make

pru develop appropriate resilience strategies

B. Voluntary collaboration is the primary mechanism for advancing collective action toward national

9. What NIPP 2013 element provide a basis for the critical infrastructure community to wor national priorities? A. Call to Action B. Core Tenets C. Mission, vision, and goals. D. Partnership Model E. Risk Management Framework

critic resilience.

C. When the Government understands private sector information needs, it can adjust its information

coll dissemination activities accordingly.

19. Make the following statement True by filling in the blank from the choices below: The c environment is. A. stable and uncertain B. complex and uncertain C. complex and definitive D. tangible and concrete 20. PPD- 21 recommends critical infrastructure owners and operators contribute to nationa security and resilience efforts through a range of activities, including all of the following E A. Establish continuity plans and programs that facilitate the performance of lifeline functions during an i B. Perform critical infrastructure risk assessments; understand dependencies and interdependencies; an plans C. Develop and coordinate emergency response plans with appropriate Federal and SLTT government D. Sponsor critical infrastructure security and resilience-related research and development, demonstrati 21. For what group of stakeholders are the following examples of activities suggested: Fo cross-sector partnerships; encourage private sector and emergency response coordinatio plans and exercises; and understand interdependencies A. State, Local, Tribal, and Territorial Government Executives B. Private Sector Companies C. First Responders D. All of the Above

22. Which of the following statements describes the benefits of information sharing?

A. Information sharing enhances owners' and operators' ability to assess risks, make prudent security

in appropriate resilience strategies.

18. Make the following statement True by filling in the blank from the choices below: Regio important partnership role in the critical infrastructure security and resilience community A. Develop and implement security and resilience programs for the critical infrastructure under their cont the public good as well. B. Are crucial coordination hubs, bringing together prevention, protection, mitigation, response, and reco resources among local jurisdictions, across sectors, and between regional entities. C. Have unique responsibilities, functions, or expertise in a particular critical infrastructure sector (such a identifying and assessing high-consequence critical infrastructure and collaborate with relevant partners to s related information within the sector, as appropriate. D. Include a variety of public-private sector initiatives that cross jurisdictional and/or sector boundaries a protection, mitigation, response, and recovery within a defined geographic area.

23. Under which category in the NIPP Call to action does the following activity fall: Determ through Joint Joint-Planning Efforts A. Innovate in Managing Risk B. Build Upon Partnership Efforts C. Focus on Outcomes 24. All of the following statements refer directly to one of the seven NIPP 2013 core tenets A. Gaining knowledge of infrastructure risk and interdependencies requires information sharing across t community. B. Risks often have local consequences, making it essential to execute initiatives on a regional scale in operationalizes the national effort. C. Training among stakeholders enhances capabilities of government and private sector to meet critical resilience D. Infrastructure critical to the United States transcends national boundaries, requiring cross-border coll other cooperative agreements. 25. An understanding of criticality, essential functions and resources, as well as the assoc infrastructure is part of this step in the Risk Management Framework: A. Identify Infrastucture B. Set goals C. Assess and Analyze Risks D. Measure Effectiveness E. Implement Risk Management Activities 26. The NIPP Call to Action is meant to guide the collaborative efforts of the critical infrast advance security and resilience outcomes under three broad activity categories. All of the categorized under Build upon Partnerships Efforts EXCEPT: A. Leverage incentives to advance security and resilience B. Empower local and regional partnerships to build capacity nationally C. Set national focus through jointly developed priorities D. Determine collective actions through joint planning efforts E. Promote infrastructure, community and regional recovery following incidents C. The increasing availability of data and information essential to operating and maintaining infrastructur enables more efficient and effective practices. D. Multidirectional information sharing enhances owners and operators ability to assess risks, make pru develop appropriate resilience strategies E. All of the Above

28. TRUE or FALSE: The critical infrastructure risk management approach complements an Hazard Identification and Risk Assessment (THIRA) process conducted by regional, State, A. TRUE B. FALSE 29. All of the following statements about NIPP 2013 are true EXCEPT: A. The NIPP replaces continuity of operations and local emergency operations plans B. The NIPP Framework is applicable for both terrorist attacks and natural disasters C. Collaboration between private and public sector is a key component of the NIPP D. The NIPP framework is based on an understanding that in some sectors, private 30. NIPP framework is designed to address which of the following types of events? A. A blackout affecting the Northeast B. Disruptions to infrastructure systems that cause cascading effects over multiple jurisdictions C. Long term risk management planning to address prolonged floods and droughts D. Cyber intrusions resulting in physical infrastructure failures and vice versa E. All of the above 31. Which of the following critical infrastructure partners offer an additional mechanism to group of private sector leaders to obtain feedback on critical infrastructure policy and pro suggestions to increase the efficiency and effectiveness of specific government programs A. Advisory Councils B. Federal and State Regulatory Agencies C. Academia and Research Centers D. State and Regionally Based Boards, Commissions, Authorities, Councils, and Other Entities

32. Make the following statement True by filling in the blank from the choices below: Relia

communications technologies have potential vulnerabilities to physical and cyber thr

27. For what group of stakeholders are the following examples of activities suggested: Be local, regional sector and cross-sector partnership; Work with private sector and emergen emergency management plans and exercising; Share success stories and opportunities fo A. State, Local, Tribal, and Territorial Government Executives B. Private Sector Companies C. First Responders D. All of the Above

33. This forum comprises regional groups and coalitions around the country engaged in v critical infrastructure security and resilience in the public and private sectors A. Sector Coordinating Councils (SCC) B. State, Local, Tribal and Territorial Government Coordinating Council (SLTTGCC) C. Federal Senior Leadership Council (FSLC) D. Regional Consortium Coordinating Council (RC3) 34. The National Goal, "Enhance security and resilience through advance planning" relate Action activities EXCEPT: A. Strengthen Coordinated Development and Delivery of Technical Assistance, Training and Education B. Identify, Assess and Respond to Unanticipated Infrastructure Cascading Effects During and Following C. Improve Critical Infrastructure Security and Resilience by Advancing Research and Development Sol D. Promote Infrastructure, Community and Regional Recovery Following Incidents E. Leverage Incentives to Advance Security and Resilience 35. Make the following statement TRUE by filling in the blank from the choices below: The framework. A. is designed to provide flexibility for use in all sectors, across different geographic regions and by vario B. can be tailored to dissimilar operating environments and applies to all threats and hazards. C. supports a collaborative decisionmaking process to inform the selection of risk management actions. D. Is applicable to threats such as disasters, manmade safety hazards and terrorism. E. All of the above 36. Which of the following is the PPD- 21 definition of Resilience? A. The ability of an ecosystem to return to its original state after being disturbed B. The ability to prepare for and adapt to changing conditions and withstand and recover rapidly from dis withstand and recover from deliberate attacks, accidents, or naturally occurring threats or incidents. C. The process of adapting well in the face of adversity, trauma, tragedy, threats or significant sources o D. The ability to stand up to challenges, work through them step by step, and bounce back stronger than B. reduced C. increased D. divided