Trust services criteria (TSC) are classified under various categories of information and systems that are subject to a SOC 2 engagement. For each description, select from the option list provided the criteria that best matches it. Each choice may be used once, more than once, or not at all.   Description  Trust Services Criteria  System processing is complete, valid, accurate, timely, and authorized to meet the entity’s objectives. Information is protected to meet the entity’s objectives. Personal information is collected, used, retained, disclosed, and disposed of to meet the entity’s objectives. Information is fairly reported in accordance with GAAP. Information and systems are protected against unauthorized access, unauthorized disclosure of information, and damage to systems. Information and systems are accessible for operation and use to meet the entity’s objectives.

Linda is so happy that her wife Lynda was more conscientious than usual and paid the bills on time this month, that she tells her that she doesn’t have to go to the orchestra with her tonight. Lynda hates the orchestra, and so she is super happy about no longer having to go. In the future, she will be more conscientious about paying the bills. This is an example of:

Tiffany’s parents want to instill more conscientiousness in their daughter. They have noticed that she is leaving dirty dishes in her room that are attracting bugs. They decide they will give her a little bit of money when they do a “pop” inspection of her room and there are no dirty dishes left about. Tiffany can never predict exactly when she’ll get a pop visit that may result in some extra cash, so she starts being more diligent about cleaning up her room. Which reinforcement schedule is being used by her parents?

Colin was bit by a snake when he was visiting his uncle in the deserts of Arizona when he was a kid. It was really painful, he had to be rushed to the hospital for urgent treatment, and he was really scared without his parents there. Now Colin has a paralyzing fear of snakes, all reptiles in fact, as well as deserts and beaches. He can’t even go to the pet store to pick up dog food because he’s afraid he will accidentally wander into the reptile aisle. Colin’s fear and neuroticism have been:

Think of your own scores on the Big Five. For each of the Big Five (OCEAN), briefly discuss how your levels of this trait may have been shaped by any ONE of the following tenants of behaviorism discussed in this chapter: reinforcements (pos/neg), punishments (pos/neg), social learning, or classical conditioning. If you not comfortable discussing yourself,  you can discuss someone you know, someone you have observed, or a real or fictional person you have read about or seen on TV/film. a) O: b) C: c) E: d) A: e) N: Be sure to label your responses with a) b) c) etc and skip spaces between the segments so that I can identify which part of your response applies to each part of the question. Please do not worry too much about spelling/grammar in short answers since this will waste your time under the time limit. Because they are timed, I understand that you may make a few errors. As long as it does not significantly impair my ability to understand your writing, you will not be penalized.  Short answers should be about 1 paragraph (5-7 sentences) at the least, no more than ten sentences. They should be written IN YOUR OWN WORDS. You have to use your own words in explaining a concept or providing an example. Depending on your level of comfort, you can choose to illustrate your points using an example from the real world, from literature or the media, from your own personal experiences, or those of an anonymous person you know or a hypothetical person.  Definitions, explanations, or examples taken from the textbook, class notes, or outside sources will not receive credit. (5 pts)  

Select from the option list provided the type of attack for each item below. Each choice may be used once, more than once, or not at all. Item Type of Attack The flooding of a network or server with digital traffic. Attacks particular vulnerabilities in the design or implementation of a website. Targets a specific individual or group with messages that appear to come from legitimate senders who have a relationship with the target. Type of attack that locks up a victim’s data or device and threatens to keep it, destroy it, or release it publicly unless the victim compensates the attacker. A type of attack whereby a victim receives a fraudulent email from a co‐worker’s impersonated or hijacked email account. Uses email or text messages to deceive a user into sharing sensitive data. A network of computers sends malicious traffic to a server to overwhelm it and make it unavailable. Attacks aimed at high‐level executives, corporate officers, or government officials. Viruses, worms, and trojan horses are common examples. Attacks particular vulnerabilities in the design or implementation of mobile technologies and operating systems.  

Hal’s teacher wants to create less conflict and fewer arguments among his students. He splits the kids in his class up into two competing teams and tells them that whichever team has demonstrated more kind acts throughout the week will get rewarded with points. Whichever team has the most points at the end of the week will get to choose their morning theme song for the upcoming week. What system is Hal using to train his students to be more agreeable?

Tommy’s parents are adventurous and open-minded. They love to explore new and different ethnic restaurants in the large metropolitan city where they live. In an effort to get Tommy to try new things and develop an openness to new and unique flavors, they always promise Tommy that they will take him out for ice cream after he tries a new dish. This is an example of:

Liam’s father always had his back as a kid. He could always turn to his dad for comfort, no matter what the situation. As a result, he learned to be trusting of other people. This is an example of:

Management of ABC Company is contemplating the purchase of cybersecurity insurance for its burgeoning enterprise. While the majority of the senior leadership team supports the purchase, a number of managers are hesitant because they do not feel that they have a clear understanding of the nature of cybersecurity insurance. The CEO has invited you to the boardroom to discuss the ways in which cybersecurity insurance can be used as a mitigation strategy by the company. Select from the option list provided the best response to each of management’s questions below. Question Response Is cybersecurity insurance a substitute for cybersecurity practices? How does cybersecurity insurance support our company’s business continuity efforts? Does our company need to have cybersecurity protocols in place to qualify for a cybersecurity insurance policy? What is risk transfer? What type of cybersecurity expertise is commonly included in a cybersecurity insurance policy?