The total time needed to place the business function back in service must be longer than the maximum tolerable downtime.

The _____ is an intermediate area between a trusted network and an untrusted network.

The ability of a router to restrict traffic to a specific service is an advanced capability and not considered a standard feature for most routers.

An organization aggregates all local backups to a central repository and then backs up that repository to an online vendor with a ____ backup strategy.

The (ISC)2 _____ certification program has added a number of concentrations that can demonstrate advanced knowledge beyond the basic certification’s common body of knowledge.

ISSAP stands for Information Systems Security Architecture Professional. _____

The _____ commercial site focuses on current security tool resources.

Authentication is the process of validating and verifying an unauthenticated entity’s identity.

The point in time before a disruption or system outage to which business process data can be recovered after an outage is ____.

According to the National Information Infrastructure Protection Act of 1996, the severity of the penalty for computer crimes depends on the value of the information obtained and whether the offense is judged to have been committed for each of the following except _____.