IT Journey

Friday, December 17, 2021

IT Security Questions and Answers

1) An exercise to test a specific outage scenario ------ DRILL

2) It is an event that may lead to disruption to service delivery ------ INCIDENT

3) A natural calamity caused due to continuous heavy rainfall leading to disruption in transportation ------ FLOODING

4) A contract through which to parties agree not to disclosure any confidential information ------ NDA ( NON-DISCLOSURE AGREEMENT)

5) A malicious software code that causes disruption in computer systems and corruption of system/data file -- VIRUS

6) It is a near to real-time exercise to test the BCP ---- SIMULATION

7) An encrypted and secure connection over the internet from device/site -- VPN (VIRTUAL PRIVATE NETWORK )

8) An activity of copying and storing current data for future restoration, if needed following a crisis --- BACKUP

9) Possibility that an event will occur and adversely affect the business --- RISK

10) ------- is a plan prepared to use at the time of crisis to restore services -- BCP (BUSINESS CONTINUITY PLAN)

11) ------- outage will lead to connectivity issues while working from office or home. -- NETWORK

12) An ------ is a result of an incident that may cause loss of processes or services having business impact OUTAGE

13) The Risk response is opted when an action can be taken to minimize the risk exposure ---- REDUCE

14) A -------- drill which is conducted in a conference room were participant discuss about test steps across the table -- TABLE TOP

15) A document describing the scope, objective and steps to be followed to test continuity plan for any service outage scenario (4,4) ---------- TEST PLAN

16) The duration of time for which the data backup should be kept securely is referred as ----------- period RETENTION

17) ------------ is used to reach out to associates in the event of crisis --- CALLTREE

18) One of the risk responses when we do not want to take any action to reduce the risk exposure and carry risk as it is --- ACCEPT

19) A key role for co-ordination and management of business continuity and crisis management activities ---- (CML) -- CRISIS MANAGEMENT LEAD

20) A systematic way to determine and evaluate the potential effects on business due to unavailability of a service/asset is known as ------------- BIA (Business Impact Analysis)

21) A break or interruption in the BAU activates is called -------------- DISRUPTION

22) ------ is plan to recover facility infrastructure and related services following a major disaster --- DRP (DISASTER RECOVERY PLAN)

23) An internal operational agreement describing the responsibility and timeframe for the delivery of services required at the time of crisis --------- OLA (Operational Level Agreement)

24) An objective in terms of period, used to determine data backup strategy so that it can be recovered following a disruption. it also reflects am acceptable duration of data loss -------- RPO (Recovery Point Objective )

25)An alternative work location that is pre-equipped and can be activated in a very short time frame is also referred as -------- HOT SITE

26) -------- Management committee supports smooth invocation of BCP during any disaster. CRISIS

27) The risk response is selected when risk is transferred from one party to other party --------- TRANSFER

28) A written agreement between a service provider and customer that captured agreed timelines or service levels for a service/ activity performed by the service provider --- SLA (Service Level Agreement)

29) An Asset is called ------- when there is a possibility of getting hacked / unauthorized access. VULNERABLE

30) An alternative work location that has basic infra structure and needs lead time to make to ready for operations and continue delivery is also referred as --------------- WARM SITE

31) It is an output of discovering the actual /real causes of problems in order to identify appropriate solutions. RCA (Root Cause Analysis)

32) Confidentiality, Integrity and Availability are three triads of ------ SECURITY

33) An event that may occur and can lead to adverse impact on availability of facility/infrastructure/ services   -- THREAT 

34) To reduce exposure to risk we------ risk. MITIGATE 

35) In case of ----- two assets' modules operate in active and standby mode.  REDUNDANCY 

36 ) Ability to quickly adopt to disruptions while maintaining business operation -- RESILENCE

37)When primary site is unavailable ------ recovery site ensures continuity of services. Warm site

38)Target time to restore minimum required critical services following a disruption -------------   RTO (Recovery Time Objective)

39) A management system that establishes, implements, operates, monitors, reviews and maintains and improves business continuity ------- BCMS (Business Continuity Management System) 

Sunday, November 28, 2021

ITIL-4 : ITIL Practices Q&A Part 2

ITIL-4 Certification Question and Answers

1) Which practice identifies metrics that reflect the customer's experience of a service?

a) Continual improvement

b) Service Desk

c) Service level management

d) Problem management

2) Which practice provides procedures for the initiation, approval, and fulfillment of service delivery actions, such as providing access to a folder?

a) Continual improvement

b) Incident management

c) Service level management

d) Service request management

3)What does the "service request management" practice depend on for maximum efficiency?

a) Compliments and complaints

b) Self-service tools

c) Processes and procedures

d) Incident management

4)What practice provides visibility of the organization's services by capturing and reporting service performance?

a) Service Desk

b) Service level management

c) Service request management

d)Service configuration management

5)Which role is MOST likely to contact service desk to ask for help?

a) A customer

b) A sponsor

c) A user

d) A supplier

6)What should be the steps for fulfilling every service request be?

a) Simple

b) Complex

c) Automated

d) Well-known

7)Which practice uses models and techniques in the support of the overall organization strategy?

a) Change control

b) Service Desk

c) Continual improvement

d) Service request management

8)Why should service level agreements include bundles of metrics, rather than individual metrics?

a) To ensure they are easy to understand, and use, for all parties

b) To ensure services continue to meet the needs of the organization

c) To help focus on defined outcomes and not just operational metrics

d) To help the organization achieve agreement with their suppliers

9)What type of change is most likely to be managed by the service request practice?

a) A normal change

b) An emergency change

c) A standard change

d) An application change

10)How does customer engagement contribute to the "service level management" practice?

1. It captures information that metrics can be used on

2.It ensures the organization meets defined service levels

3.It defines the workflows for service requests

4.It supports progress discussions

a) 1 and 2

b) 2 and 3

c) 3 and 4

d) 1 and 4

11) Which practice provides self-service logging for users?

a) Service Desk

b) Problem management

c) Incident management

d)Change control

12)What is the effect on increased automation on "service desk" practice?

a) Greater ability to focus on customer experience when personal contact is needed

b) Decrease in self-service incident logging and resolution

c)increased ability to focus on fixing technology instead of supporting people

d)Elimination of the need to escalate incidents to support teams

13)Which practice includes classification and ownership of queries and requests from users?

a) Service Desk

b) Problem management

c) Incident management

d)Service level management

14)Which is NOT an example of a service?

a) A request for information about how to create a document

b) A request for access to a file location

a) A request to resolve an unplanned interruption to a service

a) A request to provide a laptop to a user

15)Which practice includes carrying out services reviews?

a) Service request management

b) Service level management

c) Problem management

d) Incident management

16) Which practice enables users to ask for help and information?

a) Change control

b) Service Desk

c) Problem management

d) Incident management

17)Which is the key activity in the "continual improvement" practice?

a) Resolving incidents

b) Conducting services reviews

c)Creating business cases

d)Authorizing changes

18)Which practice provides support for managing feedback, compliments, and complaint from users?

a) Change control

b) Service request management

c) Problem management

d) Incident management

19)Which other practices make use of the "service desk" practice to capture demand?

a) Problem management and incident management

b) Incident management and request management

c)Request management and change management

d)change control and problem management

20)Which should be handled using the "service request management" practice?

a) A request for a technology change that will be assessed by a technical team

b) A request to resolve the underlying cause of an incident

c)A request from a customer to develop a new IT service

d)A request from a user for provision of a pre-defined resource