Print Quiz: CONPES 3854 (technology)

1.

According to CONPES, what is the digital security risk?

A.

Is the expression used to describe a category of risk related to the development of any activity in the digital environment.

B.

The document does not explain it

C.

Result of the combination of threats and other risks

D.

Opportunity to improve a company to minimize vulnerabilities

2.

What is digital security risk management?

A.

Elimination of digital risks

B.

Set of coordinated activities within an organization so that everything works well

C.

Set of coordinated activities within an organization, to address digital security risk, while maximizing opportunities.

D.

The document does not indicate the definition

3.

What does the policy refer to?

A.

Refers to how bad practices are punished

B.

Indicates that you shouln't do a business

C.

Refers to what you could do in case of a cyber attack

D.

It is the national policy of digital security

4.

How should the risk assessment be done?

A.

From the beginning to the end

B.

Systematically and continuously

C.

Evaluating each risk with the director of the company.

D.

Using the matrix that is in the document.

5.

The digital security risk assessment should guide the selection, operation and improvement of security measures to reduce the risk to acceptable levels.

A.

True

B.

False

C.

Maybe

D.

No information

6.

What is the approach of the cybersecurity and cyber defense policy?

A.

There is no defined approach.

B.

Decrease risks

C.

Create jobs for Colombians

D.

Counteract the increase of cyber threats under the country's defense objectives?

7.

In what years is the policy action plan executed?

A.

From 2016 to 2019

B.

From 2014 to 2019

C.

From 2014 to 2018

D.

From 2017 to 2020

8.

What was the first version of the CONPES document published in Colombia?

A.

CONPES 3854 Policy guidelines for cybersecurity and cyberdefense

B.

CONPES 3854 National Digital Security Policy

C.

CONPES 3701 Policy guidelines for cybersecurity and cyberdefense

D.

CONPES 3704 Security of the information

9.

What was the general objective of CONPES 3701?

A.

Create analysis capabilities for engineers

B.

Create a query policy

C.

Strengthen the capacities to face the threats that threaten the defense and security in the cybernetic field.

D.

Create capacities to stop threats that threaten the defense and digital security in the cybernetic field.

10.

Is the creation of a national digital security coordinator necessary?

A.

If necessary, and should be created no later than December 31, 2016

B.

It is not necessary

C.

It is necessary

D.

It is necessary to create a project director