The acronym CMM stands for:
A. Continuous Maturity Model
B. Computer Methods and Models
C. Capability Maturity Model
D. Change Management Model
E. Continuous Maturity Methods
When maturing the management process, movement will be from:
A. Product Focus to Process Focus
B. Process Focus to Product Focus
C. Team Focus to Product Focus
The COSO Enterprise Risk Management model's ____________ component ensures that management has a process in place to set objectives and that the chosen objectives support and align with the organization's mission/vision.
A. Information and Communication
B. Objective Setting
C. Risk Assessment
D. Control Activities
What is the risk that an organization faces if management does not take action to alter the risk's likelihood or impact?
A. Risk Management
B. Risk Appetite
C. Enterprise Risk Management
D. Residual Risk
E. Inherent Risk
Internal control is not a serial process, where one component affects only the next. It is a multidirectional interactive process in which almost any component can and will influence another.
A. True
B. False
Processes containing only common causes of variation are considered stable.
A. True
B. False
The stakeholders of security system should be trained on security data collection methods and:
A. Organization mission
B. Security baseline program and charter
C. Requirements
Cooperation is required to improve quality and to implement quality management.
A. True
B. False
Which of the following is considered a subjective measure?
A. Lines of code
B. Customer satisfaction
C. Mean time to failure
D. Hours to write a thousand lines of code
E. Defect removal efficiency