v The pdf version of the book is also attached please answer all the questions from book.

v The pdf version of the book is also attached please answer all the questions from book.
Name: MIS 4/5700: IS Security F21 Ex 2 due: Tuesday, 10/5/2021 via Moodle Instructions: This is a take-home, individual exercise. Chapter 4 (Chapter 10, Whitman and Mattord) Please elaborate the principal BCP and DRP activities along an analysis, development, and testing life cycle process. Define the key metrics of RTO, RPO, MTD, WRT, RCO, RCapO and then elaborate the possible relationships among them. A(n) is a task performed by an organization or one of its units in support of the organization’s overall mission. A(n) is any natural or man-made event that disrupts the operations of a business in such as significant way that a considerable and coordinated effort is required to continue business operations and achieve a recovery. Chapter 1 (Chapter 3, Whitman and Mattord) Provide the definitions for the concepts of fail open, fail closed, fail soft and fail safe. Identify a desirable and an undesirable design case for each of the concepts. are the measures that are taken to reduce risks through the organization and enforcement of security policies. Chapter 6 (Chapter 2, Whitman and Mattord) From the perspective of information security management, please elaborate what we need to know about the Gramm-Leach-Bliley Act (GLBA) of 1999. Per the Georgia Computer Systems Protection Act of 1991, any person convicted of computer password disclosure shall be fined not more than $ or incarcerated for a period not to exceed year(s), or both. A(n) law specifies a requirement for organizations to notify affected parties when they have experienced a specified type of loss of information. Chapter 7 An information system normally goes through its life cycle of initiation, analysis, design, implementation, operations, and maintenance/disposal stages. Major vulnerability management activities include vulnerability scanning, application scanning, penetration testing, source code reviews, source code scanning, threat modeling, and patch management. Please elaborate the relationships and differences among these vulnerability management activities along the stages of an information system’s life cycle. A(n) is an event in a server cluster running in active-passive mode, where an active server has failed and a passive server is switching to active mode. Page: 2