var quiz = { questions : [ { text : 'The greatest risk to assess and mitigate when considering the use of cloud computing is:', img : 'http://media.techtarget.com/WhatIs/images/spacer.gif', responses : [ 'a) The reduction in headcount for the security staff', 'b) The loss of control over your data and its security', 'c) Whether your provider is a niche or suite product', 'd) Whether your internal auditors will assess your provider appropriately' ], answer : 1, score : 1, expandedAnswer : '', moreInfo : 'Researchers at the University of Michigan developed a new cloud-based approach to antivirus (AV) which, according to them, provides better detection of malware than traditional antivirus software. ' }, { text : 'Fill in the blanks: Personal social networking pages have been known to be reviewed by ________, ________, and _________ for corporate and inappropriate behavior.', img : 'http://media.techtarget.com/WhatIs/images/spacer.gif', responses : [ 'a) The CIO; human resources; corporate security', 'b) Your manager; human resources; competitors', 'c) Human resources; law enforcement; corporate legal counsel', 'd) Your manager; your co-workers; your subordinates' ], answer : 2, score : 1, expandedAnswer : '', moreInfo : 'A SearchSecurity.com reader asked our information security threats expert, "Are social networking sites an easy target for malicious hackers?"' }, { text : 'Which of the following is NOT a risk when contracting for cloud computing?', img : 'http://media.techtarget.com/WhatIs/images/spacer.gif', responses : [ 'a) The ownership and recovery of your data if your provider is bought or goes out of business', 'b) The weakness of the provider\'s data segregation policy', 'c) Data breaches on your data as it resides in the cloud', 'd) The brand of equipment that the cloud uses for both IDS, IPS and storage' ], answer : 3, score : 1, expandedAnswer : '', moreInfo : 'SearchSecurity.com\'s network security expert Mike Chapple explains why the more IPSes \'change,\' the more they stay the same. (Login required) ' }, { text : 'In addition to the risk of releasing corporate information on a social networking site, which of the following is also of major concern for security:', img : 'http://media.techtarget.com/WhatIs/images/spacer.gif', responses : [ 'a) Malicious software entering your environment through downloading social networking apps', 'b) Employees syncing their company and social networking calendars', 'c) Bandwidth shaping practices and load balancing technologies that can be negatively impacted ', 'd) Employees forwarding mail from their social networking page to their company email address' ], answer : 0, score : 1, expandedAnswer : '', moreInfo : 'Learn how widget malware on social networking sites can threaten enterprises.' }, { text : 'Fill in the blank: A corporate policy on the appropriate use for social networking is necessary because ______________.', img : 'http://media.techtarget.com/WhatIs/images/spacer.gif', responses : [ 'a) It is usually requested as part of an audit', 'b) The new workforce being hired expects to be able to utilize social networking in their daily work', 'c) The more policies that you have makes it easier to confuse the workforce ', 'd) The corporation may decide to create their own group on a popular social network' ], answer : 1, score : 1, expandedAnswer : '', moreInfo : 'Start preparing your policies now. According to a pair of security consultants who spoke at the 2008 Black Hat briefings, security is clearly not part of the business model for social networking site owners.' } ] };