CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. CIPS
  5. L4M3

Free L4M3 Exam Braindumps (page: 18)

Page 18 of 48
PDF with 189 Questions

Which of the following are among five 'pillars' of information assurance?
1. Recovery plan
2. Availability
3. Non-repudiation
4. Governance

  1. 2 and 3 only
  2. 1 and 2 only
  3. 1 and 4 only
  4. 3 and 4 only

Answer(s): A

Explanation:

Information Assurance (IA)
Information Assurance (IA) is the practice of managing information-related risks and the steps involved to protect information systems such as computer and network systems. The IA transformation is a partnership that stretches across the Department of Defense (DoD), Office of National Intelligence, Committee on National Security Systems, National Institute of Science and Technology (NIST), and the Office of Management and Budget. The US Government's definition of information assurance is:
"measures that protect and defend information and information systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation. These measures include providing for restoration of information systems by incorporating protection, detection, and reaction capabilities."
Information Assurance (IA) is essentially protecting information systems, and is often associated with the following five pillars:
- Integrity
- Availability
- Authentication
- Confidentiality
- Nonrepudiation
The following pillars can be applied in a variety of ways, depending on the sensitivity of the information, or information systems within your organization. Currently, these five pillars are used at the heart of the US Governments ability to conduct safe and secure operations in a global environment.
1. Integrity
Integrity involves assurance that all information systems are protected and not tampered with. IA aims to maintain integrity through means such as anti-virus software on all computer system, and ensuring all staff with access to know how to appropriately use their systems to minimize malware, or viruses entering information systems.
2. Availability
Availability simply means those who need access to information, are allowed to access it. Information should be available to only those who are aware of the risks associated with information systems.
3. Authentication
Authentication involves ensuring those who have access to information, are who they say they are. Ways of improving authentication involve methods such as two-factor authentication, strong passwords, bio-metrics and other devices. Authentication may also be used to not only identify users, but also other devices.
4. Confidentiality
IA involves the confidentiality of information, meaning only those with authorization may view certain data. This step is closely mirrored by the six data processing principles of the General Data Protection Regulation (GDPR), where by personal data must be processed in a secure manner "using appropriate technical and organizational measures" ("integrity and confidentiality").
5. Nonrepudiation
The final pillar simply means someone with access to your organizations information system cannot deny having completed an action within the system, as there should be methods in place to prove that they did make said action.


Reference:

- What is Information Assurance (IA)?
- CIPS study guide page 99-100 LO 2, AC 2.1



Rochdale Ltd is looking for a new IT system to automate some of its operations. In designing the specification, procurement manager supposes that it should be done solely by the IT department who have deep expertise on this matter. Is procurement manager's opinion appropriate?

  1. No, because challenging the user's demand is the role of procurement
  2. Yes, because designing complex specification would waste procurement manager's time
  3. Yes, because procurement professional has no expertise in IT sector
  4. No, because designing complex specification could only be outsourced

Answer(s): A

Explanation:

Procurement professionals have a role in challenging specifications. Technical experts can get things wrong and asking naive questions can be useful in bringing these to light. The challenging may include:
- Does the organisation really need these features/functions?
- With this specification, are there many available suppliers in the market?
- How many does the organisation really need?
etc


Reference:

CIPS study guide page 9-10 LO 1, AC 1.1



Which of the following is a true statement on express and implied terms?

  1. Express terms always take precedent over implied terms
  2. Implied terms may derive from oral negotiations
  3. Express terms must always be in writing
  4. Express terms must be prepared by the party with expert knowledge

Answer(s): B

Explanation:

Express terms are the terms of the agreement which are expressly agreed between the parties. Ideally, they will be written down in a contract between the parties but where the contract is agreed verbally, they will be the terms discussed and agreed between the parties. Implied terms are terms implied into the contract by the courts. They are not expressly set out in the contract but are taken to be as effective as if they were and as if they had been included from day one of the contract. The express terms and any implied terms together create the legally binding obligations on the parties.
The types of express terms to be found in a contract are many and varied and will depend on the type of contract. Any term written into the contract is an express term and may refer to price, time scales, warranties and indemnities, limitations on liability, conditions precedent and so on. An implied term is a term which the courts imply into a contract because it has not been expressly included by the parties. This may be because the parties did not consider it, did not think that any problem would arise in relation to it or simply omitted to include it. The courts are very reluctant to imply terms into contracts and will only do so in the following circumstances:
1. terms implied under statute
2. terms implied under common law
3. terms implied because of custom or usage
4. terms implied due to previous dealings
5. terms implied `in fact' or to reflect the parties' intentions


Reference:

- CIPS study guide page 126-132
- Contracts: Express and Implied Terms LO 3, AC 3.1



Which of the following is most likely to reduce ITT preparation time while maintaining the clarity of tendering documents?

  1. Using request for quotation
  2. Standardising documentation whenever possible
  3. Monitoring usage
  4. Eliminating pre-qualification stage from all tendering processes

Answer(s): B

Explanation:

One of the major disadvantages of tendering process is that it is lengthy, bureaucratic and slow. To reduce the preparation time, buying organisation can:
- Plan forward
- Standardise tendering documents (such as notices, terms and conditions,...) whenever possible
- Train procurement staff
- Write down policies for tender-waiver
Buying organisation should not eliminate the pre-qualification stage from all tendering processes. This stage is used as a filter to select the most competent suppliers for next stage in restricted tendering. To save time in this process, you can design a model questionnaire.


Reference:

CIPS study guide page 5 LO 1, AC 1.1



Page 18 of 48



Post your Comments and Discuss CIPS L4M3 exam with other Community members:

Tina commented on September 20, 2024
I need to emphasis that this exam is extremely HARD! So prepare well or else you will fail. I got lucky and passed mine. But I used these dumps and some other sources.
Singapore
upvote

Evangelista commented on June 30, 2024
the questions assist me to read and understand the material
UNITED KINGDOM
upvote

Leungoinalame Gobuiwang commented on May 01, 2024
That was good questions to explore on
BOTSWANA
upvote

Leungoinalame Gobuiwang commented on May 01, 2024
It bid challenging but I think I can manage
BOTSWANA
upvote

Leungoinalame Gobuiwang commented on May 01, 2024
I think the L4M3 it needs a person to read to understand
BOTSWANA
upvote

Rudasingwa Innocent commented on March 13, 2024
This prepares good managers for procurement
Anonymous
upvote

Rudasingwa Innocent commented on March 13, 2024
This is good since it prepares the future managers for procurement.
Anonymous
upvote