Section: INFORMATION SECURITY PROGRAM DEVELOPMENT
Explanation:
Awareness training can only be effective if it is customized to the expectations and needs of attendees.
Needs will be quite different depending on the target audience and will vary between business managers, end users and IT staff; program content and the level of detail communicated will therefore be different.
Other criteria are also important; however, the customization of content is the most important factor.

Section: INFORMATION SECURITY PROGRAM MANAGEMENT
Explanation:
If there are many firewall rules, there is a chance that a particular rule may allow an external connection although other associated rules are overridden. Due to the increasing number of rules, it becomes complex to test them and. over time, a loophole may occur.

Section: INFORMATION SECURITY PROGRAM DEVELOPMENT

Explanation
Disaster recovery testing requires the allocation of sufficient resources to be successful. Without the support of management, these resources will not be available, and testing will suffer as a result. Testing on weekends can be advantageous but this is not the most important choice. As vendor-provided hot sites are in a state of constant change, it is not always possible to have network addresses defined in advance. Although it would be ideal to provide for identical equipment at the hot site, this is not always practical as multiple customers must be served and equipment specifications will therefore vary.

Explanation/Reference:
Explanation:
In the case of a probe, the situation should be monitored and the affected network segment isolated.
Rebooting the router, powering down the demilitarized zone (DMZ) servers and enabling server trace routing are not warranted.