Question 1

With parallel installation, a new information system/business process is installed in phases across an organization.

Accepted Answer

Parallel installation refers to running the old and new systems simultaneously to ensure the new system works correctly before fully transitioning, not installing in phases.

Question 2

As a source of security vulnerabilities, malicious human activity includes physical accidents.

Accepted Answer

Physical accidents are not considered malicious human activity as they are unintentional and lack malicious intent.

Question 3

Phishing is a social engineering technique for obtaining unauthorized data via e-mail pretexting.

Accepted Answer

Phishing is a social engineering technique where attackers send emails or messages that appear to be from a legitimate source in order to trick individuals into providing sensitive information or downloading malware. This is often done through pretexting, where the attacker creates a fake scenario to gain the target's trust and convince them to take a specific action.

Question 4

Designing system components is the first step in the SDLC process.

Accepted Answer

The first step in the Software Development Life Cycle (SDLC) is typically the requirements gathering and analysis phase, not designing system components.

Question 5

With pilot installation, an organization implements a limited portion of a new business process on the entire organization.

Accepted Answer

A pilot installation involves implementing a new process or system in a limited part of the organization, not the entire organization, to test and evaluate its effectiveness before full-scale implementation.

Question 6

Technical feasibility refers to whether existing information technology is likely to be able to meet the needs of a new information system.

Accepted Answer

Technical feasibility refers to the assessment of whether the technology needed to implement a system is available or not. If the technology exists and can meet the system's requirements, it is said to be technically feasible. Therefore, the statement is true.

Question 7

Pretexting is social engineering in which someone gains unauthorized access to a computer without the user's knowledge.

Accepted Answer

Pretexting refers to a social engineering technique where someone deceives a person to obtain confidential information or access to their computer systems or network. It does not necessarily involve gaining unauthorized access without the user's knowledge.

Question 8

Systems analysts are IS professionals who understand both business and technology.

Accepted Answer

Systems analysts are responsible for bridging the gap between business and technology by analyzing business processes, identifying areas for improvement, and designing and implementing information systems to support the business. They must have a deep understanding of both business operations and technology in order to be effective.

Question 9

Managers evaluate process measures against their objectives and respond to changes in the business climate during the modeling activity of BPM.

Accepted Answer

The evaluation of process measures against objectives and response to changes in the business climate typically occur during the monitoring and optimization phases of Business Process Management (BPM), not during the modeling activity.

Question 10

Tasks in the implementation activity of the SDLC process are to build and test system components and to convert users to the new system and possibly new business processes.

Accepted Answer

The implementation phase in the SDLC process involves building and testing system components and converting users to the new system and possibly new business processes.

Question 11

With regard to people, design involves developing role job descriptions.

Accepted Answer

Designing role job descriptions is a common aspect of human resource management, which falls under the broader umbrella of design. Therefore, the statement is true.

Question 12

Information systems security is the process of protecting information systems vulnerabilities from threats by creating appropriate safeguards.

Accepted Answer

Information systems security involves identifying vulnerabilities and implementing measures or safeguards to protect against possible threats that can harm the system.

Question 13

The work done during the maintenance activity of the SDLC process is either to fix the system or to adapt it to changes in requirements.

Accepted Answer

Maintenance activity in the SDLC process is mainly focused on fixing the system or adapting it to changes in requirements in order to meet the evolving needs of the organization or business.

Question 14

New process modeling is not necessary if a process change involves only alterations in human resources.

Accepted Answer

Process modeling is necessary to document and analyze the flow of work, regardless of whether the changes involve human resources or other aspects of the process.

Question 15

Organizational feasibility refers to whether a new information system is economically feasible for an organization.

Accepted Answer

Organizational feasibility assesses whether a new information system aligns with the organization's culture, structure, and strategic goals, not its economic feasibility.

Question 16

A test plan is an informal description of how an information system's components should be tested.

Accepted Answer

A test plan is a formal document that outlines the strategy, resources, scope, and schedule of intended test activities, detailing how an information system's components should be tested.

Question 17

Business analysts work primarily with systems development, but they are also involved in business processes.

Accepted Answer

The answer of Business analysts work primarily with systems development,...

Question 18

BPM is a recurring process for systematically monitoring, modeling, creating, and implementing business processes.

Accepted Answer

BPM stands for business process management and it involves various activities such as analyzing, optimizing, and automating business processes to improve organizational efficiency and effectiveness. It is a continuous process of monitoring, modeling, creating, and implementing business processes to achieve strategic goals and objectives. Therefore, the statement is true.

Question 19

The term system conversion refers to the process of testing software.

Accepted Answer

System conversion refers to the process of changing from one information system to another. Testing software is a part of the system conversion process, but not the definition of it.

Question 20

Parallel installation is also called direct installation.

Accepted Answer

Parallel installation is not the same as direct installation. Parallel installation involves installing a new system alongside an existing one, while direct installation involves replacing the existing system completely.

Quiz 12: MIS Management Processes: Process Management, Systems Development, and Security