The Federal Information Security Management Act requires continuous monitoring of affected federal systems.
Answer option B is incorrect. The Health Information Portability and Accountability Act Governs the privacy of health records.
Answer option C is incorrect. Sarbanes Oxley addresses the retention of documents and records in publically traded companies.
Answer option D is incorrect. CAN SPAN regulates unsolicited email, commonly called spam.

A physical security manager is responsible for evaluating, recommending, and directing changes to the Corporate Security Manager in order to ensure the security of assets, facilities, and employees of the organization. He should have a strong knowledge of security principles and security elements.
The duties and responsibilities of a physical security manager are as follows:
* Coordinate all physical security issues throughout the organization.
* Develop and implement policies, standards, guidelines and procedures related to physical security operations.
* Manage physical security and BSOC supervisors.
* Responsible for design of Security features.
* Responsible for development of written physical security plans for critical infrastructures.
* Manage the purchasing, installation, upgrading and maintenance of all existing physical security equipments.
Answer option A is incorrect. A network administrator is responsible for the maintenance of computer hardware and software that comprises a computer network. He normally deploys, configures, maintains, and monitors active network equipment.
Answer option B is incorrect. An HR manager heads up several different departments that are led by functional or specialized HR staffs.
Answer option D is incorrect. A facility manager is responsible for best utilization of company resources and in making of a strategy for maximum allocation of space used in new contract.

Compliance is described as dutifulness, obligingness, pliability, tolerance, and tractability.
Compliance means that an organization must take care of organization's internal regulations, as well as follow the laws of the country and requirements of local legislation and regulations. It may result in conflicts.
Projects must comply with a multitude of standards. Those include the following:
* Standards compliance: Local, state, and federal government
* Process compliance: Audit trails, retention, version control
* Decision oversight: Change Control Board

S/MIME (Secure/Multipurpose Internet Mail Extensions) is a standard for public key encryption and signing of e-mail encapsulated in MIME. S/MIME provides the following cryptographic security services for electronic messaging applications: authentication, message integrity, non-repudiation of origin (using digital signatures), privacy, and data security {using encryption).
Answer option A is incorrect. Post Office Protocol version 3 (POP3) is a protocol used to retrieve e-mails from a mail server. It is designed to work with other applications that provide the ability to send e-mails. POP3 is mostly supported by the commercially available mail servers. It does not support retrieval of encrypted e-mails. POP3 uses port 110.
Answer option D is incorrect. Simple Mail Transfer Protocol (SMTP) is a protocol for sending e-mail messages between servers. E-mailing systems use this protocol to send mails over the Internet. SMTP works on the application layer of the TCP/IP or OSI reference model. The SMTP client typically initiates a Transmission Control Protocol (TCP) connection to the SMTP server on the well-known port designated for SMTP, port number
25. However, e-mail clients require POP or IMAP to retrieve mails from e-mail servers.
Answer option B is incorrect. The Encrypting File System (EFS) is a component of the NTFS file system that is used to encrypt files stored in the file system of Windows 2000, Windows XP Professional, and Windows Server 2003 computers. EFS uses advanced and standard cryptographic algorithms to enable transparent encryption and decryption of files.
The encrypted data cannot be read by an individual or program without the appropriate cryptographic key.
Encrypted files can be protected even from those who have physical possession of the computer where the encrypted files are stored. Even authorized persons who are able to access the computer and its file system cannot view the data. EFS is the built-in file encryption tool for windows file systems.

The WS-Security describes the following mechanisms:
* How to sign SOAP messages to assure integrity.
* How to encrypt SOAP messages to assure confidentiality.
* How to attach security tokens to ascertain the identity of sender.