Section: Governance and Management of IT

Since file transfer protocol (FTP) is considered an insecure protocol, it should not be installed on a server in a demilitarized zone (DMZ). FTP could allow an unauthorized user to gain access to the network. Sending files to an unauthorized person and the risk of downloading unauthorized files are not as significant as having a firewall breach. The presence of the utility does not reduce the performance of a DMZ server; therefore, performance degradation is not a threat.

Explanation/Reference:
Explanation:
Layering perimeter network protection by configuring the firewall as a screened host in a screened subnet behind the bastion host provides a higher level of protection from external attack than all other answers.

Section: Protection of Information Assets
Explanation:
RAID level 1 provides disk mirroring. Data written to one disk are also written to another disk. Users in the
network access data in the first disk; if disk one fails, the second disk takes over. This redundancy ensures
the availability of data. RAID level 1 does not improve performance, has no relevance to authentication and
does nothing to provide for data confidentiality.

Explanation/Reference:
Explanation:
The integration of IS and business staff in projects is an operational issue and should be considered while reviewing the short-range plan. A strategic plan would provide a framework for the IS short-range plan.
Choices B, C and D are areas covered by a strategic plan.