67 terms

My Systems Analysis Ch. 12


Terms in this set (...)

One technique that can be used in perfective maintenance is software reengineering.
Risk ____ analyzes the organization's assets, threats, and vulnerabilities.
____ shifts the risk to another asset or party, such as an insurance company, in risk control.
Possible disadvantages of rotating IT staff from maintenance to new systems groups include ____.
overhead costs increase when people move from one job to another
systems analysts have less opportunity to become skilled at any one job
Preset ____ determine whether a firewall will allow network traffic to pass.
____ include the volume of online data, the number of records accessed, and the number of transactions processed in a given time period.
The ____ is the configuration of a system documented at the beginning of the project and consists of all necessary system requirements and design constraints.
functional baseline
With a release methodology, even when changes would improve system efficiency or user productivity, the potential savings must wait until the next release date, which might increase operational costs.
____ describes the amount of data that a system can transfer in a fixed time period.
As shown in the accompanying figure, ____ when it becomes clear that the company plans to replace the system.
adaptive and corrective maintenance expenses increase rapidly, but perfective maintenance typically decreases
A(n) ____ is an unauthorized attempt to increase permission levels.
privilege escalation attack
____ means examining the whole in order to learn about the individual elements.
A ____ is a formal reference point that measures system characteristics at a specific time.
If significant changes take place in an existing system or if a new version is released, the IT department might develop a ____.
user training package
The procedure for minor adaptive maintenance is similar to routine corrective maintenance.
____ activities include changing programs, procedures, or documentation to ensure correct system performance; adapting the system to changing requirements; and making the system operate more efficiently.
____ means that in risk control, nothing is done.
____ involves studying the parts to understand the overall system.
When planning capacity, detailed information is needed about ____.
the number of threats and critical risks posed to a system
The ____ is responsible for assigning maintenance tasks to individuals or to a maintenance team.
system administrator
Companies with limited resources always consider new systems development, adaptive maintenance, and corrective maintenance less important than perfective maintenance.
Bandwidth requirements are expressed in bytes per minute.
____ costs include expenses for items such as supplies, equipment rental, and software leases.
Indications that a system has reached the end of its economically useful life include ____.
operational costs and execution times are decreasing rapidly
As the first step in capacity planning, analysts develop a current model based on the system's present workload and performance specifications.
____ expenses vary significantly during a system's operational life and include spending to support maintenance activities.
____ protects information from unauthorized disclosure and safeguards privacy.
Successful, robust systems often need the most support because users want to learn the features, try all the capabilities, and discover how the system can help them perform their business functions.
Perfective maintenance usually is cost effective ____ the system's operational life.
during the middle of
When setting priorities, many IT managers believe that evaluating all projects together leads to the best possible decisions because ____.
maintenance and new development require similar IT department resources
When corrective action cannot occur immediately, users appreciate feedback from the system administrator and should be kept informed of any decisions or actions that affect their maintenance requests.
Retention periods can be a specific number of months or years, depending on legal requirements and company policy.
Requests for corrective and adaptive maintenance normally come from the IT department, while users usually initiate perfective maintenance.
Configuration management is sometimes referred to as change control.
Perfective maintenance can improve system reliability.
____ ensures that authorized users have timely and reliable access to necessary information.
As shown in the accompanying figure, once a system becomes stable, maintenance costs usually remain low and involve minor ____ maintenance.
Perfective maintenance ____.
involves changing an operational system to make it more efficient, reliable, or maintainable
____ is a process for controlling changes in system requirements during software development.
The ____ documents a system at the end of the design phase, identifies any changes since the beginning of the project, and includes testing and verification of all system requirements and features.
allocated baseline
As shown in the accompanying figure, maintenance expenses usually are high when a system is implemented because problems must be detected, investigated, and resolved by ____ maintenance.
Adaptive maintenance always is less difficult than new systems development because the enhancements need not work within the constraints of an existing system.
Which of the following is not an advantage of the release methodology?
new features or upgrades are available more often
The main objective of user training is to show users how to become service desk staff members.
In a typical system, the initial version of the system is 1.0, and the release that includes the first set of maintenance changes is version ____.
Although the procedures for corrective maintenance and adaptive maintenance are alike, minor corrective maintenance requires more IT department resources than minor adaptive maintenance.
Newly hired and recently promoted IT staff members often are assigned to maintenance projects because their managers believe that maintenance work offers a valuable learning experience.
In most organizations, ____ IT department effort goes into supporting existing systems and making them more valuable to users.
more than half of all
As the first step in capacity planning, analysts develop a current model based on the system's present workload and performance specifications.
Risk ____ develops safeguards that reduce risks and their impact.
Both adaptive and perfective maintenance activities decrease in a dynamic business environment.
To measure system performance, companies use ____ testing, which uses a set of standard tests on one system to compare its performance and capacity to that of other systems.
A ____ is an internal or external entity that could endanger an asset.
As enterprise-wide information systems grow more complex, configuration management becomes less and less useful.
Adaptive maintenance ____.
adds enhancements to an operational system and makes the system easier to use
____ prevents unauthorized users from creating, modifying, or deleting information.
Bandwidth will not be measured in which of the following units?
Dbps (decibits per second)
Preventive maintenance ____.
requires analysis of areas where trouble is likely to occur in order to avoid problems
In a PKE environment, each user on the network has a pair of keys: a public key and a private key.
Risk ____ measures risk likelihood and impact.
When analysts learn different skills, the organization is more versatile and people can shift to meeting changing business needs.
Perfective maintenance usually is cost effective ____ the system's operational life.
during the middle of
A main objective of a service desk is to ____.
provide answers to technical or operational questions
make users more productive by teaching them how to meet their own information needs
The systems support and security phase begins when a system becomes operational and continues until the system reaches the end of its useful life.
Using a release methodology increases the documentation burden.
A service desk is a highly effective replacement for traditional IT maintenance and support activities.
Application security requires an understanding of services, hardening, application permissions, input validation techniques, software patches and updates, and software logs.