UGC NET Questions (Paper – 1)

Statements A, B, D, E and F express key elements of good ICT policy design and implementation, while C is clearly false. Policies commonly address acceptable use, passwords, training, sanctions and stakeholder input. They must also be revised periodically in response to evolving technologies and threats. Therefore C cannot be accepted, and the correct set includes all other statements.

Option A:
Option A is incorrect because it omits F, which emphasises consultation with stakeholders. A policy developed without considering user perspectives may face resistance or fail to address real needs. Hence A, B, D and E alone do not represent the full set of correct statements.

Option B:
Option B is incorrect because it drops B, removing explicit reference to password and account security. Even though A, D, E and F are true, leaving out this component makes the description of policy scope incomplete.

Option C:
Option C is incorrect because it excludes A, which states that ICT policies cover acceptable use of networks and devices. B, D, E and F are true, but omitting A leaves out a central content area of most institutional ICT policies.

Option D:
Option D is correct because it contains all the true statements and omits only C, which wrongly suggests that policies never need revision. It therefore reflects both the substantive focus and dynamic nature of ICT policy-making in institutions.

An information security policy sets out principles and rules to protect institutional information assets, including data, systems and networks. It covers issues such as user responsibilities, password management, incident reporting and sanctions for misuse. Such policies guide technical and administrative controls to mitigate risks. Therefore, the documents described in the stem are information security policies.

Option A:
Option A, cafeteria, policy would deal with canteen operations and is unrelated to network and password use.

Option B:
Option B is correct because the focus on acceptable use of ICT resources and security incident procedures is central to an information security policy as defined in standards and guidelines.

Option C:
Option C, transportation, policy would cover commute or vehicle regulations and has no connection with ICT networks.

Option D:
Option D, alumni, policy concerns engagement with former students and not security of digital resources.

Statements A, B, D and E together align with good practice in ICT governance. Policies must cover acceptable use and academic integrity, include explicit incident-reporting procedures and be shaped with input from stakeholders so that they are practical and accepted. Statement C is false because policies require periodic review to remain relevant amidst rapid technological change. Statement F is also false since policies apply institution-wide and cannot be ignored on the basis of personal opinion, so only A, B, D and E are correct.

Option A:
Option A is incomplete because it omits E, thus neglecting the role of consultation in crafting workable policies. Without stakeholder engagement, policies may be ignored or misunderstood, so A, B and D alone are not enough.

Option B:
Option B is incomplete because it excludes A and thus fails to mention acceptable use of networks and devices, one of the core domains of ICT policy. While B and E are true and D is correct, the absence of A makes the set partial.

Option C:
Option C is incomplete because it leaves out B and captures only A, D and E. Academic integrity and misuse of ICT in assessment are critical policy concerns, so omitting B weakens the accuracy of this combination.

Option D:
Option D is correct because it collects all the true statements while omitting C and F, which undermine the dynamism and binding nature of policy. It represents a comprehensive and ethical approach to institutional ICT governance.