【填空题】
79.与供应商签订的生产、综合类服项目施工与服务及中介机构年度框架合同,在有效期内,以工作联系单约定的方式要求供应商提供不定期、不定次的服务的合同,审批权限如下:费用在___万元及以下的单项项目,由实施部门负责人批准。费用在___万元以上且___万以下的单项项目,由项目实施部门提出后,计划发展部负责人会签,分管领导批准。费用在___万元含以上的单项项目,由项目实施部门提出,计划发展部负责人会签,公司分管领导审核,总经理批准。
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【填空题】
"80.项目具备验收条件后,由实施部门组织___、___和___等相关部门进行预验收并提出遗留问题和整改意见,使用部门对遗留问题整改情况进行确认"
【填空题】
"81.小额零星物资与服务采购是指___、___且在规定___的物资与服务采购。
【填空题】
"82.工程机械及作业现场急用的生产车辆临时性租赁服务的台班单价不得超过当月当地设区的市级造价站发布的造价信息对应单价的___,全年租赁服务自行采购的费用累计不得超过___万元。
【填空题】
"83.单项物资金额在2000元以下的,经办人可以电话等方式征得___同意后先行采购;金额在2000元以上、5000元以下且无库存的,还须征得___同意。
【填空题】
1.生产、综合类___及中介机构服务采购方式分为招标___、询价___、竞争性谈判、定向采购、合同续签等
【填空题】
2.限额以上除执行本标准,还需执行Q/ZN 201076、Q/ZN 202094、Q/ZN 211011相关管理规定。限额以上的由___报上级单位进行决策管理。
【填空题】
3.计划发展部负责___的保管,并指定专人负责。
【填空题】
4.___负责ERP合同管理系统上的___工作。
【填空题】
5.每一件合同均须由合同承办部门确定一名___,合同承办人应负责具体落实、跟踪合同谈判、管理等具体事务。如果承办人工作或岗位变动,由合同承办部门确定新的承办人,并保证合同承办工作顺利交接。
【填空题】
6.经服务采购流程的项目,经采购委员会或采购工作小组决标审议通过后,由计划发展部依7.据采购委员会或采购工作小组纪要在___内拟定合同初稿;
【填空题】
8.经总经理办公会、董事会、党委会纪要审议通过的项目,纪要签发后由计划发展部依据纪要,组织合同谈判,在5个工作日内拟定初稿,组织合同承办部门及其他业务部门讨论初稿,根据需要与相对方合同谈判,形成合同谈判纪要,合同谈判纪要签订后___内拟定初稿。
【填空题】
9.经部门自行采购管理流程的项目在___内拟定合同初稿,经律师审查后,在ERP合同管理系统上发起合同创建。
【填空题】
10.合同应采用___,公司有合同范本的,应优先选用公司范本。
【填空题】
11.合同文本均应按统一规则编号,公司合同编号格式为:___
【填空题】
12.对于生产施工类合同,还应附___,未签署的,不得签署主合同。
【填空题】
13.金额在 ___的合同谈判由计划发展部主任组织、项目涉及的其他相关部门负责人或代表参加,监审专职参与监督。
【填空题】
14.所有经招标的项目,合同的起草及合同谈判必须以招标文件中的合同文本为基础,结合15.投标文件及有效的补充文件___与中标人进行谈判和澄清,不得违反原则性条款,重大变更需由___同意后方可调整。所有合同谈判应填写合同谈判记录,如合同条款、价款、质量、工期、支付方式与招标文件、决标会纪要相比发生变更___。经合同双方签订合同谈判纪要后方可进行调整。
【填空题】
16.采用定向外委、询价比选的项目,在合同订立前,如合同条款、价款、质量、工期、支付方式与定标会议纪要相比发生变更___,由该___同意后方可通过合同谈判进行调整,若遇重大变更需由采购委员会同意后方可调整。
【填空题】
17.计划发展部发起合同创建流程后,需跟踪审批流程,及时提醒参与审核的相关职能部门提出合同审核意见,必要时向审核人说明情况。每个审批流程不超过___。相关职能部门如遇特殊情况需延长审核时间时,应向合同管理专职说明理由,且延长后累计审核时间最长不得超过___。
【填空题】
18.审核会签流程完成后,合同管理专职依据授权委托范围办理合同的签署,并应确保公司执___份。
【填空题】
19.安全监察部主任代表公司签署___;
【填空题】
20.纪检审计室主任代表公司签署___;
【填空题】
21.调度运行中心主任代表公司签署___;
【填空题】
22.计划发展部主任代表公司签署属于___的协议,
【填空题】
23.项目部门负责受理并审查外包单位所提出的释放质保金申请后___个工作日内,确认无质量问题后,发起质保金释放流程,流程中须就有关进度、质量、安全等方面真实性进行评价。
【填空题】
24.项目承办部门负责受理并预审外包单位所提出的支付申请及相关支持性文件中有关进度、质量、安全等内容,并对完成工作量进行签证;工作量签证一般应在收到外包单位的相关上报资料后___个工作日内完成。
【填空题】
25.计划发展部在收到项目承办部门及外包单位完整的结算资料后,可直接进行审核,也可以委托具有相应资质的工程造价咨询机构审核,并要求在___ 个工作日内完成审核。
【填空题】
25.___应在每___将合同价款实际支付情况反馈给计划发展部。
【填空题】
26.合同订立阶段,采用定向外委、询价比选的项目,在合同订立前,如合同条款、价款、质量、工期、支付方 式与定标会议纪要相比发生变更___,由该合同签署人同意后方可通过合同谈判进行调整,若遇重大变更需由___同意后方可调整。
【填空题】
27.合同订立阶段,所有经招标的项目,合同的起草及合同谈判必须以招标文件中的合同文本为基础,结合投标文件及有效的补充文件___与中标人进行谈判和澄清,不得违反原则性条款,重大变更需由___同意后方可调整。
【填空题】
28.合同范围内变更,如变更引起费用单项或累计预估增加额为合同总价在___以内并且 __万元以内), 合同变更申请单由分管领导批准
【填空题】
29.合同范围内变更,如变更引起费用单项或累计预估增加额为合同总价在 ___, 合同变更申请单由经营领导审核,总经理批准
【填空题】
30.所有合同范围内变更,变更申请同意后,合同承办部门需在ERP合同管理系统上在___前发起合同变更流程。
【填空题】
31.合同范围外变更,如变更引起费用单项或累计预估增加额为合同总价 20%含以内并且 10 万含以内,合同承办部门应填写合同变更申请一,详见附录 H,由___批准后,由计划发展部视情况组织与原合同单位进行谈判,确认主要工作内容及结算方式后方可实施合同范围外变更,如变更引起费用单项或累计预估增加额超过合同价的 20%或 10 万以上的,由计划发展部组织与原合同单位进行谈判,初步确定主要工作内容及结算方式,须经___审议通过后方可实施,并及时签订补充协议。补充协议由计划发展部起草,流程应由合同承办部门在合同管理系统上发起。"
【填空题】
32.合同收口用于对方已履行完成所有合同义务,但因其自身原因部分或所有权利已过___追 诉期,且经我方提醒无反馈;合同收口时必须要有法律顾问的书面确认函,且与合同变更申请二一并归档。
【填空题】
33.如需合同双方协商的主体变更,合同变更申请二审批通过后,均须进行商谈并出具___,并签订变更协议。
【填空题】
34.合同生效后的所有合同变更,包括合同金额、合同条款、合同需提前关闭等的变更,均由承办 部门在 ERP 合同管理系统上走合同变更程序,按照该合同原会签流程进行会签,经___批准后变更或解除原合同。
【填空题】
35.变更或解除合同过程中的文书、传真和图表等均应与___一并妥善保存。
【填空题】
36.根据公司确定的解决方案,可以先采用协商、调解方式解决。协商或调解达成一致意见的,应签订书面协议。有关文件的审核按___的程序办理。
【填空题】
37.以仲裁或诉讼方式解决合同纠纷时,计划发展部应与___确定诉讼代理人、诉讼方案等,在仲裁或诉讼过程中,承办部门及计划发展部应及时将处理情况报分管领导、总经理。
推荐试题
【单选题】
Which type of social-engineering attack uses normal tele phone service as the attack vector?___
A. smishing
B. dialing
C. phishing
D. vishing
【单选题】
Which quantifiable item should you consider when you organization adopts new technologies?___
A. exploits
B. vulnerability
C. threat
D. Risk
【单选题】
Referencing the ClA model, in which scenario is a hash- only function most appropriate ?___
A. securing data at rest
B. securing real-time traffic
C. securing data in files
D. securing wireless transmissions
【单选题】
Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications?___
A. 445 and 389
B. 888 and 3389
C. 636 and 4445
D. 363 and 983
【单选题】
Refer to the exhibit for which reason is the tunnel unable to pass traffic___
A. the tunnel is failing to receive traffic from the remote peer
B. the local peer is unable to encrypt the traffic
C. the ip address of the remote peer is incorrect
D. UDP port 500 is blocked
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
【单选题】
Which command should beused to ena ble AAA Authentication to determine if a user can access the privilege command level?___
A. aaa authentication enable local
B. aaa authentication enable level=
C. aaa authentication enable method de fault
D. aaa authentication enable defa ult local
【单选题】
On an ASA, the policy indicates that traffic should not be translated is often referred to as which of the following?___
A. NAT zero
B. NAT forward
C. NAT nul
D. NAT allow
【单选题】
Which protocol offers data Integrity encryption, authentication, and anti-replay functions for IPSec VPN?___
A. ESP protocol
B. IKEv3 Protocol
C. AH protoco
D. IKEv1 Protocol
【单选题】
Which component offers a variety of security Solution, including firwall, IF Antivirus and antiphishing features?___
A. Cisco loS router
B. Cisco ASA 5500 Ser ies security appliance
C. Cisco ASA 5500 X series Next Gen Security appliance
D. Cisco 4200 series IPS appliance
【单选题】
Refer to the exhibit, A Network Secur ity administrator check the ASa firewall NAT policy table rith show nat command, which statement is fails?___
A. There are only reverse translation matches for the REAL SERvER object
B. First policy in the Section 1 is a dynamic nat entry defined in the object configuration
C. NAT policy in section 2 is static entry de fined in the object configuration
D. Translation in Section 3 used when a connection does not matches any entries in first two sections
【单选题】
What is true of an aSa in transparent mode ?___
A. It supports OSPF
B. It requires an IP address for each interface
C. It requires a management IP address
D. It allows the use of dynamic NaT
【单选题】
What is the effect of the ip scp server enable command?___
A. It references an access list that allows specific SCP servers
B. It allows the router to initiate requests to an SCP server
C. It allows the router to become an SCP server
D. It adds SCP to the list of allowed copy functions
【单选题】
How can you mitigate attacks in which the attacker attaches more than one vLan tag to a packet?___
A. Assign an access VLAN to every active port on the switch
B. Disable Ether Channel on the switch
C. Explicitly identity each VLAN allowed across the trunk
D.
E. nable transparent VTP on the switch
