1 - Overview of Security

Question 1

Information Security

Answer 1

Act of protecting data and information from unauthorized access, unlawful modification and disruption, disclosure, corruption, and destruction

Question 2

Information Systems Security

Answer 2

Act of protecting the systems that hold and process our critical data

Question 3

CIA triad

Answer 3

Confidentiality, Integrity, Availability

Question 4

Confidentiality

Answer 4

Information has not been disclosed to unauthorized people

Question 5

Integrity

Answer 5

Information has not been modified or altered without proper authorization

Question 6

Availability

Answer 6

Information is able to be store, accessed, or protected at all times

Question 7

What is the AAA of security

Answer 7

Authentication, Authorization, Accounting

Question 8

Authentication

Answer 8

When a person’s identity is established with proof and confirmed by a system

Question 9

Authorization

Answer 9

Occurs when a user is given access to a certain piece of data or certain areas of. a building

Question 10

Accounting

Answer 10

Tracking of data, computer usage, and network resources

Question 11

What are the four types of security threats

Answer 11

Malware, Unauthorized Access, System Failure, and Social Engineering

Question 12

What is Malware

Answer 12

short-hand term for malicious software

Question 13

What is unauthorized access

Answer 13

Occurs when access to computer resources and data occurs without the consent of the owner

Question 14

What is system failure

Answer 14

occurs when a computer crashes or an individual application fails

Question 15

What is social engineering

Answer 15

act of manipulating users into revealing confidential information or performing other detrimental actions

Question 16

What can you mitigate threats through

Answer 16

Physical controls, technical controls, and administrative controls

Question 17

what are physical controls you can control

Answer 17

alarm systems, ID cards, and security guards

Question 18

what are technical controls you can control

Answer 18

smart cards, access control lists, network authentication, intrusion detection systems

Question 19

What are administrative controls

Answer 19

Policies, procedures, security awareness training, contingency planning, and disaster recovery plans.

Question 20

What is the most cost-effective security control to use

Answer 20

User training

Question 21

What are the different types of hackers

Answer 21

white, black, gray, and blue hat. also elite hackers

Question 22

What is a blue hat hacker

Answer 22

hackers who attempt to hack into a network with permission of the company but are not employed by the company

Question 23

What are script kiddies

Answer 23

they have limited skill and only run other people’s exploits and tools

Question 24

What are hacktivists

Answer 24

hackers who are driven by a cause like social change, political agendas, or terrorism

Question 25

What is organized crime hackers

Answer 25

hackers who are part of a crime group that is well-funded and highly sophisticated

Question 26

What is an advanced persistent threats

Answer 26

highly trained and funded groups of hackers with covert and open-source intelligence at their disposal

Question 27

What do you measure the quality of intelligence

Answer 27

Timeliness, Relevancy, Accuracy, Confidence Levels

Question 28

What are the types of intelligence

Answer 28

Proprietary, Closed-Source, Open Source, OSINT

Question 29

What is Threat Hunting

Answer 29

A cybersecurity technique designed to detect presence of threat that have not been discovered by a normal security monitoring

Question 30

What is the kill chain

Answer 30

A model developed by Lockheed Martin that describes the stages by which a threat actor progresses a network intrusion

Question 31

What is MITRE ATT&CK Framework

Answer 31

A knowledge base maintained by the MITRE Corporation for listing and explaining specific adversary tactics, techniques, and common knowledge or procedures

Question 32

What is the Diamond Model of Intrusion Analysis

Answer 32

A framework for analyzing cybersecurity incidents and intrusions by exploring the relationships between four core features: adversary, capability, infrastructure, and victim