(1)Tools and Tech and their Integrations Flashcards

1
Q

What are two ways that companies can automate repetitive tasks (other than Security Orchestration, Automation and Response (SOAR) systems)? Describe them

A

Two ways that companies can automate repetitive tasks are:

-Scripting (which is code that automates the work)

-Integration (uses interfaces (provided by vendors) to bring different products together)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

How can Application Programming Interfaces (APIs) help in the process of integrating security tools?

A

-APIs allow a team to use programmatic interfaces to services that let one use a service without using web based interfaces

-The API lets you create code that will automate those actions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are webhooks? How can they be helpful?

A

Webhooks enable a team to send a signal from one app to another using a web request

This could be used to help automatically trigger a scan each time a new vulnerability is reported

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are plug-ins and why are they useful for?

A

Plug-ins are programs that run inside of programs that provide context, such as the ability to get extra information about a website that normally isn’t available otherwise

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Describe how the “single pane of glass” concept can assist cybersecurity operational efficiency?

Is perfect efficiency possible? Describe why or why not?

A

The single pane of glass approach helps analysts to pool all of their tools into one place, so that they don’t need to cross reference so many tools.

Perfect efficiency isn’t really possible as there will always be “another system” that one needs to perform normal duties, but its worth the effort to get it as efficient as possible!

How well did you know this?
1
Not at all
2
3
4
5
Perfectly