1.1 Flashcards

1
Q

Info Sec

A

Protecting data from unauthorized access, disruption, disclosure and destruction

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Info Systems Sec

A

Protecting the system s(computer, servers and network devices that hold and process data)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

CIA Triad

A

Confidentiality, Availability and Integrity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

CIA Pentagon

A

Includes non-repudiation and authentication

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Triple A’s of Security

A

Authentication, Authorization and Accounting

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Security Control categories

A

Technical, Managerial, Operational and Physical

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Security Control Categories

A

Deterrent, detective, corrective, directive, preventative and compensating

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Threat

A

Anything that could cause harm, loss, damage or compromise to our security systems (natural disasters, cyber attacks, disclosure of confidential info, data integrity breaches)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Vulnerability

A

Any weakness in system design or implementation. Software bugs, misconfigured software, improperly protected devices, missing patches and lack of physical security

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Risk Management

A

Finding different ways to minimize the likeihood of an outcome and achieve the desired outcome

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Technical Controls

A

The technologies, hardware and software mechanisms that are implemented to manage and reduce risks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Managerial Controls

A

also referred to as administrative controls. Involve strategic planning and governance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Operational Controls

A

Procedures and measures desinged to protect data on a day to day basis.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Physical Controls

A

tangible real world measures taken to protect assets

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Preventative Controls

A

Proactive measures to thwart potential security threats or breaches

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Deterrent Controls

A

discourage potential hackers by making the effort seem less appealing or more challenging

17
Q

Detective Controls

A

Monitor and Alert orgs to malicious activities as they occur or shortly thereafter

18
Q

Corrective Controls

A

mitigate any potential damage and restore our systems to their normal state

19
Q

Compensating Controls

A

alternative measures that are implemented when primary security controls are not feasible to achieve

20
Q

Directive Controls

A

Guide inform or mandate actions. Often rooted in policy or documentation and sets the standards for behavior within an organization