Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

Cyber Security Study > 12.1.7 Practice Questions > Flashcards

12.1.7 Practice Questions Flashcards

1
Q

Question 1.
A manufacturing organization identifies its server maintenance and repair process as a mission-essential function. The company experienced three server failures in the last year, each failure taking approximately six hours to repair and restore operations.
Given the company’s performance metrics and assuming all failures occurred during operational hours, what are the MTBF and MTTR for the organization’s server maintenance and repair process?

Answer
MTBF: 1,000 hours/failure, MTTR: 2 hours
MTBF: 2,920 hours/failure, MTTR: 6 hours
MTBF: 1,460 hours/failure, MTTR: 18 hours
MTBF: 2,000 hours/failure, MTTR: 6 hours

A

Correct Answer:
MTBF: 2,920 hours/failure, MTTR: 6 hours

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Question 2.
The security team at a company is adopting a cybersecurity framework to standardize its security measures across different departments. The team lead wants to ensure that the selected framework encompasses all the critical aspects of cybersecurity.
What should the security team lead ensure the cybersecurity framework covers to provide a comprehensive security posture?

Answer
Threat intelligence and event correlation
The technical controls and access management
Procedures for incident response
Risk assessment, incident response, access control, awareness, and training

A

Correct Answer:
Risk assessment, incident response, access control, awareness, and training

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Question 3.
A technology company implements a backup strategy to mitigate data loss in case of a system crash. The strategy focuses on defining the maximum duration of data to retrieve from the backup storage to ensure business continuity after a system crash.
Which principle should the company applying to meet their needs?

answer
Recovery time objective (RTO)
Recovery point objective (RPO)
Single loss expectancy (SLE)
Annualized loss expectancy (ALE)

A

Correct Answer:
Recovery point objective (RPO)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Question 4.
You have conducted a risk analysis to protect a key company asset. You identify the following values:
Asset value = 400
Exposure factor = 75
Annualized rate of occurrence = .25
What is the annualized loss expectancy (ALE)?

answer
25
75
100
175
475

A

Correct Answer:
75

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Question 5.
What is the term for the average number of times that a specific risk is likely to be realized in a single year?
answer
Estimated maximum downtime
Annualized loss expectancy
Exposure factor
Annualized rate of occurrence

A

Correct Answer:
Annualized rate of occurrence

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Question 6.
When analyzing assets, which analysis method assigns financial values to assets?
answer
Transfer
Acceptance
Quantitative
Qualitative

A

Correct Answer:
Quantitative

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Question 7.
Which of the following BEST defines single loss expectancy (SLE)?
answer
-The total monetary loss associated with a single occurrence of a threat.
-The statistical probability of a malicious event.
-The total cost of all countermeasures associated with protecting against a given vulnerability.
-The monetary value of a single employee’s loss of productivity due to a successful attack.

A

Correct Answer:
The total monetary loss associated with a single occurrence of a threat.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Question 8.
What is the primary goal of business continuity planning (BCP)?
answer
-Maintain business operations with reduced or restricted infrastructure capabilities or resources.
-Protect an organization from major computer services failure.
-Minimize decision-making during the development process.
-Minimize the organization’s risk of service delays and interruptions.

A

Correct Answer:
Maintain business operations with reduced or restricted infrastructure capabilities or resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Question 9.
A company wants to guarantee business continuity even if a catastrophic event occurs at its primary data center.
What are the MOST appropriate strategies for the company to adopt? (Select two.)

answer
Utilize multicloud systems
Deploy a hot site
Deploy a warm site
Implement capacity planning
Disperse locations geographically

A

Correct Answer:
Deploy a hot site

Correct Answer:
Disperse locations geographically

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Question 10.
During an annual review, a health services company’s leadership aims to scrutinize its disaster response and data recovery protocols. They focus on effectiveness, hidden weaknesses, and clarity of employee roles during a disaster.
Which course of action would BEST serve these objectives?
Answer
Increasing the frequency of data backups
Organizing tabletop exercises
Expanding the IT department
Installing larger uninterruptible power supply (UPS) systems

A

Correct Answer:
Organizing tabletop exercises

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Cyber Security Study (36 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions