1.7 techniques used in security assessments

Question 1

CVE/ CVSS

Answer 1

Common Vulnerabilities and Exposures - a glossary that classifies vulnerabilities in software and systems

Common Vulnerability Scoring System - standard method used by security professionals to measure and score the severity of a vulnerability

Question 2

SOAR

Answer 2

Security orchestration, automation, and response

a collection of tools and services that automate the prevention and response to cyberattacks

Question 3

SIEM

Answer 3

Security Information and Event Management

logging of events

Syslog - central log collector, disk space heavy

Question 4

SOC

Answer 4

Security Operations Center

Question 5

UEBA

Answer 5

user and entity behavior analytics

uses algorithms and machine learning to detect anomalies in the behavior of not only the users in a corporate network but also the routers, servers, and endpoints in that network.