1A: Compare and Contrast Information Security Roles

Question 1

Any external responsibility for an organization’s security lies mainly with which individuals?

Answer 1

Senior Executives

Question 2

Which security related phrase relates to the integrity of data?

Answer 2

Modification

Question 3

An engineer looks to implement security measures by following the five functions in the National Institute of Standards and Technology (NIST) Cybersecurity Framework. When documenting the “detect” function, what does the engineer focus on?

Answer 3

Ongoing proactive monitoring

Question 4

The National Institute of Standards and Technology (NIST) provides a framework that classifies security-related functions. Which description aligns with the “respond” function?

Answer 4

Identify, analyze, and eradicate threats

Question 5

What is the CIA Triad?

Answer 5

Confidentiality, Integrity, Availability

Question 6

What is condifentiality?

Answer 6

certain information should only be known to certain people.

Question 7

What is Integrity?

Answer 7

data is stored and transferred as intended and that modification is only done by authorized sources.

Question 8

What is availability?

Answer 8

information is accessible to those authorized to view or modify it.

Question 9

What is non-repudiation?

Answer 9

The security goal of ensuring that the party that sent a transmission or created data remains associated with that data and cannot deny sending or creating that data.

a subject cannot deny doing something, such as creating, modifying, or sending a resource.

Ex. Something is witnessed, witness can provide evidence

Question 10

What are the 5 Functions of security developed by NIST?

Answer 10

Identify
Protect
Detect
Respond
Recover

Question 11

The National Institute of Standards and Technology (NIST) provides a framework that classifies security-related functions. Which description aligns with the “identify” function?

Answer 11

develop security policies and capabilities. Evaluate risks, threats, and vulnerabilities and recommend security controls to mitigate them.

Question 12

The National Institute of Standards and Technology (NIST) provides a framework that classifies security-related functions. Which description aligns with the “protect” function?

Answer 12

procure/develop, install, operate, and decommission IT hardware and software assets with security as an embedded requirement of every stage of this operations life cycle.

Question 13

The National Institute of Standards and Technology (NIST) provides a framework that classifies security-related functions. Which description aligns with the “recover” function?

Answer 13

implement cybersecurity resilience to restore systems and data if other controls are unable to prevent attacks.

Question 14

What are some of the basic responsibilities of someone in IT?

Answer 14

-Participate in risk assessments and testing of security systems and make recommendations.
-Specify, source, install, and configure secure devices and software.
-Set up and maintain document access control and user privilege profiles.
-Monitor audit logs, review user privileges, and document access controls.
-Manage security-related incident response and reporting.
-Create and test business continuity and disaster recovery plans and procedures.
-Participate in security training and education programs.

Question 15

Who is in charge of overall internal responsibility for Security?

Answer 15

Director of Security, Chief Security Officer (CSO), Chief Information Security Officer (CISO)

Question 16

How might the goals of basic network management not align with the goals of security?

Answer 16

Management focuses on availability over confidentiality

Question 17

What are IT managers typically in charge of?

Answer 17

Managers may have responsibility for a domain, such as building control, ICT, or accounting.

Question 18

What is the responsibility of Technical and specialist staff?

Answer 18

implementing, maintaining, and monitoring the policy

Question 19

Who has external responsibility for security (due care/laibility)

Answer 19

Directors and owners

Question 20

What responsibility does non-technical staff have?

Answer 20

complying with policy and with any relevant legislation.

Question 21

What is an SOC

Answer 21

Security Operations Center?

location where security professionals monitor and protect critical information assets across other business functions, such as finance, operations, sales/marketing, etc

Question 22

What is DevOps?

Answer 22

A combination of software development and systems operations, and refers to the practice of integrating one discipline with the other.

Question 23

What is DecSevOps?

Answer 23

A combination of Development + Operations + Security?

Question 24

What does CIRT stand for?

Answer 24

cyber incident response team

Question 25

What does CSIRT stand for?

Answer 25

Computer security incident response team

Question 26

What are the properties of a secure information processing system?

Answer 26

Confidentiality, Integrity, and Availability (and Non-repudiation).

Question 27

What term is used to describe the property of a secure network where a sender cannot deny having sent a message?

Answer 27

Non-repudiation

Question 28

A multinational company manages a large amount of valuable intellectual property (IP) data, plus personal data for its customers and account holders. What type of business unit can be used to manage such important and complex security requirements?

Answer 28

A security operations center (SOC).

Question 29

A business is expanding rapidly and the owner is worried about tensions between its established IT and programming divisions. What type of security business unit or function could help to resolve these issues?

Answer 29

Development and operations (DevOps) is a cultural shift within an organization to encourage much more collaboration between developers and system administrators. DevSecOps embeds the security function within these teams as well.

Question 30

A business is expanding rapidly and the owner is worried about tensions between its established IT and programming divisions. What type of security business unit or function could help to resolve these issues?

Answer 30

Development and operations (DevOps) is a cultural shift within an organization to encourage much more collaboration between developers and system administrators. DevSecOps embeds the security function within these teams as well.

Question 31

What is confidentiality?

Answer 31

The fundamental security goal of keeping information and communications private and protecting them from unauthorized access.

Question 32

What us a CISO (Chief Information Security Officer)?

Answer 32

Typically the job title of the person with overall responsibility for information assurance and systems security. Sometimes referred to as Chief Information Officer (CIO).

Question 33

What is a CSIRT (Computer Security Incident Response Team)?

Answer 33

Team with responsibility for incident response. The CSIRT must have expertise across a number of business domains (IT, HR, legal, and marketing for instance).

Question 34

What is an ISSO (Information Systems Security Officer)

Answer 34

Organizational role with technical responsibilities for implementation of security policies, frameworks, and controls.