2.0 Protect

Question 1

Data analytics

Question 2

Intrusion prevention systems and tools

Question 3

Security vulnerability databases

Answer 3

CVE
CSS

Question 4

Acceptable use policy

Question 5

Network access control (NAC)

Question 6

Disaster recovery and business continuity plans

Question 7

Remote work policies

Question 8

Active Directory Group Policy Objects (GPOs)

Question 9

Footprinting

Question 10

Scanning

Question 11

Enumeration

Question 12

Gaining access

Question 13

Web attacks

Question 14

Password attacks

Question 15

Wireless attacks

Question 16

Social-engineering

Question 17

Man-in-the-middle

Question 18

Malware

Question 19

Out-of-band

Question 20

DoS

Question 21

DDoS

Question 22

Resource exhaustion

Question 23

Forced system outage

Question 24

Packet generators

Question 25

Organizational structure

Question 26

Internal teams

Question 27

Personnel roles and responsibilities

Question 28

Communication policies and procedures

Question 29

Knowledge sharing processes

Question 30

Conflict management

Question 31

Law enforcement

Question 32

Vendors

Question 33

Intrusion prevention systems (IPS)

Question 34

Intrusion detection systems (IDS)

Question 35

Firewalls

Question 36

Network segmentation

Question 37

Endpoint detection and response (EDR)

Question 38

least privilege

Question 39

Separation of duties

Question 40

Password enforcement policies

Question 41

Active Directory hygiene

Question 42

Patch management

Question 43

Mobile device management (MDM)

Question 44

Identify assets

Question 45

Cybersecurity polices and procedures

Question 46

Data security polices

Question 47

Cybersecurity auditing processes and procedures

Question 48

Audit objectives

Question 49

Network structure

Question 50

Compliance standard

Question 51

Document and communicate results

Question 52

Review assessments, audits, and inspections

Question 53

Analyze critical issues for action

Question 54

Develop plans of action

Question 55

Specify success criteria

Question 56

Remediation planning

Question 57

Resource implications

Question 58

Monitoring procedures

Question 59

Software updates

Answer 59

Scope
Attributes
Vulnerabilities

Question 60

Firmware updates

Answer 60

Scope
Attributes
Vulnerabilities

Question 61

Software patches

Question 62

Enterprise resources

Question 63

Access control

Question 64

Authentication systems

Question 65

Remote access monitoring

Question 66

Cybersecurity policies and procedures

Question 67

Identity management

Question 68

Authorization

Question 69

Infrastructure/physical security

Question 70

Physical security controls

Question 71

User credentials