2.1

Question 1

Refers to the process of systematically managing and controlling the settings, configurations, and changes to hardware, software, and network components within an IT environment.

Answer 1

Configuration management

Question 2

Are commonly used in architectural specifications to communicate how the enterprise is configured.

Answer 2

Diagrams

Question 3

A predetermined set of secure and standardized settings for hardware, software, and network components within an IT system.

Answer 3

Baseline configuration

Question 4

Are established, consistent rules for naming files, devices, accounts, or other elements within an IT system.

Answer 4

Standard naming conventions

Question 5

32-bit numbers divided into 4 sets of 8 bits. xxx.xxx.xxx.xxx, where x is between 0 and 255.

Answer 5

Internet protocol (IP) schema

Question 6

Is the concept that data is subject to the laws and regulations of the country in which it is located.

Answer 6

Data sovereignty

Question 7

The set of policies, procedures, tools, and architectures used to ensure proper control over the date in an enterprise.

Answer 7

Data protection

Question 8

Serve to prevent sensitive data from leaving the network without notice.

Answer 8

Data loss prevention (DLP)

Question 9

Involves the hiding of data by substituting altered values.

Answer 9

Masking

Question 10

Is the use of sophisticated mathematical techniques to prevent persons with unauthorized access to data from actually reading the data.

Answer 10

Encryption

Question 11

Data that is stored.

Answer 11

Data At rest

Question 12

Data being moved from one system to another.

Answer 12

Data In transit/motion

Question 13

Data that is actively being used, either in a processor or other computational element.

Answer 13

Data In processing

Question 14

Is the use of a random value to take the place of a data element that has traceable meaning. A good example of this is the credit card approval process.

Answer 14

Tokenization

Question 15

The systematic establishment of rules and order to the various rights that users can invoke over digital object. For example, at the file level, here is read, write, etc.

Answer 15

Rights management

Question 16

The impact of physical location, jurisdictional boundaries, and regional factors on the security and privacy of digital information.

Answer 16

Geographical considerations

Question 17

The measures and strategies implemented to address and recover from security incidents.

Answer 17

Response and recovery controls

Question 18

Is a cybersecurity practice that involves inspecting and monitoring encrypted SSL/TLS traffic to ensure security and compliance.

Answer 18

Secure Sockets Layer (SSL)/Transport
Layer Security (TLS) inspection

Question 18

Is a technology whereby the uniqueness of a data element can be represented in a fixed-length string.

Answer 18

Hashing

Question 19

____________ play a crucial role in enabling communication and data exchange between different software applications. Securing ___________ involves a comprehensive approach that includes strong authentication, encryption, input validation, monitoring, and adherence to security best practices throughout the _________ development and usage lifecycle. Regular assessments and staying informed about evolving security threats are essential in maintaining the security of _________ in dynamic technology environments.

Answer 19

Application Programming Interfaces (APIs)

Question 20

An organization’s ability to maintain critical business functions and cybersecurity capabilities in the face of disruptive events that could potentially impact the availability and integrity of its systems and data.

Answer 20

Site resiliency

Question 21

Is a fully configured environment, similar to the normal operating environment that can be operational immediately or within a few hours.

Answer 21

Hot site

Question 22

An environment that has the basic environmental controls necessary to operate but few of the computing components necessary for processing.

Answer 22

Cold site

Question 23

Is a partially configured environment, usually having the peripherals and software but perhaps not the more expensive main processing computer.

Answer 23

Warm site

Question 24

Are cybersecurity strategies used to enhance security measures and thwart cyber threats. Both approaches focus on confusing, misdirecting, or impeding attackers to protect systems and data.

Answer 24

Deception and disruption

Question 25

Is a server that is designed to act like a real server on a corporate network, but rather than having real data, it possesses fake data.

Answer 25

Honeypots

Question 26

Is a file that is designed to look like a real file on a server, but the data it possesses is fake.

Answer 26

Honeyfiles

Question 27

Is a collection of honeypots. It is a network designed to look like a corporate network but is made attractive to attackers.

Answer 27

Honeynets

Question 28

Is a synthetic network traffic that resembles genuine communications. delivered at an appropriate volume to make honeypots and honeynets look real.

Answer 28

Fake telemetry

Question 29

Is a DNS provider that returns specific DNS requests with false results.

Answer 29

DNS sinkhole