2.4: Vulnerability Management

Question 1

What is the purpose of vulnerability Management

Answer 1

To identify and manage vulnerabilities in IT application and infrastructure

Question 2

What can cause vulnerabilities

Answer 2

Errors in configuration, flaws in overall architecture, or form newly discovered weakness reported by security researchers.

Question 3

Activities of the vulnerabilities Management

Answer 3

• Subscribing to security alerts
• Subscribing to security alerts
• Patch management
• Corrective action process

Question 4

Purpose of threat management

Answer 4

The purpose of threat management is to acquire intelligence on credible threats that may be realized in the organization.

Question 5

Threat Hunting

Answer 5

The activity of proactively looking for active threats

Question 6

Threat modeling

Answer 6

The activity of looking for potential threats

Question 7

Internal sources that provide information about threats

Answer 7

Security systems such as IPSs, firewall, data loss prevention systems, web-filtering system

Question 8

External sources that provide information about threats

Answer 8

Subscription to threat intelligence feeds

Question 9

System Hardening

Answer 9

is the process of changing the configuration of a system (which could be a server, subsystem, or network device) so that it is more resistant to malfunctions and attacks.

Question 10

Risks caused by servers consolidations

Answer 10

Consolidation may reduce the number of servers and make an environment simpler, but it also increases risk.

Question 11

sendmail program

Answer 11

Sendmail is a large, complex program that is the subject of ongoing security research, and new vulnerabilities are discovered from time to time.

Question 12

Why should Nonessentiel user IDS be removed

Answer 12

Because hackers often exploit access privileges for nonessential user IDs such as guests accounts

Question 13

What does virtualization permit

Answer 13

Virtualization permits two or more operating systems to run concurrently on a hardware system, each with its own share of resources, and each operating as though it were running on its own physical server.

Question 14

User access provisioning

Answer 14

the process whereby user accounts are created for new employees and other personnel.

Question 15

Employee transfers

Answer 15

employee’s old access rights should be rescinded when their new accesses are provisioned.

Question 16

privileges creep or accumulation of privileges

Answer 16

In organizations that do not manage user access changes that are related to employee transfers, some employees will have a growing list of access privileges.

Question 17

Resting password via a URL mail

Answer 17

If a password is sent via-email, the application should require the user to choose a new password on first login.

Question 18

Password length

Answer 18

Minimum of seven to eight characters

Question 19

Are security control for mobile devices an additional controls?

Answer 19

They are compensating controls that reduce data compromise risks