701 - Chapter 9

Question 1

What type of security control is something you can physically touch such as a lock, a fence, and a ID badge, a security camera?

Answer 1

Physical

Question 2

What can serve as an access badge to secure access to certain areas? And how do they work? And what can be added to these for multi factor authentication?

Answer 2

Proximity or smart cards… users pass the card near a proximity card reader and the card reader then reads data on the card…a PIN

Question 3

What else can be used to control access to building and secure spaces to deter security incidents?

Answer 3

Security guards or a receptionist

Question 4

What physical control can provide reliable proof of a persons, location and activity by identifying who enters and exits secure areas?

Answer 4

Video surveillance

Question 5

True or false closed circuit television CC TV can be used as a compensating control in some situations

Answer 5

True

Question 6

What monitors the environment and can detect changes? What are some common types of these?

Answer 6

Sensors… motion detection , noise detection, infrared temperature monitor, pressure monitor, microwaves monitor, ultrasonic waves monitor

Question 7

What provides a barrier around a property and deters people from entering? What also is visible especially around entrances and can deter attackers from trying to break?

Answer 7

A fence…lights

Question 8

What is an important to do with lighting? Why and how?

Answer 8

Protect them… because if they don’t work, they can’t do their job… By placing them high enough out of reach or surrounding them with a metal cage

Question 9

Military bases often erect these, while a business uses these? In both cases, what are they deterring?

Answer 9

Barricades…bollards… a person driving in to the structure that they are protecting

Question 10

What is a physical barrier between the outside world and a data center, consisting of two sets of interlocking doors designed to create a secure compartment that allows only one person to enter at a time? What are the doors usually equipped with? And what are they preventing?

Answer 10

Access control vestibule… Biometric scanners, RFID card readers or facial recognition systems…tailgating

Question 11

What is the process of tracking valuable assets throughout their life cycle?

Answer 11

Asset management

Question 12

what is the process that provides consistent procedures for identifying the need for new assets, And effectively on boarding and managing new vendors

Answer 12

Acquisition/procurement process

Question 13

What is the process that assigns each asset to a named owner who bears responsibility for the asset and a classification system that identifies as sensitivity and criticality of each asset to the organization?

Answer 13

Assignment/accounting process

Question 14

What is the process that maintains an inventory of all of the assets owned by the organization and their current current location?

Answer 14

Monitoring and asset tracking process

Question 15

What is the process to track servers, desktop, computers, laptop computers, router, switches, and other hardware assets?

Answer 15

Hardware asset management

Question 16

What vulnerabilities can be reduced with a hardware asset management process?

Answer 16

Architecture and design weaknesses, system sprawl and undocumented assets

Question 17

What automated method can be implemented to assist with inventory control for hardware asset management?

Answer 17

RFID

Question 18

What involves tracking and managing software licenses, installations, and usage within an organization? And how does it help?

Answer 18

Software asset management… it helps with licensing compliance, optimizes software usage, minimizes the risk of security vulnerabilities associated with unpatched or unauthorized software

Question 19

What is the security practice of implementing several layers of protection called?

Answer 19

Defense in depth, also known as layered security

Question 20

What are the different types of diversity for layered security?

Answer 20

Vendor diversity, technology diversity, control diversity

Question 21

What is the practice of implementing security controls from different vendors to increase security? And What is an example of this?

Answer 21

Vendor diversity…To implement a screened subnet requires two firewalls…using firewalls from different vendors means it is unlikely to develop a vulnerability at the same time in each

Question 22

What is the practice of using different technologies to protect an environment?

Answer 22

Technology diversity

Question 23

What is the use of different security control categories to protect an environment called?

Answer 23

Control diversity

Question 24

What is the practice of illegally capturing credit card data at the point of sale? And what is the practice of making a copy of a credit card using data captured from a magnetic strip called

Answer 24

Credit card skimming… card cloning

Question 25

What is the type of physical attack that can be rudimentary but effective? And what type of attack will disrupt By going after a power source or flooding it with water to cause a catastrophe?

Answer 25

Brute force attack… environmental attack

Question 26

What is adding duplication to critical system components and networks called? And what does it provide? And what are these trying to eliminate?

Answer 26

Redundancy… fault tolerance… single point of failure

Question 27

What are five types of redundancies that organizations will implement?

Answer 27

Disc redundancies using RAID, NIC redundancy with NIC teaming, server redundancies by adding load balancers, power redundancies by adding generators or UPSes, site redundancies by adding hot cold or warm sites

Question 28

What is any component whose failure results in the failure of an entire system called?

Answer 28

Single point of failure

Question 29

True or false people can never be a single point of failure

Answer 29

False… if that person is the only one with expertise on how to perform a specific task, they can become a single point of failure

Question 30

True or false RAID-0 or striping Provides redundancy and fault tolerance

Answer 30

False it provides neither as its benefit is increased read and right performance

Question 31

What is RAID-1 called? And how does it provide redundancy? And how can redundancy be further added?

Answer 31

Mirroring… By having two discs store the same information… by adding a disc controller to both drives, this is called disc duplexing

Question 32

What is RAID-5? And what happens if there is a disk failure?

Answer 32

Three or more discs that are striped together and including parity information… The disk can be re-created by reading the remaining good disks information

Question 33

What is RAID-6? And what is the benefit?

Answer 33

An extension of raid-5 with an additional parity block and disc… if two drives should fail you can still recover the data

Question 34

What combines the features of mirroring RAID-1 and striping RAID-0?

Answer 34

RAID-10

Question 35

Of the RAID types, which ones provide fault tolerance and increased data availability? Which can survive the failure of one disc and which can survive the failure of two discs

Answer 35

1,5 and 6…1,5…6

Question 36

What refers to a system or serviced that needs to remain operational with almost 0 downtime? And what can help achieve this?

Answer 36

Hi availability… high capacity load balancers

Question 37

What type of load balancer can optimize and distribute data across multiple computers or multiple networks? With this type of load balancing, what type of concept can be implemented?

Answer 37

Active/active… clustering

Question 38

True or false low balancers are hardware only?

Answer 38

False, they can be software as well

Question 39

What what does load balancing primarily provide?

Answer 39

Scalability

Question 40

In load balancers, what insures users will go to a specific server? And what does that provide?

Answer 40

Source address affinity… it provides session persistence

Question 41

What are the two types of load balancer configuration?

Answer 41

Active/active… active/passive

Question 42

In load balancing, what configuration ensures that if the active server fails, the inactive server takes over? And what is the monitoring connection between the servers called?

Answer 42

Active/passive… a heartbeat

Question 43

What are two scheduling methods that an active/active low balance or uses?

Answer 43

Round robin and source IP address affinity

Question 44

What allows you to group 2 or more physical network adapters into a single software based virtual network adapter?

Answer 44

NIC teaming

Question 45

True or false NIC teaming eliminates any physical NIC as a single point of failure?

Answer 45

True

Question 46

What provides short term power and can protect against power fluctuations?

Answer 46

UPS

Question 47

What can provide a second power supply if a primary power supply fails?

Answer 47

Dual supply

Question 48

What can provide long-term power during extended outages?

Answer 48

Generators

Question 49

What can monitor the quality of power such as voltage current and power consumption and report these measurements to central monitoring console?

Answer 49

Managed power distribution units

Question 50

What are four types of backup media?

Answer 50

Tape, network attached storage NAS, storage area network SAN, cloud storage

Question 51

Of the backup media, what can be used for real time replication of #DATA?

Answer 51

SAN

Question 52

What type of backup uses traditional backup media, such as tapes, local discs, drives in a NAS? And what type of stored with a cloud?

Answer 52

Off-line… online

Question 53

What are two limiting factors to doing full backups all the time?

Answer 53

Time to take the full backup and the cost of storage required for full backups

Question 54

Which back up starts with a full back up and then backs up data that has changed or is different since that last full back up?

Answer 54

Differential back up

Question 55

Which back up starts with a full back up and then backs up data that has changed since the last backup?

Answer 55

Incremental back up

Question 56

If you have unlimited time and money, which back up provides the fastest recovery time? Which back up reduces the amount of time needed perform back ups? Which backup reduces the amount of time needed to restore backups.

Answer 56

Full… incremental… Differential

Question 57

Which backup captures the data at a moment in time and is commonly used with VMs?

Answer 57

A snapshot back up

Question 58

What is the process of creating an exact copy of data or a system in real time or near real time? What is the backup technique that records changes to data or file sequentially in a separate log?

Answer 58

Replication… journaling

Question 59

What is the best way to confirm the integrity of a companies backup data and its process?

Answer 59

Test restores

Question 60

True or false back up media does not need to be protected with the same level of protection as the data on the back up?

Answer 60

False, it needs to be protected to the same level

Question 61

What protects back ups against a disaster such as a fire or a flood?

Answer 61

Storing at least one copy of the back ups offsite

Question 62

What refers to the legal implications when data is stored offsite, if they are stored in a different country, they are subject to that country‘s law?

Answer 62

Data Sovereignty

Question 63

What plays a vital role in securing backup data both in transit and at rest?

Answer 63

Encryption

Question 64

What helps an organization predict in plan for potential outages of critical services or functions, and contains the steps used to return critical functions to operations after an outage?

Answer 64

Business continuity plan BCP

Question 65

This important part of a BCP helps an organization, identifies mission essential functions and critical systems that are essential to the organizations success?

Answer 65

Business impact analysis BIA

Question 66

What are some of the questions that are addressed by a BIA?

Answer 66

What are the critical systems and functions? are there any dependencies related to those? What is the maximum downtime limit? What scenarios are most likely to impact these? What is the potential loss from these?

Question 67

What are some of the scenarios that a BIA evaluates?

Answer 67

Natural disasters, fires, attacks, power outages, data loss, hardware/software failures

Question 68

What is the maximum amount of time it can take to restore a system after an outage? What refers to the amount of data you can afford to lose?

Answer 68

Recovery time objective RTO… recovery point objective RPO

Question 69

What is the average time between failures called? And what do higher numbers indicate?

Answer 69

Meantime between failures MTBF… a higher reliability in a system

Question 70

What is the average time it takes to restore a failed system called?

Answer 70

Meantime to repair MTTR

Question 71

What plan focuses on restoring mission essential functions at a recovery site after a critical outage?

Answer 71

Continuity of operations planning COOP

Question 72

What is an alternate processing site that an organization has? And what does it offer?

Answer 72

A recovery site…site resilience

Question 73

What are the three types of recovery sites? And what is important to keep in mind when planning for these sites?

Answer 73

Hot, cold, warm… geographic dispersion

Question 74

Of the three recovery site types which one includes the personnel, equipment, software, and communication capabilities of the primary site with all the data up-to-date?

Answer 74

Hot site

Question 75

Which recovery site type provides the shortest recovery time, Is the most effective disaster recovery solution but is also the most expensive to maintain?

Answer 75

Hot site

Question 76

Which recovery site type requires power and connectivity but not much else? What is a pro and what is a con?

Answer 76

Cold site… cheapest to maintain but most difficult to test

Question 77

Which recovery site type has all the necessary hardware but not include up-to-date data?

Answer 77

Warm site

Question 78

What site does not have dedicated locations, but can provide temporary support during a disaster?

Answer 78

A mobile site

Question 79

When restoring to a primary site after a disaster, which functions are restored first? And why?

Answer 79

The least critical functions… It’s very likely there are still some unknown problems and by moving the lease critical first you will help uncover those problems

Question 80

What identifies how to recover critical systems and data after a disaster, and often prioritizes the services to restore?

Answer 80

Disaster recovery plan DRP

Question 81

What validates the disaster recovery plan? And what is the final phase of the DRP?

Answer 81

Testing… An after action report to identify lessons, learn and also any updates to the plan

Question 82

What is a discussion based version of testing a DRP?

Answer 82

A tabletop exercise

Question 83

What are functional exercises that allow personnel to test the DRP in a test operational environment?

Answer 83

Simulations

Question 84

What type of DRP test allows FOR THE PARTICIPANTS TO TAKE ACTUAL PHYSICAL OR ACTIONS?

Answer 84

Parallel processing

Question 85

Which DRP allows the shutting down of the primary site and testing where the recovery site properly handles the load?

Answer 85

Fail over test

Question 86

What is the process of determining the resources required to meet the demands of an organizations, operations and growth, and analyzes in forecasts the organizations resource needs?

Answer 86

Capacity planning

Question 87

What are the three main areas regarding capacity planning?

Answer 87

People, technology, infrastructure