9 - Resilience and Physical Security

Question 1

Naomi wants to deploy a tool that can allow her to scale horizontally while also allowing her to patch systems without interfering with traffic to her web servers. What type of tech should she deploy?

Answer 1

Load Balancer

Question 2

Rick is performing a backup that captures the changes since the last full backup. What type of backup has he performed?

Answer 2

Differential Backup

Question 3

What type of recovery site has some or most systems in place but does not have the data needed to take over operations?

Answer 3

Warm Site

Question 4

Ben wants to implement a RAID array that combines both read and write performance while retaining data integrity if a drive fails. Cost is not a concern compared to speed and resilience. What type of RAID should he use?

Answer 4

RAID 10 (1+0)

Question 5

Cynthia wants to clone a virtual machine. What should she do to capture a live machine, including the machine state?

Answer 5

A Snapshot

Question 6

Sally is working to restore her org’s operations after a disaster took her datacenter offline. What critical document should she refer to as she restarts a system?

Answer 6

The Restoration Order Documentation

Question 7

Mike wants to stop vehicles from traveling toward the entrance of his building. What physical security controls should he implement?

Answer 7

Bollards (eg. physical barriers such as metal pillars or concrete planters/barricades)

Question 8

Amanda wants to securely destroy data held on DVDs. Which of the following options is NOT a suitable solution for this?

• Degaussing
• Burning
• Pulverizing
• Shredding

Answer 8

Degaussing (which only works on magnetic data)

Question 9

Why are Faraday cages deployed?

Answer 9

To prevent Electro Magnetic Interference (EMI)

Question 10

What control specifically helps prevent insider threats?

Answer 10

Two-person Control

Question 11

Madhuri wants to implement a camera system but is concerned about the amount of storage space that the video recordings will require. What technology can help with this?

Answer 11

Motion-Detecting Cameras

Question 12

What factor is a major reason organizations do not use security guards?

Answer 12

Cost

Question 13

Michelle wants to ensure that attackers who breach her network security perimeter cannot gain control of the systems that run the industrial processes her org uses as a part of their business. What type of solution is best suited for this?

Answer 13

An Air Gap (physical separation of systems)

Question 14

Kathleen wants to discourage potential attackers from entering the facility she is responsible for. What are COMMON controls used for this type of prevention [think: what are basic physical deterrents]?

Answer 14

Fences, Lights, and Signs

Question 15

How does technology diversity help ensure cybersecurity resilience? [Recall the KEY WORDS.]

Answer 15

It ensures that a VULNERABILITY in a single company’s product with not impact the entire infrastructure; if a single VENDOR goes out of business, the company does not need to replace its entire system; and MISCONFIGURATION will not impact the entire network.

Question 16

Scott sends his backups to a company that keeps them in a secure vault. What type of backup solution has he implemented?

Answer 16

Offline

Question 17

Gabby want to implement a mirrored drive solution. What RAID level does this describe?

Answer 17

RAID 1

Question 18

Florian wants to ensure that systems on a protected network cannot be attacked via the org’s network. What design technique should he use to ensure this?

Answer 18

An Air Gap (physical separation of systems)

Question 19

What type of physical security control is a “Man Trap”?

Answer 19

An Access Control Vestibule

Question 20

Gurvinder identifies a third-party datacenter provider over 90 miles away to run his redundant datacenter operations. Why has he placed the data center that far away?

Answer 20

Geographic Dispersal