Asset and Change Management Flashcards

1
Q

Acquisition

A

Process of obtaining goods and services

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Procurement

A

Entire process of sourcing and obtaining those goods and services, including all
the processes that lead up to the acquisition

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Purchase Order

A

Formal document issued by the purchasing department

Dictates payment terms (NET 15, NET 30, NET 60)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Internal Approval Process

A

Ensures purchase alignment with company goals

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Post-Approval Procurement

A

■ Product compatibility assessment
■ Security checks and configurations
■ User training
■ Integration into the existing workflow

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

BYOD

A

Bring Your Own Device

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

COPE

A

Corporate-Owned, Personally Enabled

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

CYOD

A

Employees select devices from a company-approved list

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Asset Management

A

Systematic approach to governing and maximizing the value of items an entity is responsible for throughout the asset’s life cycle

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Assignment and Accounting of Assets

A

Each asset assigned to a person or group, known as owners.
Avoids ambiguity, aids troubleshooting, upgrades, and replacements

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Asset Monitoring

A

Maintaining an inventory with specifications, location, and
assigned users

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Asset Tracking

A

Goes beyond monitoring, involving the location, status, and condition of assets using specialized software and tracking technologies

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Enumeration

A

Identifies and counts assets, especially in large organizations or during times of asset procurement or retirement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

MDM

A

Mobile Device Management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

NIST Special Publication 800-88 (Guidelines for Media Sanitization)

A

Provides guidance on asset disposal and decommissioning

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Sanitization

A

Thorough process to make data inaccessible and irretrievable from storage
medium using traditional forensic methods

17
Q

Overwriting

A

○ Replacing the existing data on a storage device with random bits of information to ensure that the original data is obscured
○ Repeated several times to reduce any chance of the original data being recovered
○ Overwriting can use a single pass, 7 passes, or 35 passes

18
Q

Degaussing

A

Utilizes a machine called a degausser to produce a strong magnetic field that can disrupt magnetic domains on storage devices like hard drives or tapes

Permanent erasure of data but makes the device unusable

19
Q

Secure Erase

A

○ Deletes data and ensures it can’t be recovered
○ Implemented in firmware level of storage devices
○ Built-in erasure routine purges all data blocks
○ Deprecated in favor of cryptographic erase

20
Q

Cryptographic Erase (CE)

A

○ Utilizes encryption technologies for data sanitization
○ Destroys or deletes encryption keys, rendering data unreadable
○ Quick and efficient method of sanitization
○ Supports device repurposing without data leakage

21
Q

Change Management

A

Orchestrated strategy to transition teams, departments, and organizations from
existing state to a more desirable future state

22
Q

CAB

A

Change Advisory Board

Body of representatives from various parts of an organization that is
responsible for evaluation of any proposed changes

23
Q

Change Owner

A

Individual or team responsible for initiating change request

24
Q

Impact Analysis

A

Assesses potential fallout, immediate effects, long-term impacts

25
Q

Steps in Change Management

A
  1. Preparation
  2. Creating vision
  3. Implementation
  4. Verification
  5. Documentation
26
Q

Scheduled Maintenance Window

A

Designated timeframes for implementing changes

27
Q

Backout Plan

A

Pre-determined strategy to revert systems to their original state in case of
issues during change implementation

28
Q

SOPs

A

Standard Operating Procedures

● Detailed step-by-step instructions for specific tasks
● Ensures consistency, efficiency, and reduces errors in change
implementation within the organization

29
Q

Restricted Activities

A

Certain tasks labeled as ‘restricted’ due to their impact on system health
or security

30
Q

Version Control

A

Tracks and manages changes in documents, software, and other files