Asset Security

Question 1

The residual physical representation of data that has been in some way erased.

Answer 1

Data Remanence

Question 2

Official series of publications relating to standards & guidelines adopted

Answer 2

Federal Information Processing Standards (FIPS)

Question 3

Allows greater flexibility in applying encryption to specific file(s).

Answer 3

File Encryption Software

Question 4

Broader discipline, adding several dimensions of management & involving a much broader base of stakeholders

Answer 4

IT Asset Management (ITAM)

Question 5

Methodology that identifies the path to meet user requirements.

Answer 5

Data Modeling

Question 6

Software that is used to encrypt otherwise unprotected storage media such as CD’s, DVDs, USB drives, or laptop hard drives.

Answer 6

Media Encryption Software

Question 7

Portable USB drives that embed encryption algorithms within the hard drive, thus eliminating the need to install any encryption software.

Answer 7

Self-Encrypting USB Drives

Question 8

An assessment of quality based on internal standards, processes, & procedures established to control & monitor quality.

Answer 8

Quality Control (QC)

Question 9

Assessment of quality based on standards external to the process involves reviewing of the activities & quality control processes to ensure final products meet predetermined standards of quality.

Answer 9

Quality Assurance (QA)

Question 10

Removal of sensitive data from a system or storage device with the intent that the data cannot be reconstructed by any known technique.

Answer 10

Purging

Question 11

The U.S. Gov repository of publicly known available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems & applications.

Answer 11

National Checklist Program

Question 12

Process of determining the impact of the loss of confidentiality, integrity, or availability of the information to an organization.

Answer 12

Categorization

Question 13

Entails analyzing the data that the organization retains, determining its importance & value, & then assigning it to a category.

Answer 13

Data Classification

Question 14

Ensures the important datasets are developed, maintained, & accessible within their defined specifications.

Answer 14

Data Custodians

Question 15

Objects, features, or items that are collected, automated, or affected by activities or the functions of organizations.

Answer 15

Data Standards

Question 16

Set of CyberSecurity activities, desired outcomes, & applicable references that are common across critical infrastructure sectors.

Answer 16

Framework Core

Question 17

Provide context on how an organization views cybersecurity risk & the processes in place to manage that risk.

Answer 17

Framework Implementation Tiers

Question 18

Represents the outcomes based on business needs that an organization has selected from the Framework Categories & Sub-Categories.

Answer 18

Framework Profile

Question 19

Focuses on providing measurements & standards to protect information systems against threats to the confidentiality of information, integrity of information and processes, & availability of information & services in order to build trust & confidence

Answer 19

NIST Computer Security Division

Question 20

The removal of sensitive data from storage devices in such a way that there is assurance that the data may not be reconstructed using normal system functions or software file/data recovery utilities.

Answer 20

Clearing

Question 21

Critical Point where a material’s intrinsic magnetic alignment changes direction.

Answer 21

Curie Temperature