Asset Security Domain

Question 1

Portable USB drives that embed encryption algorithms within the hard drive, thus eliminating the need to install any encryption software

Answer 1

Self-Encrypting USB Drives

Question 2

An assessment of quality based on standards external to the process and involves reviewing of the activities and quality control processes to ensure final products meet predetermined standards of quality

Answer 2

Quality Assurance (QA)

Question 3

An assessment of quality based on internal standards, processes, and procedures established to control and monitor quality

Answer 3

Quality Control (QC)

Question 4

The removal of sensitive data from a system or storage device with the intent that the data cannot be reconstructed by an known technique

Answer 4

Purging

Question 5

Focuses on providing measurements and standards to protect information systems against threats to the confidentiality of information, integrity of information and processes, and availability of information and services in order to build trust and confidence

Answer 5

NIST Computer Systems Division (CSD)

Question 6

The US Government repository of publicly available security checklists (or benchmarks) that provide detailed low-level guidance on setting the security configuration of operating systems and applications

Answer 6

The National Checklist Program (NCP)

Question 7

Software that is used to encrypt otherwise unprotected storage media such as CDs, DVDs, USB drives, or laptop hard drives

Answer 7

Media Encryption Software

Question 8

ITAM is a much broader discipline, adding several dimensions of management and involving a much broader base of stakeholders

Answer 8

IT Asset Management

Question 9

Allows greater flexibility in applying encryption to specific file (s)

Answer 9

File Encryption Software

Question 10

The residual physical representation of data that has been in some way erased

Answer 10

Data Remanence

Question 11

The methodology that identifies the path to meet user requirements

Answer 11

Data Modeling

Question 12

Ensure important datasets are developed, maintained and accessible within their defined specifications

Answer 12

Data Custodians

Question 13

The removal of sensitive data from storage devices in such a way that there is assurance that the data may not be reconstructed using normal system functions or software file/data recovery utilities

Answer 13

Clearing

Question 14

The offical series of publications relating to standards and guidelines adopted

Answer 14

Federal Information Processing Standards (FIPS)

Question 15

The critical point where a material’s intrinsic magnetic alignment changes direction

Answer 15

Curie Temperature

Question 16

Represents the outcomes based on business needs that an organization has selected from the Framework Catergories and Subcategories

Answer 16

Framework Profile

Question 17

Provide context on how an organization views cybersecurity risk and the processes in place to manage that risk

Answer 17

Framework Implementation Tiers

Question 18

A set of cybersecurity activities, desired outcomes, and applicable references that are common across critical infrastructure sectors

Answer 18

Framework Core

Question 19

Objects, features, or items that are collected, automated or affected by activities or the functions of organizations

Answer 19

Data Standards

Question 20

The process of determining the impact of the loss of confidentiality, integrity, or availability of the information to an organization

Answer 20

Categorization

Question 21

Entails analyzing the data that the organization retains, determining its importance and value, and then assigning it to a category

Answer 21

Data Classification