Chapter 1, Today's Cyber Security Analyst

Question 1

If security controls are focused on protecting data, privacy controls are focused on what?

Answer 1

privacy controls focus on the ways a company can use and share information it has collected about individuals.

Question 2

GAPP are strong best practices for implementing a ______ program.

Answer 2

privacy program

Question 3

Which GAPP principle does the following align to? “The entity monitors compliance with its privacy policies and procedures and has procedures to address privacy-related complaints and disputes.”

a. Monitoring and enforcement
b. Use, retention, and disposal.
c. Choice and consent.

Answer 3

a. Monitoring and enforcement

Question 4

Which GAPP principle does the following align to? “The entity protects personal information against unauthorized access (both physical and logical).”

a. Access.
b. Collection.
c. Security for privacy.

Answer 4

C. Security for privacy.

Question 5

Which GAPP principle does the following align to?
“The entity describes the choices available to the individual and obtains implicit or explicit consent with respect to the collection, use, and disclosure of personal information. “

Answer 5

Choice and Consent

Question 6

Which GAPP principle does the following align to? “the entity limits the use of personal information to the purposes identified in the notice and for which the individual has provided implicit or explicit consent. The entity retains personal information for only as long as necessary…”

Answer 6

Use, retention, and disposal.

Question 7

What is the definition of a Threat?

Answer 7

is any circumstance or event that has the potential

to compromise confidentiality, integrity, or availability.

Question 8

Risk is the possibility or likelihood of…

Answer 8

threat exploiting a vulnerability

resulting in a loss

Question 9

The combination of ______ x _____ equals the Risk

Answer 9

Threat x Vulnerability

Question 10

Which NIST document guides for conducting risk assessments?

Answer 10

(SP) 800-30

Question 11

In the NIST SP 800-30, what are the first two tasks in Step 2 of Conducting the risk assessment?

Answer 11

1- Identify Threats

2 - Identify vulnerabilities

Question 12

In the NIST SP 800-30, what are the 3-4 and 5 tasks in Step 2 of Conducting the risk assessment?

Answer 12

3 - Determine likelihood of occurrence
4 - determine magnitude of impact
5 - determine risk

Question 13

What kind of environment would you only use Mandatory Access Control approach to security? Why? Which operating system can enforce it?

Answer 13

In highly sensitive applications. This is because it is tricky to manage.
SELinux can enforce it

Question 14

Which NIST document guides on conducting pen tets?

Answer 14

800-115

Question 15

What are the 3 phases of the pen test planning stage?

Answer 15

Timing
Scope
Authorization

Question 16

In war games, which team is responsible for securing the targeted environment?

Answer 16

Blue team

Question 17

What does the white team do in cyber security war games?

Answer 17

coordinates the exercise, arbitrates and maintains the technical environment

Question 18

What is decomposition?

Answer 18

Decomposition is a philospohy of reverse engineering where engineers start with the finished product and work their way back to its component parts.

Question 19

What uses code detonation and what is it?

Answer 19

After isolating application code, a sandbox will use code detonation which stops the code running on the network after the sandbox has determined that the application is behaving strangely

Question 20

Why are compiled languages hard to reverse engineer?

Answer 20

Because they’re in binary format for the machine to be able to read and not a human. De compiling the binary back to the source code is usually unreliable.