Chapter 11 - Security Operations Flashcards

1
Q

What is the difference between ‘marking’ and ‘labelling’ in regards to data classification?

A

Marking is the digital classification of data

Labelling is a physical classification of data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

In an organization, which one of the below have the role in specifying how data is classified and the requirements around each data classification?

Management

Data Owners

Data Custodian

Administrator

User

A

Management define each data classification and what is required to protect each data classification

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Who is responsible for protecting data based on their classification, regularly monitoring the data and change classifications if required?

Management

Data Owners

Data Custodian

Administrator

User

A

Data Owners

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Data owners can delegate actions to who?

Management

Data Owners

Data Custodian

Administrator

User

A

Data custodian

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Who can grant/revoke access to data?

Management

Data Owners

Data Custodian

Administrator

User

A

Administrators

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are the three different states data can be?

A

Data at rest

Data in transit

Data in use

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What policy is required to categorize data based on their perceived value?

This policy will also outline methods on data protection.

A

Data Management Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is data archiving?

A

Data archiving is the practice of backing up data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is data retention?

A

Data retention dictates how long to maintain archived data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the degaussing process when removing data?

A

Degaussing is the use of a powerful magnet to remove data by magnetizing elements of the storage media.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is HIPAA?

A

Health Insurance Portability and Accountability (HIPAA) mandates the protection of health-related information in the US and protects them from being disclosed without the user’s consent.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is the Sarbanes-Oxley (SOX) mandate?

A

The SOX mandates the protection of data in regards to publicly held companies.

SOX requires high-level officials to validate financial data of their respected companies.

The aim of SOX is to prevent fraudulent activity.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is GDPR?

A

GDPR is an EU regulator requirement set out to protect the data of EU citizens.

GDPR prohibits the transfer of EU residents data outside of the EU.

Max fine for GDPR is 20m euros or 4% of global turnover.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are the three types of company assets?

A

Hardware

Software

Data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is certification and accreditation?

A

Certification and Accreditation is used to test, evaluate and approve systems for their intended purposes.

When a system is certified, an accrediting body provides formal declaration/accreditation.

Certification and Accreditation should be independent to one another and done by separate entities.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is involved in a typical asset lifecycle?

A
  1. Initiation
    - Identification of the need for an asset
  2. Development/Acquisition
    - The asset is developed or acquired
  3. Implementation/Installation
    - Asset is then deployed/configured for use
  4. Maintenance
    - Asset is maintained through this phase
  5. Destruction/Disposal
    - Removal of system and sanitization of data
17
Q

What is Data Definition Language (DDL)?

A

DDL are statements used to created structured databases such as keys, relationships etc.

18
Q

What is Data Manipulation Language (DML)?

A

DML is used to query/view data stored within databases

19
Q

What is an Online Transaction Processing database (OLTP)?

A

Transactional data are first stored in logs prior to making changes to the back-end database.

This requires good data normalization and a standardised common information model.

20
Q

What is an Online Analytical Processing database (OLAP)?

A

OLAP structures data within data warehouses into structured cubes for easier retrieval.

21
Q

What is Data Inference attack?

A

Data Inference attack is the unauthorized access to classified information by a malicious threat actor.

22
Q

What is Data Diddling attack?

A

Data diddling is the modification of data prior or during data entry into a database.

This is fraud type attack