Chapter 14 - Oversight and Operations

Question 1

What are the responsibilities of a SOC team?

Answer 1

-Proactive Monitoring
-Incident Response and Recovery
-Remediation Activities
-Compliance
-Coordination

Question 2

What is ML?

Answer 2

Machine Learning - ML is a subset of AI - It uses statistical techniques to give computer systems the ability to learn or progressively improve their performance using data rather than being explicitly programmed. An ML system can then create a refined algorithm for the next iteration

Question 3

What is Data Analytics?

Answer 3

Examines large data sets to draw conclusions - relies on human interaction to query data, identify trends, and test assumptions.

Question 4

What is Compliance?

Answer 4

Process of ensuring that an organization adheres to laws and regulations related to information security and user data privacy

Question 5

What is a Regulatory Agency?

Answer 5

An external governance body responsible for distribution and enforcing government directives

Question 6

What are Security Groups?

Answer 6

In cloud computing, an automated function, like a virtual firewall, that allows control over all inbound and outbound traffic to a particular cloud resource.

Question 7

What are Principles of good Governance?

Answer 7

Accountability, integrity, leadership, transparency, and stewardship

Question 8

What is External Compliance Monitoring?

Answer 8

Performed by a third party, they examine the protections set by the organization and create an external compliance report

Question 9

What is Verification of Truth and Authenticity?

Answer 9

The external compliance reports that server as an “Official Attestation” created by external compliance monitoring

Question 10

What are Procedures?

Answer 10

Detailed mandatory steps that a user needs to follow to comply with a policy

Question 11

What are Policies?

Answer 11

A set of management statements that defines an organization’s philosophy of how to safeguard its information

Question 12

What are Standards?

Answer 12

specifies the uniform uses of specific technologies or settings for secure configurations

Question 13

What is User Automation Provisioning?

Answer 13

Automatically grants and manages users’ access to the systems, applications and resources based on their positions

Question 14

What is Resource Automation Provisioning?

Question 15

What is SOAR?

Answer 15

Security Orchestration Automation R…. -

Question 16

What is the Controller?

Question 17

What is the Owner?

Answer 17

The person responsible for the information, determine the level of security needed for the data and delegates security duties as required

Question 18

What is Governance?

Answer 18

It is the structures, systems, and practices put in place to assign, oversee, and report.

Question 19

What are the challenges associated with AI in cybersecurity?

Answer 19

Malicious actor could try to alter the training data used by ML, attackers can use AI to develop mutating malware