Chapter 18: Managing Risk

Question 1

Risk Management

Answer 1

The process of how organizations deal with the bad things that take place on their networks.

Question 2

Data Breach

Answer 2

Any form of attack where secured data is taken or destroyed.

Question 3

Acceptable Use Policy

Answer 3

Defines what is and what is not acceptable to do on an organization’s computers

Question 4

Network Access Policy

Answer 4

Defines who may access the network, how they may access the network, and what they access.

Question 5

Change Management

Answer 5

The process of creating change in your infrastructure in an organized, controlled, safe way

Question 6

Strategic-Level Changes

Answer 6

Typically initiated by management and major in scope.

Question 7

Infrastructure-Level Changes

Answer 7

Typically initiated by a department making a request to the change management team

Question 8

A good change request will include:

Answer 8

1) Type of change
2) Configuration Procedures
3) Rollback Process
4) Potential Impact
5) Notification

Question 9

Patch Management

Answer 9

Regularly updating operating systems and applications to avoid security threats.

Question 10

When do we generally apply driver updates?

Answer 10

To fix an incompatibility, incorporate new features, or repair a bug.

Question 11

Vulnerability Patch

Answer 11

A patch used to quickly respond to a major vulnerability.

Question 12

It’s important that users understand:

Answer 12

1) Security Policies
2) Passwords
3) System and Workplace Security
4) Social Engineering
5) Malware

Question 13

Single Point of Failure

Answer 13

One system that, if it fails, will bring down an entire process, workflow or organization.

Question 14

High Availability (HA)

Answer 14

The ability for a system to keep working without interruption or downtime.

Question 15

Failover

Answer 15

The ability for backup systems to detect when a master has failed and the to take over.

Question 16

Virtual IP

Answer 16

A single IP address shared by multiple systems.

Question 17

Virtual Router Redundancy Protocol (VRRP) and Hot Standby Router Protocol (HSRP)

Answer 17

Take multiple routers and gang them together into a single virtual router with a single virtual IP that clients use as a default gateway.

Question 18

Service Level Agreement (SLA)

Answer 18

A document between a customer and a service provider that defines the scope, quality, and terms of the service to be provided.

Question 19

What does a typical SLA contain?

Answer 19

1) Definition of the service provided
2) Equipment provided
3) Technical Support that will be given

Question 20

Memorandum of Understanding (MOU)

Answer 20

A document that defines an agreement between two parties in situations where a legal contract wouldn’t be appropriate.
Defines the duties the parties commit to perform for each other.

Question 21

Multi-Source Agreement

Answer 21

A document that details the interoperability of various manufacturers’ components.

Question 22

Statement of Work (SOW)

Answer 22

Defines the services and products the vendor agrees to supply and the time frame in which to supply them.

Question 23

Vulnerability Scanner

Answer 23

Inspects potential vulnerabilities and creates a report.

Question 24

Nmap

Answer 24

A port scanner, which queries individual nodes, looking for open or vulnerable ports.

Question 25

Nessus

Answer 25

Popular and extremely comprehensive vulnerability testing tool.

Question 26

Penetration Testing

Answer 26

- A purposeful attack by a hacker to see if it can be penetrated. - Aircrack-ng and Metasploit

Question 27

Contingency Plans

Answer 27

How to limit damage and recover quickly from incidents.

Question 28

Incident Response Level

Answer 28

Incidents that can be stopped, contained, and remediated without outside resources.

Question 29

Disaster Recovery Level

Answer 29

An incident that can no longer be contained, causing significant damage or danger to the immediate infrastructure.

Question 30

Business Continuity Level

Answer 30

If the disaster requires actions offsite from the primary infrastructure.

Question 31

Recovery Point Objective (RPO)

Answer 31

The state of the backup when the data is recovered.

Question 32

Recovery Time Objective (RTO)

Answer 32

The amount of time needed to restore full functionality

Question 33

Cold Site

Answer 33

A location that consists of everything a business needs except computers.

Question 34

Warm Site

Answer 34

Like a cold site but with computers loaded with software and functioning servers. However, lacks current data.

Question 35

Hot Site

Answer 35

Nearly a complete duplicate of the primary site.

Question 36

Computer Forensics

Answer 36

The science of gathering, preserving, and presenting evidence stored on a computer or any form of digital media that is presentable in a court of law.

Question 37

4 Steps to Computer Forensics

Answer 37

1) Secure the Area 2) Document the Scene 3) Collect Evidence 4) Interface with Authorities

Question 38

Electronic Discovery

Answer 38

The process of requesting and providing electronic and stored data and evidence in a legal way.

Question 39

Electrical Safety topics

Answer 39

1) Inherent danger of electricity 2) Grounding 3) Static

Question 40

Ground Loop

Answer 40

A voltage differential that exists between two different grounding points, causing data to become unreadable, and also exposes equipment to more risk from power surges.

Question 41

Electrostatic Discharge (ESD)

Answer 41

The passage of a static electrical charge from one item to another. It can damage or destroy computing equipment.

Question 42

What is the ideal temperature and humidity for equipment?

Answer 42

68 degrees F, 50% humidity

Question 43

Material Safety Data Sheet (MSDS)

Answer 43

Document that describes the safe handling procedures for any potentially hazardous, toxic, or unsafe material.

Question 44

Emergency Procedures 5 Essential Aspects

Answer 44

1) Building Layout 2) Fire Escape Plan 3) Safety/emergency exits 4) Fail open/Fail close 5) Emergency Alert System