Chapter 2

Question 1

What is a formal evaluation to ensure the effectiveness of the security mechanisms, the quality of the risk management processes, and produce a report of the relative strengths and weaknesses?

Answer 1

Security Control Assessment

Question 2

What assess the key indicators and activités of a mature, sustainable, and repeatable risk management process?

Answer 2

Risk Maturity Model

Question 3

What are the levels of the Risk Maturity Model in order ?

Answer 3

Ad hoc
Preliminary
Defined
Integrated
Optimized

Question 4

What are the six phases of the RMF?

Answer 4

Prepare
Categorize
Select
Implement
Assess
Authorize
Monitor

Question 5

What are the five functions of the CSF?

Answer 5

Identify
Protect
Detect
Respond
Recover

Question 6

What enterprise spam filter is used to filter spoofed messages?

Answer 6

DMARC

Question 7

What is the primary countermeasure against spam ?

Answer 7

Spam filter

Question 8

What attack captures and redirect traffic when a user mistypes the domain name or IP address of an resource ?

Answer 8

Typo Squatting

Question 9

What are the techniques that improves security awareness and training?

Answer 9

Change the target focus of the training

Change around topic orders or emphasis

User a variety of presentation methods

Use role playing

Question 10

What is a means to encourage compliance and engagement by integrating common elements of game play into other activities.

Answer 10

Gamification