chapter 2 part 3

Question 1

what is technical security architecture?

Answer 1

a plan that has all countermeasures including: firewalls, hardened hosts, intrusion detection, etc.

Question 2

how is legacy security systems best dealt with in a company by IT?

Answer 2

it is not replaced all at once due to cost so instead new security systems are combined with old systems to close as many gaps in the systems security as possible.

Question 3

defense in dept vs weakest links?

Answer 3

defense in depth: multiple independent countermeasures in series while… weakest links are single countermeasures that when breached allow attacker full access.

Question 4

what are Central Security Management Consoles used for?

Answer 4

.provides control of all security implemented on all corporate devices (updates, etc from one location). used to counter an attack on a network and is used by the security department. often has to be carefully protected because it is a big vulnerability to the network if broken into.

Question 5

inter-organizational systems?

Answer 5

two or more companies link networks together, neither can enforce or learn of other security practices.

Question 6

centralized security management allows for what and why is this attractive?

Answer 6

allows all devices to be secured and updated remotely from one or a few central devices. this makes it easier to enforce security on the network because you don’t have to rely on several employees.

Question 7

what is corporate security policy?

Answer 7

commitment of firm to strong security

Question 8

major security policy is what>?

Answer 8

email, hiring, termination etc. strong policies when it comes to what employees should do.

Question 9

PII ?

Answer 9

personally identifiable info.

Question 10

personally identifiable info policies.?

Answer 10

specific policies for encryption, access controls.

Question 11

AUP?

Answer 11

Acceptable use policy: how employees are to use devices and not to use for personal reasons.

Question 12

policy teams consist of what people?

Answer 12

not just IT or security people as more ppl = more/broader scope of coverage and ideas.

Question 13

implementation guidance?

Answer 13

limits discretion of implementer to simplify implementations. acts as a guide

Question 14

baselines?

Answer 14

tells what should be achieved without telling how

Question 15

promulgation?

Answer 15

the process of making users/employees aware of new security policies

Question 16

security metrics

Answer 16

measurable indicators of security success/failure

Question 17

fraud and abuse triangle?

Answer 17

how an employee becomes a criminal: opportunity, pressure (through job to hide poor performance, often found when expectations are too high.) and finally -Rationalization: person convinces themselves that they are a good person

Question 18

sanctions?

Answer 18

person is disciplined

Question 19

security governmental frameworks / guidelines (3 organizations) ?

Answer 19

COSCO
Cobit
ISO/IEC 27000 family

Question 20

Control framework objectives: ?

Answer 20

strategic, operations, reporting and compliance

Question 21

COBIT?

Answer 21

control objectives for IT : plan, organize, monitor and support (main auditing firm for I.T.)

Question 22

ISO/IEC 27000 family?

Answer 22

certification by 3rd party. provides 11 broad areas of security including: security policy, asset management, IT security incident management, etc.