Chapter 6 - Things To Know Flashcards

1
Q

What are the securities?

A

Security Governance, Risk and Compliance (GRC) and data security comes under enterprise responsibility
Physical Security and Infrastructure Security comes under Cloud Provider Responsibility

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the methods used in securing the networking architecture and components?

A

Vulnerbility Assessment
Firewall
Honeypot
IDS/IPS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the methods to protect data in transit?

A

Encryption
Virtual Private Network
Strong Authentication

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the cloud service types?

A

PaaS
SaaS
laaS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the ways used for hardening the OS?

A
Removing unnecessary services and libraries
Closing unused ports
Installing antimalware agents 
Limiting administrator access
Ensuring event logging is enabled
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are the processes that facilitate the data access methods?

A

Customer Directly Administers Access
Provider Administers Access on behalf of the Customer
Third-Party Administers Access on behalf of the Customer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are the SOC report categories?

A

SOC 1
SOC 2
SOC 3

How well did you know this?
1
Not at all
2
3
4
5
Perfectly