Chapter 9

Question 1

API

Answer 1

Application Programming Interface

Question 2

BC

Answer 2

Business Continuity ??

Question 3

CIDR

Answer 3

Classless Inter Domain Routing

Question 4

CIS

Answer 4

Center for Internet Security

Question 5

DLP

Answer 5

Data Loss Prevention

Question 6

DR

Answer 6

Disaster Recovery

Question 7

DRM

Answer 7

Digital Rights Management

Question 8

GDPR

Answer 8

General Data Protection Regulation

Question 9

IP

Answer 9

Internet Protocol

Question 10

SSL

Answer 10

Secure Socket Layer

Question 11

TLS

Answer 11

Transport Layer Security

Question 12

What is Enterprise Networking?

Question 13

What is the role of an enterprise security architect?

Question 14

Why are network diagrams important for cybersecurity professionals?

Question 15

Why is baselining important?

Question 16

Identify IPv4 addresses as: Class A, Class B, Class C, Class D, Class E, APIPA

Question 17

Broadcast, Loop and Private

Answer 17

Loopback 127.x.x.x, Broadcast 255.x.x.x, APIPA 169.254.x.x

Question 18

What is the purpose of a subnet mask?

Answer 18

Its used to divide an ip address into two parts

Question 19

What is CIDR?

Question 20

What is the purpose of Business Continuity?

Question 21

Whats is the purpose of Disaster Recovery?

Question 22

Cold sites, Warm Sites and Hot Sites?

Answer 22

Cold: has the basic environmental controls necessary to operate but few of the computing components necessary for processing. Warm: Partially configured usually having the peripherals and software but perhaps not the more expensive main processing computer. Hot: Fully configured environment similar to the normal operating environment that can be operational immediately.

Question 23

What is data sovereignity?

Question 24

What is purpose of Standard Naming Conventions?

Question 25

Why do enterprises adopt standard naming conventions?

Question 26

Why are benchmarks such as those provided by CIS important for cybersecurity professionals?

Question 27

What is DRM?

Question 28

How does TLS/SSL provide security?

Question 29

How can a security professional protect data at rest?

Question 30

Why don’t all organizations use encryption to protect data at rest? Do not list cost as an answer.

Question 31

How can a security professional protect data in transit?

Question 32

How can a security professional protect data in use (Processing)

Question 33

How do the following help provide data security?

Question 34

Baselining

Question 35

Data Masking

Answer 35

Data masking is a way to create a fake, but a realistic version of your organizational data.

Question 36

DLP

Answer 36

The practice of detecting and preventing data breaches, exfiltration, or unwanted destruction of sensitive data.

Question 37

DNS Sinkholes

Answer 37

DNS sinkhole or black hole DNS is used to spoof DNS servers to prevent resolving hostnames of specified URLs.

Question 38

Encryption

Answer 38

Encrypted DNS traffic is a type of DNS traffic secured in a way that no third party can intervene during a DNS resolution

Question 39

Fake Telemetry

Answer 39

Fake Network Traffic

Question 40

Hashing

Answer 40

Hashing is the process of transforming any given key or a string of characters into another value.

Question 41

Honeyfiles

Answer 41

Fake file

Question 42

Honeynets

Answer 42

Fake Network

Question 43

Honeypots

Question 44

Tokenization