CISSP-Security and Risk Management-Domain 1

Question 1

What does SPOF stand for?

Answer 1

Single Point Of Failure

Question 2

What does the acronym SOX stand for?

Answer 2

Sarbanes-Oxley Act of 2002

Question 3

What is Due Care?

Answer 3

Due Care is the care a reasonable person would exercise under given circumstances.

Question 4

What is CSMA/CA

Answer 4

Carrier Sense Multiple Access with Collision Avoidance

Uses acknowledgements, if no acknowledgement, sends information again.

Question 5

Definition of Security Analyst

Answer 5

Works at the high level of security, helping develop policies and standards.

Question 6

Definition of Data Owner

Answer 6

Usually a member of management who is ultimately responsible for the protection and use of a specific subset of information.

Question 7

ISO/IEC 27799 is for?

Answer 7

Health Informatics - Information Security Management in Health

Question 8

ISO/IEC 27004 is for?

Answer 8

Guideline for information security management measurement and metrics framework

Question 9

What Protocol uses Port 80?

Answer 9

HTTP

Question 10

Describe ISO 31000 - Risk Management

Answer 10

ISO 31000 is a family of standards relating to risk management codified by the International Organization for Ssandardization.

Question 11

What does MTD stand for?

Answer 11

Maximum Tolerable Downtime

Question 12

What are the 8 CISSP domains?

Answer 12

Security and Risk Management
Asset Security
Security Engineering
Communications and Network Security
Identity and Access Management
Security Assessment and Testing
Security Operations
Software Development Security

Question 13

What are the OSI layers?

Answer 13

Physical
Data
Network
Transport
Session
Presentation
Application

Question 14

LANs, WANs, MANs, GANs, PANs

Answer 14

Local Area Network
Wide Area Network
Metropolitan Area Network
Global Area Network
Personal Area Network

Question 15

What Protocol uses Port 110?

Answer 15

POPv3

Question 16

Definition of Data Custodian

Answer 16

Responsible for maintaining and protecting the data.

Question 17

What is COBIT?

Answer 17

Set of control objectives for IT management.

Control OBectives for Information and related Technology

Question 18

What does the acronym ISMS stand for?

Answer 18

Information Security Management System

Question 19

What is Due Dilligence?

Answer 19

Due Diligence is a preemptive measure made to avoid harm to other persons or their property.

Question 20

What layer is IP on?

Answer 20

Layer 3

Question 21

What Protocol uses Port 53?

Answer 21

DNS UDP and TCP

Question 22

What does BIA stand for?

Answer 22

Business Impact Analysis

Question 23

Definition of a Control

Answer 23

A Safeguard that is put in place to reduce a risk, also called a countermeasure.

Question 24

What does the acronym FMEA stand for?

Answer 24

Failure Mode and Effect Analysis

Question 25

What Protocol uses Port 443?

Answer 25

HTTPS

Question 26

What Protocol uses Port 143?

Answer 26

IMAP

Question 27

ISO/IEC 27002 is for?

Answer 27

Code of practice for information security management

Question 28

What is Fullduplex

Answer 28

Sends and receives communications simultaneously

Question 29

What is ARP

Answer 29

Address Resolution Protocol

Used to translate layer 2 MAC addresses to layer 3 IP Addresses. Used to find the the MAC address

Question 30

Analog vs Digital definition

Answer 30

Analog communications are a continuous wave of information. Digital communications are on and off (true and fale, 1’s and 0’s)

Question 31

What is the Delphi Technique

Answer 31

A group decision method used to ensure that each member gives an honest opinion of what he or she thinks the result of a particular threat will be.

Question 32

What does the acronym MODAF stand for?

Answer 32

British Ministry Of Defense Architecture Framework

Question 33

For door security, fail-secure defaults to?

Unlocked or Locked

Answer 33

Locked

Question 34

What is SOMAP?

Answer 34

SOMAP is a Swiss nonprofit organization whose goal is to run an open information security management project and maintain free and open tools and document under the GNU license

Question 35

What layer is TCP and UDP on?

Answer 35

Layer 4

Question 36

What is RARP

Answer 36

Reverse Address Resolution Protocol

Used to translate layer 3 IP addresses to layer 2 MAC addresses. Used to find the IP Address

Question 37

What is the difference between tangible and intangible assets?

Answer 37

Tangible assets have a physical presence.

Intangible assets do not have a physical presence.

Question 38

What is CSMA/CD

Answer 38

Carrier Sense Multiple Access with Collision Detection

Waits until the network is idle before transmitting

Question 39

Definition of Vulnerability

Answer 39

A lack of a countermeasure or weakness in a countermeasure that is in place.

Question 40

What is the definition of Half-duplex

Answer 40

Sends and receives communication, one way at a time (not simultaneously)

Question 41

Circuit Switch Network vs Packet Switch Network

Answer 41

Circuit Switch Networks holds the dedicated circuit up until the communication is over. Packet switch networks break communications down on packets, and send over many circuits.

Question 42

What equation do you use to get Single Loss Exposure?

Answer 42

Asset Value x Exposure Factor (EF)

Question 43

What are the three types of Network Address Translation

Answer 43

Static NAT: one to one
Pool NAT: Reserved and assigned as needed.
Port Address Translation: one to many private IP Addresses, uses port numbers

Question 44

Single Loss Exposure (SLE) x Annualized Rate of Occurrence = ?

Answer 44

Annual Loss Expectancy?

Question 45

What does RPO stand for?

Answer 45

Recovery Point Objectives

Question 46

What is RFC 1918?

Answer 46

Used for internet traffic that does not route across the Internet. Private Email Addresses.

10. 0.0.0/8
11. 16.0.0/12
12. 168.0.0/16

Question 47

What does the acronym OCTAVE stand for?

Answer 47

Operationally Critical Threat, Asset, and Vulnerability Evaluation.

Question 48

Example of Protocol Data Units (PDUs) encapsulation

Answer 48

Data, Segments, Packets, Frames, Bits
Bits are Layer One
Frames are Layer Two
Packets are Layer Three
Segments and Data are Layer Four

Question 49

What is SABSA?

Answer 49

Model and Methodology for development of information security enterprise architectures.

Question 50

ISO/IEC 27006 is for?

Answer 50

Guidance for bodies providing audit and certification of information security management systems

Question 51

What are the 3 types of controls

Answer 51

Administrative
Physical
Logical/Technical

Question 52

For door security, fail-secure means?

Answer 52

To default the locking mechanism during a failure in a way to keep information secure.

Question 53

Baseband Networks vs Broadband Networks

Answer 53

Baseband networks have one Channel (ethernet). Broadband networks have multiple channels and can send multiple signals at a time (cable TV)

Question 54

ISO/IEC 27000 Series was formally

Answer 54

British Standard 7799 (BS7799)

Question 55

What Protocol uses Port 21?

Answer 55

FTP Control

Question 56

Describe NIST Risk Management Framework

Answer 56

The NIST Risk Management Framework is a methodology for implementing risk management at the information systems tier.

Question 57

What Protocol uses Port 25?

Answer 57

SMTP

Question 58

What are the three functional types of policies?

Answer 58

Regulatory
Advisory
Informative

Question 59

What does the acronym FRAP stand for?

Answer 59

Facilitated Risk Analysis Process

Question 60

ISO/IEC 27005 is for?

Answer 60

Guideline for information security risk management

Question 61

Definition of an Enterprise Security Architecture

Answer 61

A subset of an enterprise architecture and defines the information security strategy that consists of layers of solutions, processes, and procedures and the way they are linked across an enterprise strategically, tactically, and operationally.

Question 62

What is Six Sigma?

Answer 62

Business Management strategy that can be used to carry out process improvement

Question 63

What equation do you use to get Annual Loss Expectancy?

Answer 63

Single Loss Exposure (SLE) x Annualized Rate of Occurrence

Question 64

What is CMMI?

Answer 64

Organizational development for process improvement.

Capability Maturity Model Integration.

Question 65

What does RTO stand for?

Answer 65

Recovery Time Objective

Question 66

What is COSO?

Answer 66

Set of internal corporate controls to help reduce the risk of financial fraud.
Committee of Sponsoring Organizations of the Treadway Comission

Question 67

What are COBIT’s four domain’s?

Answer 67

Plan and Organize
Acquire and Implement
Deliver and Support
Monitor and Evaluate

Question 68

What are the 4 main goals of a Risk Anlaysis

Answer 68

Identify assets and their value to the organization.
Identify vulnerabilities and threats.
Quantify the probability and business impact of those potential threats.
Provide and economic balance between the impact of the threat and the cost of the countermeasure.

Question 69

What Protocol uses Port 23?

Answer 69

Telnet

Question 70

For door security, fail-safe defaults to?

Unlocked or Locked

Answer 70

Unlocked

Question 71

The SOX Act is based upon what framework model?

Answer 71

COSO

Question 72

Definition of an Exposure

Answer 72

An instance of being exposed to losses.

Question 73

Describe the Facilitated Risk Analysis Process (FRAP).

Answer 73

A qualitative methodology to focus only on the systems that need assessing to reduce cost and time obligations of the risk assessment. It is used to analyze one system, application or business process at a time. Does not use exploitation values such as annual loss expectancy. Experience of the Risk Assessors are used to determine the criticality of risks. Very narrow scope.

Question 74

What is the difference between qualitative and quantitative assessments?

Answer 74

A qualitative assessment uses descriptive results.

A quantitative assessment uses measurable results.

Question 75

A Fault Tree Analysis identifies failures that take place within more complex environments and systems, vs the Failure Mode and Effect Analysis (FMEA).
True or False

Answer 75

TRUE

Question 76

Describe the risk analysis process of Operationally Critical Threat, Asset, and Vulnerability Evaluation (OCTAVE).

Answer 76

People inside the organization have the power to address risks, by going through rounds of facilitated workshops. Very wide scope. Octave assess all systems, applications, and business processes.

Question 77

What does the acronym SOMAP stand for?

Answer 77

Security Officers Management and Analysis Project

Question 78

ISO/IEC 27003 is for?

Answer 78

Guideline for ISMS implementation

Question 79

Threat x Vulnerability x Asset Value = ?

Answer 79

Total Risk

Question 80

What is the definition of Simplex

Answer 80

One way communication

Question 81

What Protocol uses Port 20?

Answer 81

FTP Data

Question 82

Definition of a Risk

Answer 82

The likelihood of a treat agent exploiting a vulnerability and the corresponding business impact.

Question 83

Describe Failure Mode and Effect Analysis (FMEA)

Answer 83

A method for determining functions, identifying functional failures, and assessing the causes of failure and their failure effects through a structured process.

Question 84

Describe Central Computing and Telecommunications Agency Risk Analysis and Management Method (CRAMM)

Answer 84

Developed by United Kingdom and tools sold by Sieman.
Works in three distinct stages:
Define Objectives
Assess Risks
Identify Countermeasures

Question 85

What does the acronym CMMI stand for?

Answer 85

Capability Maturity Model Integration

Question 86

(Threat x Vulnerability x Asset Value) x control gaps = ?

Answer 86

Residual Risk

Question 87

What does the acronym CRAMM stand for?

Answer 87

Central Computing and Telecommunications Agency Risk Analysis and Management Method.

Question 88

What Protocol uses Port 67 and 68?

Answer 88

DHCP Port 67 for servers and 68 for Clients

Question 89

Describe Risk IT Framework - ISACA

Answer 89

The Risk IT Framework fills the gap between generic risk management frameworks and detailed IT risk management frameworks.

Question 90

The byproduct of likelihood and impact of an exploit is?

Likelihood x impact = ?

Answer 90

Risk

Question 91

Definition of Threat

Answer 91

Any potential danger that is associated with the exploitation of a vulnerability.

Question 92

What Protocol uses Port 69?

Answer 92

TFTP

Question 93

What does the acronym OSI stand for?

Answer 93

Open Systems Interconnection

Question 94

What does the acronym COSO stand for?

Answer 94

Committee of Sponsoring Organizations

Question 95

What Protocol uses Port 22?

Answer 95

SSH

Question 96

Describe Enterprise Risk Management - Integrated Framework – COSO

Answer 96

Enterprise Risks Management - Integrated Framework defines essential Enterprise Risk Management (ERM) components, discusses key ERM principles and concepts, suggests a common ERM language, and provides clear direction and guidance for enterprise risk management.

Question 97

The ISO/IEC 27000 Series is used for?

Answer 97

Security Program Development

Question 98

What are the two types of errors QA/QC mechanisms prevent?

Answer 98

Errors of Commission, which include those caused by data entry.
Errors of Omission, which include insufficient documentation of legitimate data.

Question 99

What are the 7 functions of controls

Answer 99

Directive
Deterrent
Preventive
Detective
Corrective
Recovery
Compensating

Question 100

Asset Value x Exposure Factor (EF) = ?

Answer 100

Single Loss Exposure (SLE)

Question 101

What is the difference between strategic and tactical planning?

Answer 101

Strategic planning is aligning strategic business and information technology goals.
Tactical planning is providing the broad initiatives to support and achieve the goals specified in the strategic plan.

Question 102

What does the acronym CISSP stand for?

Answer 102

Certified Information Systems Security Professional

Question 103

Definition of System Owner

Answer 103

Responsible for one or more systems, each of which may hold and process data owned by different data owners.

Question 104

What does the acronym ITIL stand for?

Answer 104

Information Technology Infrastructure Library

Question 105

ISO/IEC 27001 is for?

Answer 105

ISMS Requirements

Question 106

What is ITIL?

Answer 106

Processes to allow for IT Service management.

Question 107

What are the four basic ways risk can be handled?

Answer 107

Transfer
Avoidance
Mitigate
Accept

Question 108

Total Risk - Countermeasures = ?

Answer 108

Residual Risk

Question 109

Threat Agent

Answer 109

An entity that can exploit a vulnerability

Question 110

What are the 8 interrelated components of Enterprise Risk Management?

Answer 110

Internal Environment
Objective Setting
Event Identification
Risk Assessment
Risk Response
Control Activities
Information and Communication
Monitoring