Compliance and Operational Security Flashcards

1
Q

EF

A

Exposure Factor

% of loss experienced by a realized risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

SLE (formula)

A

Single Loss Expectancy

AV x EF

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

ARO

A

Annualized Rate of Occurrence

Frequency of occurrence per year

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

ALE (formula)

A

Annualized Loss Expectancy

Max amount that should be spent on the countermeasure

SLE x ARO

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

AV

A

Asset Value

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Risk Avoidance

A

If it’s too expensive or risky don’t do it.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Risk Transference

A

Giving risk to someone else to do.

Eg. Contracting electricity out.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Risk Acceptance

A

Cost of countermeasure outweighs the loss.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Change Management

A

Documenting CHANGES in the system.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Steps to Incident Response (6)

A
Preparation
Identification (Detection)
Containment
Eradication
Recovery
Follow-up/Document
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

BCP

A

Business Continuity Plan

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

DRP

A

Disaster Recovery Plan

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

BIA (5 steps)

A

Business Impact Analysis

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Full Backup

A

Backs up everything

Changes archive bit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Incremental Backup

A

Backs up things changed since last backup of any kind.

Changes archive bit
Fastest

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Differential Backup

A

Backs up things changed since last FULL backup.

Does NOT change archive bit

17
Q

Copy

A

Backs up everything

Does NOT change archive bit

18
Q

Grandfather, Father, Son

A

Monthly, Weekly, Daily

19
Q

RTO

A

Recovery Time Objective

20
Q

RAID 0

A

Highest Performance
No Redundancy

Info distributed across drives

21
Q

RAID 3

A

Dedicated Parity Drive

Info distributed across drives, dedicated parity on a different drive

22
Q

RAID 5

A

Distributed Parity Drive

Info distributed with parity across drives

23
Q

RAID 1

A

Mirroring: Exact copy

24
Q

RAID 0+1

A

Original and Copy of distributed data

25
SLA
Service Level Agreement
26
MTBF
Mean Time Between Failures How often does it fail?
27
MTTR
Mean Time to Repair How quick is it to fix?
28
MTD
Maximum Tolerable Downtime
29
RPO
Recovery Point Objectives Point to which we will restore Eg. Restore to Wednesday's backup
30
Fuzzing
Computer version of Black Box.
31
DLP
Data Loss Prevention
32
TPM
Trusted Platform Module Microprocessor that stores keys, passwords and digital certificates
33
HSM
Hardware Security Module