Compliance and Operational Security Flashcards

1
Q

EF

A

Exposure Factor

% of loss experienced by a realized risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

SLE (formula)

A

Single Loss Expectancy

AV x EF

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

ARO

A

Annualized Rate of Occurrence

Frequency of occurrence per year

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

ALE (formula)

A

Annualized Loss Expectancy

Max amount that should be spent on the countermeasure

SLE x ARO

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

AV

A

Asset Value

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Risk Avoidance

A

If it’s too expensive or risky don’t do it.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Risk Transference

A

Giving risk to someone else to do.

Eg. Contracting electricity out.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Risk Acceptance

A

Cost of countermeasure outweighs the loss.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Change Management

A

Documenting CHANGES in the system.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Steps to Incident Response (6)

A
Preparation
Identification (Detection)
Containment
Eradication
Recovery
Follow-up/Document
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

BCP

A

Business Continuity Plan

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

DRP

A

Disaster Recovery Plan

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

BIA (5 steps)

A

Business Impact Analysis

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Full Backup

A

Backs up everything

Changes archive bit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Incremental Backup

A

Backs up things changed since last backup of any kind.

Changes archive bit
Fastest

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Differential Backup

A

Backs up things changed since last FULL backup.

Does NOT change archive bit

17
Q

Copy

A

Backs up everything

Does NOT change archive bit

18
Q

Grandfather, Father, Son

A

Monthly, Weekly, Daily

19
Q

RTO

A

Recovery Time Objective

20
Q

RAID 0

A

Highest Performance
No Redundancy

Info distributed across drives

21
Q

RAID 3

A

Dedicated Parity Drive

Info distributed across drives, dedicated parity on a different drive

22
Q

RAID 5

A

Distributed Parity Drive

Info distributed with parity across drives

23
Q

RAID 1

A

Mirroring: Exact copy

24
Q

RAID 0+1

A

Original and Copy of distributed data

25
Q

SLA

A

Service Level Agreement

26
Q

MTBF

A

Mean Time Between Failures

How often does it fail?

27
Q

MTTR

A

Mean Time to Repair

How quick is it to fix?

28
Q

MTD

A

Maximum Tolerable Downtime

29
Q

RPO

A

Recovery Point Objectives

Point to which we will restore

Eg. Restore to Wednesday’s backup

30
Q

Fuzzing

A

Computer version of Black Box.

31
Q

DLP

A

Data Loss Prevention

32
Q

TPM

A

Trusted Platform Module

Microprocessor that stores keys, passwords and digital certificates

33
Q

HSM

A

Hardware Security Module