Comprehensive guide

Question 1

Acronym

Answer 1

Definition

Question 2

AAA

Answer 2

Authentication

Question 3

ACL

Answer 3

Access Control List - A router has an ACL that allows only specific IP addresses to access certain network resources.

Question 4

AES

Answer 4

Advanced Encryption Standard - AES is used to encrypt sensitive data stored in cloud services.

Question 5

CIA

Answer 5

Confidentiality

Question 6

DLP

Answer 6

Data Loss Prevention - A DLP system detects and prevents the transfer of sensitive data outside the organization.

Question 7

IDS

Answer 7

Intrusion Detection System - An IDS monitors network traffic for suspicious activities and alerts administrators.

Question 8

IPS

Answer 8

Intrusion Prevention System - An IPS can block malicious traffic in real time

Question 9

MFA

Answer 9

Multi-Factor Authentication - A user logs into an account using a password and a one-time code sent to their phone.

Question 10

PKI

Answer 10

Public Key Infrastructure - PKI is used to issue digital certificates that validate user identities.

Question 11

VPN

Answer 11

Virtual Private Network - Employees use a VPN to securely connect to the company’s internal network from remote locations.

Question 12

SIEM

Answer 12

Security Information and Event Management - SIEM systems aggregate and analyze log data to detect security incidents.

Question 13

SSO

Answer 13

Single Sign-On - With SSO

Question 14

RADIUS

Answer 14

Remote Authentication Dial-In User Service - RADIUS is used to manage access for remote users connecting to a network.

Question 15

TACACS+

Answer 15

Terminal Access Controller Access-Control System Plus - TACACS+ provides centralized authentication for network devices.

Question 16

TLS

Answer 16

Transport Layer Security - TLS encrypts data transmitted over the internet

Question 17

SSL

Answer 17

Secure Sockets Layer - SSL certificates secure web traffic between a user’s browser and a web server.

Question 18

WAF

Answer 18

Web Application Firewall - A WAF protects web applications from common attacks like SQL injection.

Question 19

BYOD

Answer 19

Bring Your Own Device - A BYOD policy allows employees to use personal devices for work purposes.

Question 20

NIDS

Answer 20

Network Intrusion Detection System - NIDS monitors network traffic and alerts on suspicious behavior.

Question 21

NIPS

Answer 21

Network Intrusion Prevention System - NIPS actively blocks potentially harmful traffic on the network.

Question 22

SOC

Answer 22

Security Operations Center - A SOC monitors and analyzes security events in real-time to respond to incidents.

Question 23

FIM

Answer 23

File Integrity Monitoring - FIM detects unauthorized changes to files and alerts administrators.

Question 24

RPO

Answer 24

Recovery Point Objective - A business aims for an RPO of one hour

Question 25

RTO

Answer 25

Recovery Time Objective - The RTO defines how quickly a system should be restored after a failure.

Question 26

HIPS

Answer 26

Host Intrusion Prevention System - HIPS protects individual devices from attacks by monitoring system behavior.

Question 27

HIDS

Answer 27

Host Intrusion Detection System - HIDS checks a host for signs of malicious activity and reports them to the admin.

Question 28

GDPR

Answer 28

General Data Protection Regulation - GDPR requires organizations to protect personal data and privacy for EU citizens.

Question 29

CISO

Answer 29

Chief Information Security Officer - The CISO is responsible for developing and implementing the company’s information security strategy.

Question 30

CSIRT

Answer 30

Computer Security Incident Response Team - A CSIRT is tasked with responding to and managing security incidents.

Question 31

MDM

Answer 31

Mobile Device Management - MDM solutions allow organizations to manage and secure employees’ mobile devices.

Question 32

APT

Answer 32

Advanced Persistent Threat - APTs are sophisticated attacks that gain unauthorized access and remain undetected.

Question 33

CCL

Answer 33

Common Control Line - CCL is used to define shared controls within organizations to manage risk.

Question 34

CVE

Answer 34

Common Vulnerabilities and Exposures - CVE identifiers help track vulnerabilities in software.

Question 35

CVSS

Answer 35

Common Vulnerability Scoring System - CVSS scores help prioritize vulnerabilities based on their severity.

Question 36

EDR

Answer 36

Endpoint Detection and Response - EDR solutions provide real-time monitoring and data collection from endpoints.

Question 37

DDoS

Answer 37

Distributed Denial of Service - A DDoS attack overwhelms a server with traffic

Question 38

MITM

Answer 38

Man-In-The-Middle - MITM attacks intercept communications between two parties to eavesdrop or alter messages.

Question 39

SHA

Answer 39

Secure Hash Algorithm - SHA is used to ensure data integrity by generating a unique hash for data.

Question 40

RFID

Answer 40

Radio-Frequency Identification - RFID tags track inventory items in a warehouse.

Question 41

OSI

Answer 41

Open Systems Interconnection - The OSI model helps standardize network communication protocols.

Question 42

SAML

Answer 42

Security Assertion Markup Language - SAML enables SSO by allowing identity providers to share authentication data.

Question 43

TTP

Answer 43

Tactics

Question 44

NIST

Answer 44

National Institute of Standards and Technology - NIST publishes cybersecurity frameworks and guidelines for organizations.

Question 45

ISO

Answer 45

International Organization for Standardization - ISO 27001 outlines requirements for establishing an information security management system.

Question 46

FIPS

Answer 46

Federal Information Processing Standards - FIPS are mandatory for federal agencies to ensure security in IT systems.

Question 47

AAL

Answer 47

Authentication Assurance Level - AAL levels define the strength of authentication methods used in systems.

Question 48

AUP

Answer 48

Acceptable Use Policy - An AUP outlines acceptable behaviors for using company IT resources.

Question 49

ITAR

Answer 49

International Traffic in Arms Regulations - ITAR restricts the export of defense-related articles and services.

Question 50

FERPA

Answer 50

Family Educational Rights and Privacy Act - FERPA protects the privacy of student education records.

Question 51

HIPAA

Answer 51

Health Insurance Portability and Accountability Act - HIPAA sets standards for protecting sensitive patient health information.

Question 52

PCI DSS

Answer 52

Payment Card Industry Data Security Standard - PCI DSS provides guidelines for protecting cardholder data in payment processing.

Question 53

RACI

Answer 53

Responsible

Question 54

TCO

Answer 54

Total Cost of Ownership - TCO considers all costs associated with owning and operating a system.

Question 55

VAPT

Answer 55

Vulnerability Assessment and Penetration Testing - VAPT identifies and exploits vulnerabilities in systems to improve security.

Question 56

FUD

Answer 56

Fear

Question 57

DNSSEC

Answer 57

Domain Name System Security Extensions - DNSSEC protects against certain types of attacks on the DNS.

Question 58

S3

Answer 58

Simple Storage Service (AWS) - Amazon S3 provides scalable cloud storage solutions.

Question 59

IaaS

Answer 59

Infrastructure as a Service - IaaS allows businesses to rent computing resources over the internet.

Question 60

PaaS

Answer 60

Platform as a Service - PaaS provides a platform for developers to build and deploy applications without managing infrastructure.

Question 61

SaaS

Answer 61

Software as a Service - SaaS applications are accessed over the internet

Question 62

VM

Answer 62

Virtual Machine - VMs allow multiple operating systems to run on a single physical machine.

Question 63

SLA

Answer 63

Service Level Agreement - An SLA defines the expected service performance and availability.

Question 64

Ransomware

Answer 64

Malware that encrypts files and demands payment - Ransomware attacks often target hospitals

Question 65

BIA

Answer 65

Business Impact Analysis - A BIA identifies critical business functions and the impact of disruptions.

Question 66

HSM

Answer 66

Hardware Security Module - HSMs secure cryptographic keys and perform encryption/decryption.

Question 67

SOAR

Answer 67

Security Orchestration

Question 68

UEBA

Answer 68

User and Entity Behavior Analytics - UEBA identifies anomalies in user behavior to detect potential threats.

Question 69

XSS

Answer 69

Cross-Site Scripting - XSS attacks inject malicious scripts into web pages viewed by users.

Question 70

CSRF

Answer 70

Cross-Site Request Forgery - CSRF tricks users into submitting requests without their consent.

Question 71

L2TP

Answer 71

Layer 2 Tunneling Protocol - L2TP is used to create VPNs that securely transmit data.

Question 72

IPsec

Answer 72

Internet Protocol Security - IPsec encrypts data at the IP layer for secure communications.

Question 73

CAA

Answer 73

Certification Authority Authorization - CAA records specify which CAs are permitted to issue certificates for a domain.

Question 74

TFA

Answer 74

Two-Factor Authentication - TFA adds an extra layer of security by requiring a second form of verification.

Question 75

OAUTH

Answer 75

Open Authorization - OAUTH allows users to share specific data with third-party applications without exposing credentials.

Question 76

OpenID

Answer 76

An open standard for user authentication - OpenID enables users to log in to various websites using a single account.

Question 77

SYN

Answer 77

Synchronize - SYN packets are part of the TCP handshake to establish a connection.

Question 78

NAC

Answer 78

Network Access Control - NAC solutions enforce security policies for devices connecting to a network.

Question 79

Breach

Answer 79

Unauthorized access to data - A data breach occurs when hackers access confidential information.

Question 80

CIRT

Answer 80

Computer Incident Response Team - A CIRT responds to security incidents and manages recovery efforts.

Question 81

Forensics

Answer 81

The application of science to criminal and civil laws - Digital forensics investigates cybercrimes by analyzing digital evidence.

Question 82

Threat Actor

Answer 82

An individual or group that exploits vulnerabilities - A threat actor may be a hacker targeting financial institutions.

Question 83

Phishing

Answer 83

Fraudulent attempt to obtain sensitive information - Phishing emails trick users into revealing passwords.

Question 84

Social Engineering

Answer 84

Manipulating people to divulge confidential information - Attackers may pose as IT support to gain user trust and information.

Question 85

Zero-Day

Answer 85

A vulnerability exploited before a fix is available - A zero-day exploit can lead to widespread attacks if not patched quickly.

Question 86

Payload

Answer 86

The part of malware that performs the malicious action - The payload of a virus might delete files or steal data.

Question 87

Sandbox

Answer 87

An isolated environment for safely running programs - Malware analysis often uses a sandbox to test suspicious files without risk.

Question 88

Malware

Answer 88

Malicious software designed to harm or exploit devices - Types of malware include viruses

Question 89

Brute Force

Answer 89

Attempting to guess passwords or encryption keys - Brute force attacks may use various combinations to crack passwords.