Course 2- Play It Safe: Manage Security Risks

Question 1

What does ‘Assess’ mean in the NIST RMF?

Answer 1

The fifth step of the NIST RMF that means to determine if established controls are implemented correctly.

Question 2

What does ‘Authorize’ refer to in the NIST RMF?

Answer 2

The sixth step of the NIST RMF that refers to being accountable for the security and privacy risks that may exist in an organization.

Question 3

What is ‘Business continuity’?

Answer 3

An organization’s ability to maintain their everyday productivity by establishing risk disaster recovery plans.

Question 4

What is the purpose of ‘Categorize’ in the NIST RMF?

Answer 4

The second step of the NIST RMF that is used to develop risk management processes and tasks.

Question 5

What is an ‘External threat’?

Answer 5

Anything outside the organization that has the potential to harm organizational assets.

Question 6

What does ‘Implement’ mean in the NIST RMF?

Answer 6

The fourth step of the NIST RMF that means to implement security and privacy plans for an organization.

Question 7

What is an ‘Internal threat’?

Answer 7

A current or former employee, external vendor, or trusted partner who poses a security risk.

Question 8

What does ‘Monitor’ entail in the NIST RMF?

Answer 8

The seventh step of the NIST RMF that means be aware of how systems are operating.

Question 9

What is the ‘Prepare’ step in the NIST RMF?

Answer 9

The first step of the NIST RMF related to activities that are necessary to manage security and privacy risks before a breach occurs.

Question 10

What is ‘Ransomware’?

Answer 10

A malicious attack where threat actors encrypt an organization’s data and demand payment to restore access.

Question 11

What does ‘Risk’ refer to?

Answer 11

Anything that can impact the confidentiality, integrity, or availability of an asset.

Question 12

What is ‘Risk mitigation’?

Answer 12

The process of having the right procedures and rules in place to quickly reduce the impact of a risk like a breach.

Question 13

What is meant by ‘Security posture’?

Answer 13

An organization’s ability to manage its defense of critical assets and data and react to change.

Question 14

What does ‘Select’ mean in the NIST RMF?

Answer 14

The third step of the NIST RMF that means to choose, customize, and capture documentation of the controls that protect an organization.

Question 15

What is ‘Shared responsibility’?

Answer 15

The idea that all individuals within an organization take an active role in lowering risk and maintaining both physical and virtual security.

Question 16

What is ‘Social engineering’?

Answer 16

A manipulation technique that exploits human error to gain private information, access, or valuables.

Question 17

What is a ‘Vulnerability’?

Answer 17

A weakness that can be exploited by a threat.

Question 18

What is an Asset?

Answer 18

An item perceived as having value to an organization

Question 19

What are Attack vectors?

Answer 19

The pathways attackers use to penetrate security defenses

Question 20

What is Authentication?

Answer 20

The process of verifying who someone is

Question 21

What is Authorization?

Answer 21

The concept of granting access to specific resources in a system

Question 22

What is Availability?

Answer 22

The idea that data is accessible to those who are authorized to access it

Question 23

What are Biometrics?

Answer 23

The unique physical characteristics that can be used to verify a person’s identity

Question 24

What is Confidentiality?

Answer 24

The idea that only authorized users can access specific assets or data

Question 25

What is the CIA triad?

Answer 25

A model that helps inform how organizations consider risk when setting up systems and security policies

Question 26

What does Detect refer to in NIST?

Answer 26

A core function related to identifying potential security incidents and improving monitoring capabilities

Question 27

What is Encryption?

Answer 27

The process of converting data from a readable format to an encoded format

Question 28

What does Identify refer to in NIST?

Answer 28

A core function related to management of cybersecurity risk and its effect on an organization’s people and assets

Question 29

What is Integrity?

Answer 29

The idea that the data is correct, authentic, and reliable

Question 30

What is the NIST Cybersecurity Framework (CSF)?

Answer 30

A voluntary framework that consists of standards, guidelines, and best practices to manage cybersecurity risk

Question 31

What is NIST Special Publication (S.P.) 800-53?

Answer 31

A unified framework for protecting the security of information systems within the U.S. federal government

Question 32

What is OWASP?

Answer 32

A non-profit organization focused on improving software security

Question 33

What does Protect refer to in NIST?

Answer 33

A core function used to protect an organization through the implementation of policies, procedures, training, and tools

Question 34

What does Recover refer to in NIST?

Answer 34

A core function related to returning affected systems back to normal operation

Question 35

What does Respond refer to in NIST?

Answer 35

A core function related to containing, neutralizing, and analyzing security incidents

Question 36

What is Risk?

Answer 36

Anything that can impact the confidentiality, integrity, or availability of an asset

Question 37

What is a Security audit?

Answer 37

A review of an organization's security controls, policies, and procedures against a set of expectations

Question 38

What are Security controls?

Answer 38

Safeguards designed to reduce specific security risks

Question 39

What are Security frameworks?

Answer 39

Guidelines used for building plans to help mitigate risk and threats to data and privacy

Question 40

What is Security posture?

Answer 40

An organization’s ability to manage its defense of critical assets and data and react to change

Question 41

What is a Threat?

Answer 41

Any circumstance or event that can negatively impact assets

Question 42

What is Chronicle?

Answer 42

A cloud-native tool designed to retain, analyze, and search data.

Question 43

What is incident response?

Answer 43

An organization’s quick attempt to identify an attack, contain the damage, and correct the effects of a security breach.

Question 44

What is a log?

Answer 44

A record of events that occur within an organization’s systems.

Question 45

What are metrics?

Answer 45

Key technical attributes such as response time, availability, and failure rate, which are used to assess the performance of a software application.

Question 46

What is an operating system (OS)?

Answer 46

The interface between computer hardware and the user.

Question 47

What is a playbook?

Answer 47

A manual that provides details about any operational action.

Question 48

What is security information and event management (SIEM)?

Answer 48

An application that collects and analyzes log data to monitor critical activities in an organization.

Question 49

What is security orchestration, automation, and response (SOAR)?

Answer 49

A collection of applications, tools, and workflows that use automation to respond to security events.

Question 50

What are SIEM tools?

Answer 50

A software platform that collects, analyzes, and correlates security data from various sources across your IT infrastructure that helps identify and respond to security threats in real-time, investigate security incidents, and comply with security regulations.

Question 51

What is Splunk Cloud?

Answer 51

A cloud-hosted tool used to collect, search, and monitor log data.

Question 52

What is Splunk Enterprise?

Answer 52

A self-hosted tool used to retain, analyze, and search an organization's log data to provide security information and alerts in real-time.

Question 53

What is incident response?

Answer 53

An organization’s quick attempt to identify an attack, contain the damage, and correct the effects of a security breach.

Question 54

What is a playbook?

Answer 54

A manual that provides details about any operational action.