Deck

Question 1

What is cybersecurity?

Answer 1

The practice of ensuring confidentiality, integrity, and availability of information by protecting networks, devices, people, and data from unauthorized access or criminal exploitation

Question 2

What is cloud security?

A sub-field

Answer 2

The process of ensuring that assets stored in the cloud are properly set up correctly and access to those assets is limited to authorized users

Specifically focuses on the protection of data, application, and infratstructure in the cloud

Question 3

What is an internal threat?

Answer 3

A current or former employee, external vendor, or trusted partner who poses as a security risk

Question 4

What is network security?

Answer 4

The practice of keeping an organization’s network infrastructure secure from unauthorized access

This includes data, services, systems, and devices that are stored in an organization’s network

Question 5

What is PII? What does it stand for?

Answer 5

Personal Identifiable Information. Any information used to infer an individual’s identity

Question 6

What is security posture?

Answer 6

An organization’s ability to manage its defense of critical assets and data and react to change

Question 7

What is SPII? What does it stand for?

Answer 7

Sensitive Personal Identifiable Information. A specific type of PII that falls under stricter handling guidelines/

Question 8

What is technical skills?

Answer 8

Skills that require knowledge of specific tools, procedures, and policies

Question 9

What is a threat?

Answer 9

Any circumstance or event that can negatively impact assets

Question 9

What is a transferable skill?

Answer 9

Skills from other areas that can apply to different careers

Question 9

What is a threat actor?

Answer 9

Any person or group who presents a security risk

Question 9

What is to install detection software?

Answer 9

security professionals collaborating with information technical teams to deploy an application that helps identify risks and vulnerabilities

Question 9

What is identity theft?

Answer 9

an individual having their personal information stolen and could commit fraud or impersonate them

Question 10

what is regulatory compliance

Answer 10

laws and guidelines that require implementation of security standards

Question 11

What are security analysts responsible for?

There are 4 points

Answer 11

• protecting computer and network systems
• search for weaknesses
• installing prevention softwares
• conducting periodic security audits

Question 12

What is security audit?

Answer 12

A review of an organization’s security records, activities, and other related documents

Question 13

What are the 2 parts to an entry-level cybersecurity prof.?

Answer 13

• Operations: Responding to detections and doing investigations
• Projects: Working with other teams to build new detections or improve the current detections

Question 14

What is a playboook?

Answer 14

A list of how to go through a certain detection, and what the analyst needs to look at in order to investigate those incidents

Question 15

What is security framework?

Answer 15

Guidelines used for building plans to help mitigate risks and threats to data and privacy

Question 16

What are security controls?

Answer 16

Safeguards designed to reduce specific security risks. They are used with security frameworks to establish a strong security posture

Question 17

What is a cloud?

Answer 17

A network made up of a collection of servers or computers that store resources and data in remote physical locations known as data centers that can be accessed via the internet

Question 17

What type of information falls under PII?

Answer 17

• Full Name
• DOB
• Physical Address
• Phone number
• Email Address
• IP (Internet Protocol)

Question 18

What type of information falls under SPII?

Answer 18

• SSN
• Medical Information
• Financial Information
• Biometric Data (Face ID)

Question 19

What type of security task does computer forensics do?

Answer 19

A security professional receives an alert about an unknown user accessing a system within their organization. They attempt to identity, analyze, and preserve the associated criminal evidence.

Question 20

What is SIEM? What does it stand for?

Answer 20

Security information and event management. Tools enable security professionals to identify and analyze threats, risks and vulnerabilites

Question 21

What are the proficiencies of transferable skills?

Answer 21

• Written and verbal communication
• Data Analysis
• Problem-Solving

Question 22

What are DIGITAL FORENSIC INVESTIGATORS in charge of?

Answer 22

Identifying, Anlyzing, and preserving criminal evidence within networks, computers, and electronic devices