Domain 1 General Security Concepts

Question 1

In a corporate office, employees are required to use their access cards to enter different sections of the building. What type of control is being implemented in this scenario?

Answer 1

Physical control

Question 2

A financial institution implements encryptions for all sensitive data transmitted between its branches to ensure confidentiality. What type of control is being applied here?

Answer 2

Technical Control - Encryption is a technical control that involves the use of technology to protect sensitive data during transmission, ensuring its confidentiality.

Question 3

A company encrypts sensitive customer data to prevent unauthorized access. What security principle does this primarily address?

Answer 3

Confidentiality - Encrypting sensitive customer data helps maintain confidentiality by protecting it from unauthorized access.

Question 4

A system administrator implements regular backups to ensure that critical data can be restored in the event of a hardware failure. Which security principle does this align with?

Answer 4

Availability Regular backups contribute to the availability of critical data by ensuring it can be restored in case of a hardware failure or data loss.

Question 5

A security mechanism is implemented to verify that data remains unchanged during transmission over a network. Which security principle is being emphasized?

Answer 5

Integrity - Verifying data integrity ensures that it remains unchanged during transmission, guarding against unauthorized alterations.

Question 6

In a network environment, what AAA component is responsible for tracking the activities of users and monitoring resource usage?

Answer 6

Accounting - involves tracking user activities and resource usage for the purpose of billing, auditing, and security monitoring.

Question 7

In a multi-factor authentication system, which of the following is an example of something you know?

Answer 7

One-time password - Something you know refers to knowledge-based factors, such as a password or PIN, and a one-time password is an example of this.

Question 8

What is a common outcome of a gap analysis process in the context of cybersecurity?

Answer 8

Establishment of a remediation plan – to address the gaps

Question 9

A company has recently implemented a new cybersecurity policy and wants to assess its current security posture. What specific steps might they take in a gap analysis process to identify areas for improvement?

Answer 9

Reviewing existing security controls, policies, and procedures against the new policy.

Question 10

A multinational corporation adopts a Zero Trust security model to enhance its cybersecurity posture. How might the organization implement Zero Trust principles to secure its network infrastructure?

Answer 10

Implementing micro-segmentation, multifactor authentication, and continuous monitoring.

Question 11

A global corporation is implementing “Policy-Driven Access Control” as part of its Zero Trust strategy. How might the organization practically enforce access policies based on contextual factors?

Answer 11

Dynamically adjusting access based on user behavior, device health, and location.

Question 12

A healthcare organization is implementing Zero Trust principles to safeguard patient data. How might the organization practically leverage “Adaptive Identity” to enhance access controls?

Answer 12

Dynamically adjusting access based on changing conditions such as user behavior

Question 13

Which control type involves implementing measures to prevent unauthorized access to systems and data?

Answer 13

Preventive controls

Question 14

A large retail company is implementing a Zero Trust model to secure its online customer data. How might the organization apply the principle of “Threat Scope Reduction” to protect customer information?

Answer 14

Segmenting the network to isolate sensitive customer databases.

Question 15

In a city center, where there is a potential threat of vehicle attacks, how might bollards strategically placed around public spaces enhance security?

Answer 15

Restricting vehicle access and preventing ramming attacks.

Question 16

Why is change management considered crucial for maintaining a secure IT environment?

Answer 16

To ensure that changes are thoroughly planned, tested, and approved to prevent security vulnerabilities.

Question 17

Which of the following best describes the purpose of conducting an impact analysis in change management operations?

Answer 17

To understand the consequences of proposed changes on security.

Question 18

A manufacturing plant installs security cameras at entry points and critical areas to monitor and record activities. What type of control is this?

Answer 18

Detective - Security cameras, in this case, serve as detective controls by monitoring and recording activities for later review, helping to identify and respond to security incidents

Question 19

Why is identifying stakeholders important in change management operations?

Answer 19

Stakeholders may have vested interests and influence in security-related decisions.

Question 20

What is the purpose of an approval process in change management, and how does it contribute to security operations?

Answer 20

Verifies that the change aligns with organizational security policies.

Question 21

Identify and describe the primary stakeholders involved in the approval of a security change. How do their roles differ, and why is their involvement crucial?

Answer 21

Stakeholders include anyone in the organization; their roles may vary from approvers to implementers

Question 22

What is the primary purpose of the approval process in change management?

Answer 22

To ensure that proposed changes are reviewed and authorized.

Question 23

Which control type focuses on minimizing the impact of a security incident and restoring normal operations quickly?

Answer 23

Corrective controls

Question 24

How do allow lists and deny lists contribute to security in an organization’s network?

Answer 24

Allow lists specify authorized entities, while deny lists specify entities to be blocked.

Question 25

Why is restarting a service a common practice in response to security incidents?

Answer 25

To apply security updates and patches.

Question 26

A security incident response team is investigating a data breach in which sensitive customer information may have been compromised. What is the most critical aspect of documentation during this incident response process?

Answer 26

Documenting the steps taken during the investigation and remediation.

Question 27

A company is transitioning its email infrastructure from an on-premises solution to a cloud-based service. What are the primary technical implications of this transition?

Answer 27

Increased scalability and accessibility.

Question 28

An organization is concerned about potential information leakage and wants to ensure the confidentiality of sensitive data transmitted over the network. What application of steganography would address this concern?

Answer 28

Hiding a confidential document within a seemingly unrelated image file.

Question 29

An organization is planning to implement a Public Key Infrastructure (PKI) for securing its communication channels and authenticating users. What are the key components of a PKI that the organization should consider?

Answer 29

Digital certificates, public and private key pairs, and a Certificate Authority (CA).

Question 30

A company has implemented a PKI for its internal network, and employees use digital certificates for secure access. One employee loses their smart card containing the private key. What is the appropriate action to take in this scenario?

Answer 30

Revoke the compromised certificate and issue a new one with a new key pair.

Question 31

A development team is working on a critical software application. They are using version control to manage the source code. Why is version control essential in this scenario?

Answer 31

To track changes, maintain a history of revisions, and enable collaboration.

Question 32

A government agency is implementing a PKI for secure communications. The agency is concerned about potential loss of access to encrypted data if an employee leaves or loses their private key. What PKI concept addresses this concern?

Answer 32

Key Escrow

Question 33

An organization is implementing a PKI and is considering methods for checking the revocation status of digital certificates. Which statement accurately describes the difference between Online Certificate Status Protocol (OCSP) and Certificate Revocation Lists (CRLs)?

Answer 33

OCSP provides real-time certificate status, while CRLs are only updated periodically.

Question 34

An organization is implementing encryption for securing its sensitive data. The team is debating whether to use symmetric or asymmetric encryption. What is a key consideration when deciding between symmetric and asymmetric encryption?

Answer 34

Symmetric encryption requires the exchange of secret keys.

Question 35

An e-commerce website is implementing TLS to secure the transmission of customer data during online transactions. What is the primary purpose of TLS in this context?

Answer 35

Ensuring the integrity of customer data during transmission.

Question 36

An organization is implementing encryption to secure sensitive data, and they are considering using the Advanced Encryption Standard (AES). What key lengths are commonly used with AES for secure encryption?

Answer 36

128-bit keys.

Question 37

An organization is implementing a security strategy for its devices and wants to ensure the integrity of the system boot process. Which cryptographic tool is designed to provide a secure root of trust for the system and help protect against attacks such as firmware tampering?

Answer 37

Trusted Platform Module (TPM).

Question 38

A financial institution is implementing a system to securely store and manage cryptographic keys used in its payment processing application. Which cryptographic tool is best suited for this purpose, providing a dedicated hardware-based solution for key protection?

Answer 38

Hardware Security Module (HSM)

Question 39

A mobile device manufacturer is implementing a security feature to protect sensitive user data, such as biometric information and device-specific keys. What cryptographic tool is commonly used to create a secure, isolated environment within the device’s processor?

Answer 39

Secure Enclave

Question 40

A cybersecurity analyst discovers an image file shared online, suspecting that it may contain hidden information. What technique might be employed to hide sensitive data within the image while maintaining the image’s appearance?

Answer 40

Steganography

Question 41

A financial institution wants to enhance the security of its payment processing system by reducing the storage of sensitive cardholder information. What technique can the institution use to replace the actual credit card numbers with unique tokens for storage and transaction processing?

Answer 41

Tokenization

Question 42

A healthcare organization is preparing a dataset for research purposes while ensuring that the personally identifiable information (PII) of patients remains confidential. What technique could the organization use to replace actual names and addresses with fictitious or generalized information?

Answer 42

Tokenization

Question 43

A healthcare organization is preparing a dataset for research purposes while ensuring that the personally identifiable information (PII) of patients remains confidential. What technique could the organization use to replace actual names and addresses with fictitious or generalized information?

Answer 43

Data Masking

Question 44

An organization is implementing a system to verify the authenticity and integrity of digitally signed documents. What is the primary purpose of using digital signatures in this context?

Answer 44

To ensure the document has not been altered.

Question 45

An organization is planning to implement a blockchain-based system for secure and transparent record-keeping. What are two key security features associated with blockchain technology?

Answer 45

Data encryption and decentralized consensus

Question 46

A company is considering using a blockchain with an open public ledger for its supply chain management. What privacy concerns should the company address when utilizing an open public ledger?

Answer 46

Protection of proprietary information.

Question 47

A website is storing user passwords and wants to enhance security by using a hash function. What is a crucial property of a secure hash function?

Answer 47

Collision resistance, preventing different inputs from producing the same hash.

Question 48

An organization is using legacy applications critical to its business operations. What is a primary security concern associated with legacy applications?

Answer 48

They may have unpatched vulnerabilities

Question 49

An organization is implementing a secure communication system and wants to ensure that participants cannot deny their involvement in the communication. What security concept addresses this concern?

Answer 49

Non-repudiation

Question 50

A network administrator is configuring a system to use a secure authentication protocol for remote access. What is a commonly used protocol for authenticating systems in this context?

Answer 50

RADIUS