Domain 2: Incident Response, Business Continuity and Disaster Recovery Concepts Flashcards

1
Q

What is a breach?

A

The loss of control, compromise, unauthorized disclosure, unauthorized acquisition, or any similar occurrence where: a person other than an authorized user accesses or potentially accesses personally identifiable information; or an authorized user accesses personally identifiable information for other than an authorized purpose. NIST SP 800-53 Rev. 5

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is an event?

A

Any observable occurrence in a network or system.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is an exploit?

A

A particular attack. It is named this way because these attacks exploit system vulnerabilities.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is an incident?

A

An event that actually or potentially jeopardizes the confidentiality, integrity or availability of an information system or the information the system processes, stores or transmits.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is an intrusion?

A

A security event, or combination of events, that constitutes a deliberate security incident in which an intruder gains, or attempts to gain, access to a system or system resource without authorization.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is a threat?

A

Any circumstance or event with the potential to adversely impact organizational operations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is a vulnerability?

A

Weakness in an information system, system security procedures, internal controls or implementation that could be exploited by a threat source.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is zero day?

A

A previously unknown system vulnerability with the potential of exploitation without risk of detection or prevention because it does not, in general, fit recognized patterns, signatures or methods.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is an incident response plan?

A

The incident response process is aimed at reducing the impact of an incident so the organization can resume the interrupted operations as soon as possible.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly