IS4550 CHAPTER 15

Question 1

A formal process that controls changes to systems. It ensures changes have minimal impact on operations and is called ___.

Answer 1

CHANGE MANAGEMENT

Question 2

A collection of activities that track system configuration. It starts with a baseline and continues through a system’s life cycle including changing and monitoring is called ___.

Answer 2

CONFIGURATION MANAGEMENT (CM)

Question 3

A standard image mandated for use on all systems running Window XP or Vista in any federal agency. This image locks down the operating system with specific security setting is called ___.

Answer 3

FEDERAL DESKTOP CORE CONFIGURATION (FDCC)

Question 4

An automated management tool used in Microsoft domains. Administrators can configure a setting one time and it will apply to multiple users and computers is called ___.

Answer 4

GROUP POLICY

Question 5

A technology used to create baselines of systems. It is captured from a source computer then can be deployed to other systems. Images include the operating system, applications, configuration settings, and security settings is called ___.

Answer 5

IMAGING

Question 6

A group of specifications that standardize how security software products measure, evaluate, and report compliance and is called ___.

Answer 6

SECURITY CONTENT AUTOMATION PROTOCOL (SCAP)

Question 7

A protocol used to query and manage network devices. V1 had known vulnerabilities such as transmitting the community name in clear text. V2 and V3 improved security and performance and is called ___.

Answer 7

SIMPLE NETWORK MANAGEMENT PROTOCOL (SNMP)

Question 8

.A set of standards and technologies used to query and manage systems and applications in a network. It is used on the Internet and on internal networks and is called ___.

Answer 8

WEB-BASED ENTERPRISE MANAGEMENT (WBEM)

Question 9

Microsoft’s implementation of WBEM. It is a specification defining how to query and manage Microsoft clients and servers is called ___.

Answer 9

WINDOW MANAGEMENT INSTRUMENTATION (WMI)

Question 10

1. A ___ is a starting point or standard. Within IT, it provides a standard focused on a specific technology used within and organization.

Answer 10

Baseline

Question 11

2. An operating system and different applications are installed on a system. The system is then locked down with various setting. You want the same operating system, applications, and settings deployed to 50 other computers. What is the easiest way?
3. Scripting
4. Imaging
5. Manually
6. Spread the work among different departments

Answer 11

Imaging

Question 12

3. After a set of security settings has been applied to a system, there is no need to recheck these settings on the system.
   TRUE OR FALSE

Answer 12

FALSE

Question 13

4. The time between when a new vulnerability is discovered and when software developers start writing a patch is known as a ___.

Answer 13

Vulnerability window or security gap

Question 14

5. Your organization wants to automate the distribution of security policy settings. What should be considered?
6. Training of administrators
7. Organizational acceptance
8. Testing for effectiveness
9. All the above

Answer 14

Training of administrators
Organizational acceptance
Testing for effectiveness

Question 15

6. Several tools are available to automate the deployment of security policy settings. Some tools can deeply baseline setting. Other tools can deploy changes in security policy settings.
   TRUE OR FALSE

Answer 15

TRUE

Question 16

7. An organization uses a decentralized IT model with a central IT department for core services and security. The organization wants to ensure that each department is complying with primary security requirements. What can be used to verify compliance?
8. Group policy
9. Centralized change management policies
10. Centralized configuration management policies
11. Random audits

Answer 16

Random audits

Question 17

8. Change requests are tracked in a control work order database. Approved changes are also recorded in a CMDB.
   TRUE OR FALSE

Answer 17

TRUE

Question 18

9. An organization wants to maintain a database of system settings. The database should include the original system settings and any changes. What should be implemented within the organization?
10. Change management
11. Configuration management
12. Full ITIL life cycle support
13. Security Content automation Protocol

Answer 18

Configuration management

Question 19

10. An organization wants to reduce the possibility of outages when changes are implanted on the network. What should the organization use?
11. Change management
12. Configuration management
13. Configuration management database
14. Simple Network Management Protocol

Answer 19

Change management

Question 20

11. Which NIST standard was developed for different scanning and vulnerability assessment tools, and comprises six specifications including XCCDF?
12. SNMP
13. WBEM
14. SCAP
15. WMI

Answer 20

SCAP

Question 21

12. Microsoft created the Web-Based Enterprise Management (WBEM) technologies for Microsoft products.
    TRUE OR FALSE

Answer 21

FALSE

Question 22

13. Which of the following specifications is used exclusively in Microsoft products to query and configure systems in the network?
14. WMI
15. WBEM
16. SNMP
17. SCAP

Answer 22

WMI

Question 23

14. Which of the following is used to manage and query network devices such as routers and switches?
15. WMI
16. WBEM
17. SNMP
18. SCAP

Answer 23

SNMP

Question 24

15. A ___ can be used with a downloaded file. It offers verification that the file was provided by a specific entity. It also verifies the file has not been modified.

Answer 24

Digital signature