Legal and Compliance

Question 1

What is the Cloud Act

Answer 1

Mandates how long electronic communications are kept for such as telephone records etc. The cloud act extends this to cover data stored outside of the US. It prohibits US companies not complying with a data request or warrant by claiming the data is stored outside of the US. It places the responsibility on the company on providing some means of access that is in the US - duplicate copies.

Question 2

What is FedRamp ?

Answer 2

US Federal act detailing the best practice for getting into the cloud.

Question 3

When does chain of custody start ?

Answer 3

As soon as the term evidence is used

Question 4

What is the main problem with forensics in the cloud ?

Answer 4

Locating where the data is

Question 5

What is Virtual Machine Inspection ?

Answer 5

Software on hypervisor that allows you to inspect a running vm memory.

Question 6

What is the first step in e-discovery

Answer 6

identification

Question 7

What are the seven steps to e-discovery ?

Answer 7

Identification, Preservation, Collection,Processed,Review,Production,Presentation

Question 8

What stage of e-discovery is legal hold enforced ?

Answer 8

Preservation

Question 9

List the volatility order for evidence collection ?

Answer 9

Screen
RAM
Cache
Storage Drives

Question 10

What are the three types of case e-discovery could be used for ?

Answer 10

Operational, Civil and Criminal

Question 11

What is risk appetite ?

Answer 11

The amount of risk in terms of amount and money an organisation is willing to take on

Question 12

What is risk profile ?

Answer 12

How well or not an organisation can withstand risk events

Question 13

What is risk tolerance ?

Answer 13

For any particular risk event it is the positive or negative variance around our usual risk choice