MOD 2 QUIZ

Question 1

What is Separation of Duties?

Answer 1

Critical, significant, and sensitive work tasks are divided among several individual administrators or high-level operators

Question 2

What is Job rotation?

Answer 2

Consists of rotating employees among multiple job positions

Question 3

What is SLA?

Answer 3

Service-Level Agreement

Question 4

What is Security Governance?

Answer 4

The collection of practices related to supporting, defining, and directing the security efforts of an organization

Question 5

What is the, “detailed process of identifying factors that could damage or disclose data, evaluating those factors in light of data value and countermeasure cost, and implementing cost-effective solutions for mitigating or reducing risk”?

Answer 5

Risk Management

Question 6

What is Vulnerability?

Answer 6

A weakness in an asset or the absence or the weakness of a safeguard or countermeasure

Question 7

What are the two types of Risk Analysis?

Answer 7

Qualitative and Quantitative

Question 8

What are the six major elements of Quantitative Risk Analysis?

Answer 8

Annualized Rate of Occurrence
Single Loss Expectancy
Asset Value
Exposure Factor
Annualized Loss Expectancy

Question 9

What are the valid Risk Responses?

Answer 9

Transfer
Accept
Mitigate

Question 10

What are the three Control Categories used in Defense in Depth?

Question 11

What is Exposure?

Answer 11

Being susceptible to asset loss because of a threat (doesn’t mean a threat will be realized)

Question 12

What is Asset Valuation
?

Question 13

What is Phishing?

Answer 13

Stealing credentials or identity information from any potential target

Question 14

What is Shoulder Surfing?

Answer 14

Whens someone is able to watch a user’s keyboard or view their display

Question 15

What is Typo Squatting?

Answer 15

A practice employed to capture and redirect traffic when a user mistypes the domain name or IP address of an intended resource