Module 1

Question 1

Cybersecurity(security)

Answer 1

The practice of ensuring confidentiality, integrity, and availability of information by protecting networks, devices, people, and data from unauthorized access or criminal exploitation.

Question 2

Threat Actor

Answer 2

Any person or group who presents a security risk.

Question 3

Benefits of Security

Answer 3

Protects against external and internal threats

Meets regulatory compliance

Maintains and improves business productivity

Reduces expenses

Maintains brand trust

Question 4

Common Job Titles

Answer 4

Security analyst or specialist

Cybersecurity analyst or specialist

Security operations center (SOC) analyst

Information security analyst

Question 5

Security Analyst Responsibilities

Answer 5

Protecting computer and network systems

Installing prevention software

Question 6

Compliance

Answer 6

The process of adhering to internal standards, external regulations and enables organizations to avoid fines and security breaches.

Question 7

Security Frameworks

Answer 7

Guidelines used for building plans to help mitigate risks and threats to data and privacy.

Question 8

Security Controls

Answer 8

Safeguards designed to reduce specific security risks. They are used with security frameworks to establish a strong security posture.

Question 9

Security Posture

Answer 9

An organization’s ability to manage its defense of critical assets, data, and react to change. A strong security posture leads to lower risk for the organization.

Question 10

Internal Threat

Answer 10

A current or former employee, an external vendor, or a trusted partner who poses a security risk. At times an internal threat is accidental. For example, an employee who accidentally clicks on a malicious email link would be considered an accidental threat. Other times, the internal threat actor intentionally engages in risky activities, such as unauthorized data access.

Question 11

Network Security

Answer 11

The practice of keeping an organizations network infrastructure secure from unauthorized access. This includes data, services, systems, and devices that are stored in an organizations network.

Question 12

Cloud Security

Answer 12

The process of ensuring that assets stored in the cloud are properly configured, or set up correctly, and access to those assets is limited to authorized users.

Question 13

Cloud

Answer 13

A network made up of a collection of servers or computers that store resources and data in remote physical locations known as data centers that can be accessed via the Internet.

Question 14

Programming

Answer 14

A process that can be used to create a specific set of instructions for a computer to execute tasks. For example, automation of repetitive tasks, reviewing web traffic, and alerting suspicious activity.

Question 15

Security Analyst Transferable Skills

Answer 15

Communication

Collaboration

Analysis

Problem Solving

Question 16

Security Analyst Technical Skills

Answer 16

Programming languages

Security information and event management (SIEM) tools

Computer forensics

Question 17

Transferable Skills

Answer 17

Communication

Problem-solving

Time management

Growth mindset

Diverse perspectives

Question 18

Technical Skills

Answer 18

Programming languages

Security information and event management (SIEM) tools

Intrusion detection systems (IDSs)

Threat landscape knowledge

Incident response

Question 19

Programming languages

Answer 19

By understanding how to use programming languages cyber security analyst can automate tasks that would otherwise be very time-consuming. Examples of task that programming can be used for include searching data to identify potential threats or organizing and analyzing information to identify patterns related to security issues.

Question 20

Security information and event management (SIEM) tools

Answer 20

SIEM tools, collect an analyzed log data, or records of events such as unusual login behavior, and support analysts’ ability to monitor critical activities in an organization. This helps cyber security professionals, identify and analyze, potential security, threats, risks, and vulnerability more efficiently.

Question 21

Intrusion detection systems (IDSs)

Answer 21

Cyber security analyst use IDSs to monitor system activity and alerts for possible intrusions. It’s important to become familiar with IDSs because they are a key tool that every organization uses to protect assets and data. For example, you might use an IDS to monitor networks for signs of malicious activity, like unauthorized access to network.

Question 22

Threat Landscape Knowledge

Answer 22

Being aware of current trends related to thread actors, malware, or threat methodologies is vital. This knowledge allows security teams to build stronger defenses against thread act, tactics and techniques. By staying up-to-date on attack, trends and patterns, security professionals are better able to recognize when new types of threats emerge, such as a new ransomware variant.

Question 23

Incident Response

Answer 23

Cyber security analyst need to be able to follow established policies and procedures to respond to incidents appropriately. For example, a security analyst might receive an alert about a possible malware attack, then follow the organizations outline procedures to start the incident response process. This could involve conducting an investigation to identify the root issue and establishing ways to remediate it.

Question 24

Personally Identifiable Information (PII)

Answer 24

Any information used to infer an individual’s identity

Question 25

Sensitive Personally Identifiable Information (SPII)

Answer 25

A specific type of PII that falls under stricter handling guidelines