Network

Question 1

What is the first step in assessing security threats?

Answer 1

Identifying potential threats and vulnerabilities.

Question 2

True or False: All security incidents should be treated with the same level of severity.

Answer 2

False.

Question 3

Fill in the blank: The process of determining the impact of an incident is known as ______.

Answer 3

impact assessment.

Question 4

What is a common framework used for incident response?

Answer 4

The NIST Cybersecurity Framework.

Question 5

Which term describes the likelihood of a threat exploiting a vulnerability?

Answer 5

Risk.

Question 6

What does the acronym CVSS stand for?

Answer 6

Common Vulnerability Scoring System.

Question 7

Multiple Choice: Which of the following is NOT a phase in the incident response lifecycle? A) Preparation B) Detection C) Reaction D) Recovery

Answer 7

C) Reaction.

Question 8

What is the purpose of a risk assessment?

Answer 8

To evaluate potential risks and determine how to mitigate them.

Question 9

True or False: Mitigation strategies should only be implemented after a security incident occurs.

Answer 9

False.

Question 10

What is a security incident?

Answer 10

An event that compromises the confidentiality, integrity, or availability of information.

Question 11

Fill in the blank: ______ analysis helps organizations understand the consequences of incidents.

Answer 11

Threat.

Question 12

What does ‘vulnerability’ refer to in cybersecurity?

Answer 12

A weakness in a system that can be exploited by threats.

Question 13

Multiple Choice: Which factor is NOT typically considered when assessing the severity of an incident? A) Data sensitivity B) Financial impact C) Time of day D) Compliance requirements

Answer 13

C) Time of day.

Question 14

What role does communication play in incident response?

Answer 14

Effective communication ensures all stakeholders are informed and coordinated.

Question 15

True or False: Documentation is unimportant during the incident response process.

Answer 15

False.

Question 16

What is the difference between a threat and a vulnerability?

Answer 16

A threat is a potential danger, while a vulnerability is a weakness that can be exploited.

Question 17

Fill in the blank: A ______ is a documented plan for responding to different types of incidents.

Answer 17

incident response plan.

Question 18

What is the main goal of incident mitigation?

Answer 18

To reduce the impact of security incidents on the organization.

Question 19

Multiple Choice: Which of the following is considered a proactive security measure? A) Incident reporting B) Security training C) Post-incident review D) None of the above

Answer 19

B) Security training.

Question 20

What is the function of an incident severity matrix?

Answer 20

To categorize incidents based on their impact and urgency.

Question 21

True or False: All security incidents require immediate escalation.

Answer 21

False.

Question 22

What should be included in an incident report?

Answer 22

Details of the incident, response actions taken, and lessons learned.

Question 23

Fill in the blank: After an incident, organizations should conduct a ______ to identify improvements.

Answer 23

post-mortem analysis.

Question 24

What is a common tool used for tracking incidents?

Answer 24

Incident management software.

Question 25

Multiple Choice: Which of the following is a common indicator of a security incident? A) Unusual network traffic B) Routine system updates C) Scheduled maintenance D) None of the above

Answer 25

A) Unusual network traffic.

Question 26

What is the importance of training employees in security awareness?

Answer 26

To reduce the likelihood of human error leading to security incidents.