Networks and Networks security

Question 1

What is the primary function of a Security Information and Event Management (SIEM) tool?

Answer 1

To collect and analyze log data to monitor critical activities in an organization.

Question 2

Describe the principle of defense-in-depth.

Answer 2

Implementing multiple layers of security measures to protect a network.

Question 3

What does the confidentiality aspect of the CIA triad ensure?

Answer 3

Only authorized users can access specific assets or data.

Question 4

How does an IDS differ from an IPS?

Answer 4

An IDS detects and alerts about possible intrusions, while an IPS takes action to stop them.

Question 5

Define the role of a firewall in network security.

Answer 5

A firewall allows or blocks traffic based on a set of security rules.

Question 6

What is an example of a physical security hardening measure?

Answer 6

Installing security cameras or hiring security guards

Question 7

Explain the concept of network segmentation.

Answer 7

Dividing a network into segments to improve security and performance

Question 8

What does the integrity aspect of the CIA triad ensure?

Answer 8

Data is correct, authentic, and reliable.

Question 9

Describe the purpose of a baseline configuration.

Answer 9

A set of specifications used as a reference point for future builds, releases, and updates.

Question 10

What is a common use of port filtering in network security?

Answer 10

To block or allow specific port numbers to control network traffic.

Question 11

Define the term ‘attack surface.’

Answer 11

All the potential vulnerabilities that a threat actor could exploit in a system.

Question 12

How does multi-factor authentication (MFA) enhance security?

Answer 12

By requiring users to verify their identity in two or more ways.

Question 13

What is a key responsibility of a cloud service provider (CSP) under the shared responsibility model?

Answer 13

Managing the security of the cloud infrastructure, including physical data centers and hypervisors

Question 14

What is the function of an intrusion detection system (IDS)?

Answer 14

To monitor system activity and alert administrators to possible intrusions.

Question 15

How does cryptography help in cloud security?

Answer 15

By using encryption to ensure data integrity and confidentiality.

Question 16

What does a penetration test aim to achieve?

Answer 16

Identifying vulnerabilities in systems, networks, websites, applications, and processes through a simulated attack.

Question 17

Describe the purpose of network log analysis.

Answer 17

Examining network logs to identify events of interest and detect potential security incidents.

Question 18

What is the benefit of using a hypervisor in cloud environments?

Answer 18

It abstracts the host’s hardware from the operating software environment to improve resource management and security.

Question 19

Explain the role of patch updates in security hardening.

Answer 19

Fixing known security vulnerabilities in software and operating systems.

Question 20

What is a virtual private network (VPN) used for?

Answer 20

Encrypting data in transit to provide secure communication over public networks.

Question 21

How does a replay attack operate?

Answer 21

By intercepting a data packet in transit and delaying it or repeating it at another time.

Question 22

What is the significance of the availability aspect of the CIA triad?

Answer 22

Ensuring that data is accessible to authorized users when needed.

Question 23

Describe the principle of least privilege.

Answer 23

Providing users only the access that is necessary for their roles to minimize security risks.

Question 24

What is the impact of a Distributed Denial of Service (DDoS) attack?

Answer 24

Overwhelming a network with unwanted traffic, causing system unavailability.

Question 25

How can a firewall be configured to prevent IP spoofing attacks?

Answer 25

By implementing source IP address verification to check for spoofed IP addresses.