Part-4

Question 1

BPA

Answer 1

Business partner agreement

What exactly is expected of each entity in terms of services, finances, and security

Question 2

MOU

Answer 2

memorandum of understanding

Usually not legally binding; less formal; they’re typically in acted as a way to expressed a desire for all parties to achieve the same goal in the agreed-upon manner; mutually beneficial

Question 3

I SA

Answer 3

Interconnection security agreement

This type of agreement is geared toward the information systems a partner Entities to ensure that the use of inter-organizational technology needs a certain security standards; legally binding

Question 4

RAID

Answer 4

Redundant array of independent disks

This is a set of vendor independent specifications that support redundancy and fault tolerance for configurations on multiple devices storage systems.

Question 5

RAID 0

Answer 5

Data is written across multiple storage devices a.k.a. stripping, increasing performance. There is no redundancy of data , so a failure of one device affects the entire array.

Question 6

RAID 1

Answer 6

Data is simultaneously replicated from one storage device to another I get a mirroring, decreasing performance. This provides redundancy, as data and I feel device may still be present on the mirrored device.

Question 7

RAID 5

Answer 7

Data is stripped across three or more disks with one extra block a redundancy called a parity block. this provides increased performance and ensures that data on one failed storage device can be reconstructed from the parity block and the other functional devices.

Question 8

RAID 6

Answer 8

This is the same as raid five except it uses one or more block of parity. This provides increased redundancy, as data onto field devices can be a reconstructed from the two parity blocks and the other functional devices.

Question 9

Non-persistence

Answer 9

Is the property by which a computing environment, typically a virtual one, is discarded once it has finished its assigned tasks.

Question 10

How do you enable persistence?

Answer 10

You can’t enable nonpersistence through the use of snapshots also known as checkpoints.

Question 11

Live boot

Answer 11

The operating system is not installed on the system storage device rather runs directly and ram

Question 12

High availability

Answer 12

The property that expresses how closely systems approach the goal of providing data availability 100% of the time while maintaining a high level of system performance.

An uptime rating of 99.9% or three nines is a very high level of availability, resulting in less than nine hours of downtime for a year. 49’s, or 99.99% uptime results in less than an hour of downtime for year but comes with an associate a proportional increase in cost.

Question 13

DAS

Answer 13

Direct attached storage

Question 14

NAS

Answer 14

Network attached storage

Question 15

SAN

Answer 15

Storage area network

Question 16

PGP

Answer 16

Pretty good privacy

Question 17

MIME

Answer 17

Multipurpose Internet mail X tensions

Question 18

GPG

Answer 18

GNU privacy guard

Question 19

Data sensitivity

Answer 19

Public, private, restricted, confidential

Question 20

Physical security controls

Answer 20

Deterrent
Preventative
Detective 
corrective
compensating 
technical
 administrative

Question 21

Man trap door

Answer 21

The system is also referred to as a dead man door, it is a system with the door at each end of a secure chamber.

Question 22

Data exfiltration

Answer 22

This is the process by which and I talk or text data that is stored inside of a private network and music to an extra no network, therefore the victim no longer has complete control over the data.

Question 23

Anomalies in event logs

Answer 23

Multiple consecutive authentication failures.

Unscheduled changes to the systems configuration.

Excessive or unexplained critical system failures or application crashes.

Excessive consumption of band with recorded in network device logs

Sequencing errors are gaps in the event log. And attacked and we tried to cover their tracks by deleting portions of the log or modifying the log.

Question 24

Forensic response procedure

Answer 24

Capture forensic image and memory
Examine network traffic and logs
Capture video
Take hashes
Take screenshots

Question 25

The order of volatility

Answer 25

Volatile to least volatile

1. CPU registers , CPU cache, and RAM
2. network caches and virtual memory
3. Hard drives and flash drives
4. CD-ROMs, DVD-ROMS and printouts

Question 26

COOP

Answer 26

Continuity of operations also known as business continuity. This is a collection of processes that enable an organization to maintain normal business operations in the face of some adverse event

Question 27

Disaster recovery process

Answer 27

Notify stakeholders
 begin emergency operations 
assess to damage
Assess the facility
Begin recovery process

Question 28

Order of restoration

Answer 28

This dictates what types of systems your prior choice in your recovery efforts. Not all systems are equal in the eyes of the organization.

Question 29

Recovery sites

Answer 29

hotsite
warm site
cold site

Question 30

Hot site

Answer 30

This is a fully configured alternate network that can be online quickly after disaster.

Question 31

Warm site

Answer 31

A location that is dormant or performs non-critical functions under normal conditions, but can be rapidly converted to a key operations site if needed.

Question 32

Cold site

Answer 32

This is a predetermined alternate location where network can be rebuilt after disaster.

Question 33

What are the different types of back ups?

Answer 33

Full back up
differential back up -all selected files that have changed since the last full backup are backed up

incremental back up-all files that have changed since the last full or incremental backup(which ever is the most recent)

Question 34

Data sovereignty

Answer 34

This describes the social political outlook of a nation concert in computing technology and information

Question 35

BCP

Answer 35

Business continuity plans

A policy that describes in ratifies the organizations overall business continuity strategy. It should identification of critical systems and components to ensure that such assets are protected. It should address infrastructure issues such as maintaining utility services, utilizing high-availability or fault tolerance systems that can withstand failure, and creating and maintaining data back ups.

Question 36

DRP

Answer 36

Disaster recovery plan. This is the Policy that describes in ratifies the organizations recovery strategy.

Question 37

IT contingency plan

Answer 37

This is a component of the BCP that specifies alternate IT procedures that you can switch over to you when you are faced with an attack or disruption of service leaving to a disaster for the organization.

Question 38

Back out contingency plan

Answer 38

This is it documented plan that includes specific procedures and processes that are applied in the event that a change or modification me to a system must be undone

Question 39

Succession plan

Answer 39

This ensures that all key business person I’ll have one or more designated back ups who can perform critical functions when needed.

Question 40

Fail over

Answer 40

This is a technique that ensures ever done a component, device, or application quickly and efficiently take over the functionality of an asset that has failed.

Question 41

Testing exercises

Answer 41

Walk-throughs, workshops, orientation seminars, tabletop exercises, functional exercises, full-scale exercises

Question 42

AAR/LLR

Answer 42

After action report, lessons learned report

This includes an analysis of events that can provide insight into how you may improve your response processes in the future.