Security Flashcards
What does the term security posture refer to?
The term security posture refers to cybersecurity policies and controls, as well as how well you can predict, prevent, and respond to security threats.
What is Azure Security Center?
Azure Security Center is a monitoring service that provides visibility of your security posture across all of your services, both on Azure and on-premises.
What does SIEM stand for?
security information and event management
What is Microsoft’s cloud-based SIEM system?
Azure Sentinel. It uses intelligent security analytics and threat analysis.
What are Azure Sentinel capabilities?
AI security
- Collect cloud data at scale
- Detect previously undetected threats
- Investigate threats with artificial intelligence
- Respond to incidents rapidly
How is your Azure Security Center limited with a free tier subscription?
While you can use a free Azure subscription tier with ASC, it is limited to assessments and recommendations of Azure resources only.
What are the three main defense techniques against malicious input being entered into your applications?
- validate input
- encode output
- create parameterized queries
Why should you always encode your output?
This design principle will make sure that everything is displayed as output and not inadvertently interpreted as something that should be executed, which is another common attack technique that is referred to as “Cross-Site Scripting” (XSS).
What does a WORM state mean?
Write once read many (WORM) describes a data storage device in which information, once written, cannot be modified. This write protection affords the assurance that the data cannot be tampered with once it is written to the device.
What is a region pair?
Two regions close to each other become a pair. These pairs are never updated at the same time, and if both regions do down because of an outage, one region will be prioritized to get back up and running.
Will Microsoft ever transfer your data to a third party?
No never.
Azure Data Lake Storage is build on …
It’s built on Azure Blob storage, so it inherits all of its security features
What is a single instanced key?
Only one key exists.
What are versioned keys?
A key is an object with a primary (active) key, and a collection of zero, one or more secondary (archived) keys created when keys are rolled (renewed).
What is the difference between management plane and data plane of Azure key vault?
Key Vault access has two facets: the management of the Key Vault itself, and accessing the data contained in the Key Vault. Documentation refers to these facets as the management plane and the data plane.