Security Flashcards

1
Q

what is a firewall?

A

A set of rules that define what traffic can and cannot access the devices and services in your network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Firewall Characteristics?

A

1) firewalls can be hardware or software.
2) They can suit any network or host.
3) They are critical parts of your security.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is DDoS?

A

Distributed Denial of service.

* Lots of nodes targeting a single website / URL, the goal of which is to make the target become unavailable.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What does NSG stand for?

A

Network Security Group.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the NSG?

A

A resource level firewall that can be attached to a virtual network, subnet or network interface.

An NSG determines who can access the resources attached to it, using ingress and egress traffic rules.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are Application Security Groups?

A

This is an extension of the NSG.

  • It focuses on the protection and security of an application rather than an IP endpoint.
  • You can group VMs and virtual networks into logical application groups and apply an application security group.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is Azure Security Centre?

A

It is has been rebranded as Microsoft Defender for cloud

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Characteristics of Azure Security Centre?

A

It is an alerting and detection portal in the Azure Portal.

  • Agents are deployed on VMs to provide data to the Centre.
  • It supports Hybrid setups.
  • Attack and Anomaly Detection.
  • Policy and Compliance Metrics.
  • Security score for your Azure Environment.
  • Integrates with other cloud providers.
  • Alerts on resources that are not secure
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How to use the Azure Security Centre?

A
  1. Define policies (Azure can provide some templates).
  2. Protect Resources (monitor policies).
  3. Respond - Respond to Security alerts, if need be revise/define new policies.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the Azure Key Vault?

A

An Azure Keyword and Password management solution.

  • It allows you to enable access to applications.
  • Azure Keyvault hardware is secure as well.
  • Applications are isolated to prevent unnecessary password sharing.
  • Support scaling.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is Azure Information Protection?

A

It enables the securing sharing of data to internal and outside entities.

  • works with O365
  • Data must be classified (policy or manual)
  • It allows you to track activity with regards to sharing.
  • You can control who can edit, view or print.
  • Integrates with O365, Teams, SharePoint etc.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is Microsoft Defender for Identity?

A

Users are unreliable and untrustworthy.

  • Monitors user and activity in your network.
  • Creates baselines for user activity.
  • Abnormal activity creates alerts.
  • Defender for Identity will suggest security changes to increase security.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is Azure Sentinel?

A

This is Microsoft’s SIEM Tool.

  • data is collected, aggregated, normalised and ingested by Azure.
  • Data is analysed anomalies and detections are escalated.
  • leverages behavioural Analytics (AI)
  • AWS Integration.
  • cloud Scale.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are Azure Dedicated Hosts?

A

Designed to meet dedicated hardware / server requirements.

  • There is hardware isolation.
  • Only companies run data on the hardware is you.
  • Can be expensive.
  • makes use of other cloud technology.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What does Microsoft Defender for Identity Protect against?

A

1) Reconnaissance - users searching for other user info.
2) Brute Force - Password guessing attempts.
3) Increased Privs - Attempts from users to gain additional privs.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What are the pricing options for Key Vault ?

A

1) Standard.

2) Premium (includes support for HSM backed keys)