Security Controls

Question 1

A systematic evaluation of an organization’s security practices, policies, and controls to identify vulnerabilities, ensure compliance, and improve overall security posture.

Answer 1

Security Audit

Question 2

The process of converting data into a coded format (ciphertext) to prevent unauthorized access. It ensures confidentiality and requires a decryption key to revert to readable form.

Answer 2

Encryption

Question 3

A set of rules and procedures that dictate how an organization protects its assets, data, and systems from security threats. It defines roles, responsibilities, and acceptable use of resources.

Answer 3

Organizational Security Policy

Question 4

Tools that monitor network or system activity for malicious actions or policy violations. They alert administrators when potential threats are detected.

Answer 4

IDS (Intrusion Detection System)

Question 5

The practice of systematically managing and maintaining the consistency of hardware, software, and network settings. It helps prevent security misconfigurations and ensures systems are secure and up-to-date.

Answer 5

Configuration Management

Question 6

A network security device or software that monitors and controls incoming and outgoing traffic based on predefined security rules. It acts as a barrier between a trusted and an untrusted network.

Answer 6

Firewall

Question 7

A security control that acts as a safeguard or countermeasure implemented using technology (hardware or software) to protect systems, networks, and data from security threats.

Answer 7

Technical

Question 8

Encryption, Intrusion Detection Systems (IDSs), & Firewalls are examples of what type of Security Control?

Answer 8

Technical

Question 9

A type of Security Control that is:

1. Sometimes called logical security controls
2. Executed by Computer Systems
3. Implemented with Technology?

Answer 9

Technical

Question 10

A security control that acts as the administrative measures that focus on the planning, implementation, and management of an organization’s security strategy.

Answer 10

Managerial

Question 11

Security policies and procedures, Risk assessments, Security training programs, & Incident response plans are examples of what type of security control?

Answer 11

Managerial

Question 12

A type of Security Control that is:

1. Also known as administrative controls
2. Documented in written policies
3. Focused on protecting material assets

Answer 12

Managerial

Question 13

A security control that has procedures and practices that people perform to ensure day-to-day security. They are implemented to manage and protect an organization’s assets effectively

Answer 13

Operational

Question 14

Incident response processes, Backup and recovery practices, Patch Management, Configuration Management, & Monitoring and logging are examples of what type of security control?

Answer 14

Operational

Question 15

A type of Security Control that is:

1. Focused on the day-to-day procedures of an organization
2. Used to ensure that the equipment continues to work as specified
3. Primarily implemented and executed by people (as opposed to computer systems)

Answer 15

Operational

Question 16

A security control whose measures are designed to protect personnel, hardware, software, and data from physical threats, such as unauthorized access, theft, or natural disasters.

Answer 16

Physical

Question 17

Locks and keys, Security cameras (CCTV), Fences and gates, Security guards, Vestibules, Bollards/Barricades, & Security Guards are examples of what type of security control?

Answer 17

Physical

Question 18

A security control where measures are implemented to stop security incidents from occurring by proactively protecting systems, networks, and data.

Answer 18

Preventive

Question 19

Firewalls (block unauthorized traffic), Antivirus software (prevents malware infections), Encryption, Security training (educates employees to avoid risks) are examples of what type of security control?

Answer 19

Preventive

Question 20

A security control that is designed to discourage potential attackers or unauthorized actions by making the consequences or difficulty of an attack evident.

Answer 20

Deterrent

Question 21

Warning signs (e.g., “This area is under surveillance”), Fencing/Bollards, Guards on patrol, & Alarm systems are examples of what type of security control?

Answer 21

Deterrent

Question 22

A security control that is designed to identify and detect security incidents or breaches as they occur, allowing for a timely response and investigation.

Answer 22

Detective

Question 23

Intrusion Detection Systems (IDS), Security cameras (for monitoring and reviewing events), Log monitoring and analysis, Motion detectors, and Vulnerability Scanning are examples of what type of security control?

Answer 23

Detective

Question 24

A type of security control that is designed to fix or restore systems after a security incident has occurred, minimizing damage and preventing recurrence.

Answer 24

Corrective

Question 25

Patching vulnerabilities after an attack, Restoring data from backups, Implementing new security policies after a breach, and Removing malware or unauthorized software are examples of what type of security control?

Answer 25

Corrective

Question 26

A type of security control that is implemented to achieve the same security objective when the primary control is not feasible or effective. These are used as substitutes to address gaps or weaknesses.

Answer 26

Compensating

Question 27

Backup Power Systems, MFA, Application Sandboxing, & Network Segmentation are examples of what type of security control?

Answer 27

Compensating

Question 28

A type of security control that guides or instructs personnel on how to behave, outlining expected security practices and policies to promote compliance and minimize risk.

Answer 28

Directive

Question 29

Security policies and procedures, Employee training programs, Access control lists (defining who can access what), & Security awareness campaigns are examples of what type of security control?

Answer 29

Directive

Question 30

A set of predefined procedures an organization follows to detect, respond to, and recover from a cybersecurity incident or breach.

Answer 30

IRP (Incident Response Plan)

Question 31

A document that outlines the rules and guidelines for using an organization’s network, devices, and systems. It defines what is acceptable and unacceptable usage to ensure security and compliance.

Answer 31

AUP (Acceptable Use Policy)

Question 32

A tool used to monitor network or system traffic for suspicious activity or potential threats. It alerts administrators when it detects abnormal patterns that might indicate an intrusion.

Answer 32

IDS (Intrusion Detection System)

Question 33

A security mechanism that requires users to provide two or more verification factors to gain access to a system, typically combining something the user knows (password), something the user has (phone or token), and something the user is (biometric data).

Answer 33

MFA (Multi-Factor Authentication)

Question 34

A security tool designed to detect and actively block or prevent potential threats or attacks in real-time. It works by analyzing traffic for signatures or patterns of known attacks and taking action to stop them.

Answer 34

IPS (Intrusion Prevention System)

Question 35

A framework for managing digital keys and certificates used to secure communications and verify identities. It enables encryption, digital signatures, and secure email by utilizing public and private key pairs.

Answer 35

PKI (Public Key Infrastructure)

Question 36

The security framework used to manage user access and track activity on a system by:

1. Verifying the identity of a user or device.
2. Determining the access rights or permissions of a user.
3. Tracking user activity and maintaining logs for auditing.

Answer 36

AAA (Authentication, Authorization, and Accounting)

Question 37

A regulation in the European Union that governs the collection, storage, and protection of personal data. It aims to enhance privacy rights and give individuals more control over their data.

Answer 37

GDPR (General Data Protection Regulation)

Question 38

A model that outlines the basic principles of information security:

1. Ensuring that information is only accessible to authorized individuals.
2. Ensuring that data is accurate, complete, and unaltered.
3. Ensuring that data and systems are accessible and usable when needed.

Answer 38

CIA Triad (Confidentiality, Integrity, and Availability)

Question 39

A security principle that ensures that once a transaction or communication has been made, the sender cannot deny or dispute their involvement. It provides proof of the origin and integrity of data, often through digital signatures or logs.

Example: Digital signatures in emails or contracts, Audit trails and logs in systems

Answer 39

Non-Repudiation

Question 40

A user account with limited permissions to perform basic tasks, such as running applications and accessing files. It cannot make system-wide changes or modify security settings.

Answer 40

Standard User Account

Question 41

An account used by multiple individuals to access a system or service, typically with common credentials. This type of account lacks individual user identification, making it harder to track activities or assign responsibility.

Answer 41

Shared Account

Question 42

A limited access account designed for temporary or one-time use. It allows the user to access certain resources but with restricted permissions and no ability to make system changes.

Answer 42

Guest User Account

Question 43

A specialized account used by services, applications, or system processes to perform tasks automatically. These accounts usually have elevated permissions but are restricted to specific functions.

Answer 43

Service Account

Question 44

An authentication protocol used to verify the identity of a user or device by challenging it with a random value and requiring a hashed response. It operates using periodic challenges to ensure continuous security.

Answer 44

CHAP (Challenge Handshake Authentication Protocol)

Question 45

A protocol that provides centralized authentication, authorization, and accounting for network devices. It uses encryption for the entire communication between the client and server.

Answer 45

TACACS+ (Terminal Access Controller Access-Control System Plus)

Question 46

A simple, insecure authentication protocol where a password is sent in plaintext during the authentication process. It is rarely used today due to its vulnerability to interception.

Answer 46

PAP (Password Authentication Protocol)

Question 47

A protocol used for remote user authentication, authorization, and accounting. It is commonly used in networking to manage access to internet services or network resources, with encryption applied only to the password.

Answer 47

RADIUS (Remote Authentication Dial-In User Service)

Question 48

A variant of CHAP developed by Microsoft for Windows networks. It provides stronger encryption and challenge/response authentication, but is still considered less secure than modern alternatives.

Answer 48

MS-CHAP (Microsoft Challenge Handshake Authentication Protocol)

Question 49

A unique identifier assigned to each device on a network, allowing it to communicate with other devices. It can either be IPv4 (32-bit) or IPv6 (128-bit).

Answer 49

Internet Protocol (IP) address

Question 50

A unique identifier assigned to the network interface card (NIC) of a device. It is used for communication within a local network and is typically a 48-bit hexadecimal address.

Answer 50

MAC (Media Access Control address) address

Question 51

The use of unique physical or behavioral characteristics to verify an individual’s identity. Examples include fingerprint scanning, facial recognition, iris scanning, and voice recognition.

Answer 51

Biometrics

Question 52

Electronic documents used to prove the ownership of a public key. They are issued by a trusted Certificate Authority (CA) and contain information about the key, the identity of the certificate holder, and the CA’s signature to verify the authenticity of the certificate.

Examples: SSL/TLS certificates for websites and Email encryption certificates

Answer 52

Digital Certificate