Security Operations and Administration

Question 1

What does a business continuity plan do?

Answer 1

Provide strategic planning and direction to protect the business’s ability to function after a disruption

Question 2

What is confidentiality?

Answer 2

Keeping sensitive, private, or proprietary data from being revealed to or accessed by an unauthorized subject

Question 3

Describe the difference between confidentiality and privacy

Answer 3

Confidentiality is about keeping information secret

Privacy is about choosing who can enter into one’s life or property

Question 4

What is due care?

Answer 4

Taking steps to ensure that all of your responsibilities can be accomplished satisfactorily

Question 5

What is due diligence?

Answer 5

Checking to make sure that all of your due care tasks are actually getting the job done correctly and completely

Question 6

What are mantraps?

Answer 6

Physical security controls that can restrict entry to a protected area

Question 7

What are phishing attacks most often used to do?

Answer 7

Establish initial access to the target system?

Question 8

Describe the difference between safety and reliability

Answer 8

Safety requires that when system fails, they do not harm other systems, people, or property. Reliability requires them to produce accurate, on time answers as and when required

Question 9

Security for collaboration environments most depends on what?

Answer 9

Education and training

Question 10

What kinds of risks can OT systems pose to IT systems, and vice versa?

Answer 10

Any interconnections provides a path across the security boundary between these systems

Question 11

What are the different categories of security control functions?

Answer 11

1. Directive
2. Deterrent
3. Preventative
4. Detective
5. Reactive
6. Corrective
7. Compensating
8. Recovery

Question 12

What is the difference between a corrective control and a compensating control?

Answer 12

Corrective controls restore or reset the system to its proper state

Compensating controls assist the actions controls, or acts as substitutes for those controls that cannot be directly implemented for various reasons

Question 13

What is a zero-trust architecture as a security model?

Answer 13

A combination of microsegmentation of networks, stronger authorization tests for resource use, stronger identity management, and behavioral analytics

Question 14

How do operational technologies (OT) differ from information technologies?

Answer 14

OT use information from physical sensors to make physical actions happen, like opening a valve or moving a mechanism. It can directly damage property or injure/kill people

IT systems move, shape, store, create, and share information. Does not directly interact with the physical world. It would need an OT endpoint system (ex. UAV, robots)