Security Pillar Flashcards
What focus area does Managing human and machine identities fall under
Identity and Access Management
What focus area does Detective Controls fall under
Detection
Give three examples of detective controls
Lifecycle controls to establish operational baselines
Internal auditing to examine controls
Automated alerting
What focus area does Automating misconfiguration detection and response fall under
Detection
What is an example of a Security best practice?
Use a badge to allow access
Archive all log files immediately
Review security events monthly
Automate security responses
Automate security responses
What focus area does control traffic at all layers fall under ?
Infrastructure protection
What focus area does Use managed services fall under
Infrastructure Protection
What are two examples of security best practices in infrastructure protection?
Enable SSH login for root
Have layered network protection
Use one account for all activities
Enable people to perform actions at a distance
Have layered network protection
Enable people to perform actions at a distance
Define Data Protection
Identifying and classifying the data you have, and then using controls and patterns to keep your data confidential while preserving its integrity and availability at rest and in transit
What focus area does Encrypt data in transit fall under
Data protection
What focus area does Keep people away from data fall under
Data Protection
Define Incident Response
Hoe the processes need to be in place to respond to and mitigate the potential impact of security incidents
What focus area does Templated “Clean Rooms” fall under
Incident Response