Security Policies Flashcards
1
Q
Name two types of security threat and describe two operational procedures that protect companies from these threats.
A
Criminal vandalism/sabotage Hacking or data theft White collar crime Natural disasters (eg flooding) and fire Accidents and errors State-sponsored hacking Politically-motivated attacks or data breaches Distributed Denial of Service attacks Terrorism
2
Q
Describe two operational procedures that protect companies from these threats.
A
Operational procedures include:
make regular data back-ups;
update anti-virus software and firewalls;
have a plan for responding to natural or other disasters;
store data in different geographic locations;
have a recovery plan for restoring data if it is corrupted or lost;
enforce an employee code of conduct
regular training for IT staff
monitor network traffic for unusual activity
configure routers to detect and filter DDoS attacks