Set 1

Question 1

Backs up all files that have changed since the last full backup

Answer 1

Differential Backup

Question 2

What is the OSI Layer does connection between applications on each computer?

Answer 2

Layer 5 (Session)

Question 3

Default Subnet Mask for Class A Range

Answer 3

/8
255.0.0.0

Question 4

Refers to the process of settings all data bits to zero, effectively erasing the data

Answer 4

Zeroization

Question 5

How do worms spread from system to system?

Answer 5

Software Vulnerabilities/Exploits

Question 6

What is the 3-way handshake?

Answer 6

SYN, SYN-ACK, ACK
Between client & server

Question 7

Adverse

Answer 7

Preventing success or development; harmful

Question 8

Set of guidelines or rules that dictate how access control should be implemented

Answer 8

Policy

Question 9

Most common form of risk when buying insurance

Answer 9

Transference

Question 10

What OSI Layer do TCP & UDP Operate at?

Answer 10

Layer 4 (Transport)

Question 11

Provides automated log monitoring & analysis

Answer 11

Security Information and Event Management (SIEM) System

Question 12

Allows owner of resource to configure access rules. Full control to configure what subjects can access the object

Answer 12

Discretionary Access Control (DAC)

Question 13

An entity/resource that’s accessed by subject

Answer 13

Object

Question 14

Regulate access based on security labels assigned by central authority. More commonly used in the military and government

Answer 14

Mandatory Access Control (MAC)

Question 15

What is another name for host-based IDS/IPS products?

Answer 15

Endpoint Security Products

Question 16

Default Subnet Mask for Class C Range

Answer 16

/24
255.255.255.0

Question 17

Users, resources & environment conditions to make access decisions

Answer 17

Attribute-Based Access Control (ABAC)

Question 18

Backs up all files that have changed since the last backup of any type

Answer 18

Incremental Backup

Question 19

Management-oriented controls that provide directives and instruction aimed at people within the organization

Answer 19

Administrative

Question 20

A list of all subjects and their respective permissions for a specific object

Answer 20

Access Control List (ACL)

Question 21

What OSI Layer deal with transmitting & receiving bits?

Answer 21

Layer 1 (Physical)

Question 22

What OSI Layer transmits & delivers frame throughout a LAN based on physical MAC addresses?

Answer 22

Layer 2 (Data Link)

Question 23

Assigns access based on roles within an organization

Answer 23

Role-Based Access Control (RBAC)

Question 24

Defines the conditions under which access is allowed/denied

Answer 24

Rule

Question 25

Attack that uses a spoofed IP Address in the ICMP message so traffic is sent to the wrong location

Answer 25

Smurf Attack

Question 26

Default Subnet Mask for Class B Range

Answer 26

/16
255.255.0.0

Question 27

Stores all of the files on the system each time the backup process is run

Answer 27

Full Backup

Question 28

Emails sent to specific individuals/employees of organizations

Answer 28

Spear Phishing

Question 29

An entity that’s capable of accessing an object

Answer 29

Subject

Question 30

What OSI Layer is responsible for routing and route selecting network packets on logical IP addresses?

Answer 30

Layer 3 (Network)

Question 31

What logical address is assigned to devices connected to a network/Internet?

Answer 31

Internet Protocol (IP) Address

Question 32

Used to map IP addresses to MAC addresses on a LAN

Answer 32

Address Resolution Protocol (ARP)

Question 33

Network device used to enforce certain security rules that govern how traffic may flow

Answer 33

Network Firewall

Question 34

Cloud provider gives customers self-service access to a pool of infrastructure resource (network, server, storage, etc.)

Answer 34

Infrastructure as a Service (IaaS)

Question 35

Software service/application hosted by cloud provider and provided to customers

Answer 35

Software as a Service (SaaS)

Question 36

Cloud service provider gives customers access to platforms where they can develop, test & run code for applications developed in various programming languages

Answer 36

Platform as a Service (PaaS)

Question 37

Automated system that controls an individual’s ability to access one or more computer system resources, such as a workstation, network, application or database

Answer 37

Logical Access Control

Question 38

Information security strategy integrating people, technology, and operations capabilities to establish variable barriers across multiple layers and missions of the organization

Answer 38

Defense in Depth

Question 39

Management, operational and technical controls (i.e., safeguards or countermeasures) prescribed for an information system to protect the confidentiality, integrity and availability of the system and its information

Answer 39

Security Controls

Question 40

Centralized organizational function fulfilled by an information security team that monitors, detects and analyzes events on the network or system to prevent and resolve issues before they result in business disruptions

Answer 40

Security Operations Center

Question 41

Collecting and storing user activities in a log, which is a record of the events occurring within an organization’s systems and networks

Answer 41

Logging

Question 42

To protect private information by putting it into a form that can only be read by people who have permission to do so

Answer 42

Encrypt

Question 43

The process and act of converting the message from its plaintext to ciphertext

Answer 43

Encryption

Question 44

The total set of algorithms, processes, hardware, software and procedures that taken together provide an encryption and decryption capability

Answer 44

Encryption System

Question 45

The reverse process from encryption. It is the process of converting a ciphertext message back into plaintext through the use of the cryptographic algorithm and the appropriate key for decryption

Answer 45

Decryption

Question 46

The right of an individual to control the distribution of information about themselves.

Answer 46

Privacy

Question 47

System capabilities designed to detect and prevent the unauthorized use and transmission of information

Answer 47

Data Loss Prevention (DLP)

Question 48

A process and discipline used to ensure that the only changes made to a system are those that have been authorized and validated

Answer 48

Configuration Management

Question 49

Property that data has not been altered in an unauthorized manner

Answer 49

Data Integrity

Question 50

Event that actually or potentially jeopardizes the confidentiality, integrity or availability of an information system or the information the system processes, stores or transmits

Answer 50

Incident

Question 51

The process of detecting and analyzing incidents to limit the incident’s effect

Answer 51

Incident Response (IR)

Question 52

Documentation of a predetermined set of instructions or procedures to detect, respond to and limit consequences of a malicious cyberattack against an organization’s information systems(s)

Answer 52

Incident Response Plan (IRP)

Question 53

Actions, processes and tools for ensuring an organization can continue critical operations during a contingency

Answer 53

Business Continuity (BC)

Question 54

The documentation of a predetermined set of instructions or procedures that describe how an organization’s mission/business processes will be sustained during and after a significant disruption

Answer 54

Business Continuity Plan (BCP)

Question 55

In information systems terms, the activities necessary to restore IT and communications services to an organization during and after an outage, disruption or disturbance of any kind or scale

Answer 55

Disaster Recovery (DR)

Question 56

The processes, policies and procedures related to preparing for recovery or continuation of an organization’s critical business functions, technology infrastructure, systems and applications after the organization experiences a disaster

Answer 56

Disaster Recovery Plan (DRP)

Question 57

Any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image or reputation), organizational assets, individuals, other organizations or the nation through an information system via unauthorized access, destruction, disclosure, modification of information and/or denial of service

Answer 57

Threat

Question 58

An individual or a group that attempts to exploit vulnerabilities to cause or force a threat to occur

Answer 58

Threat Actor

Question 59

A threat actor carries out their objectives

Answer 59

Threat Vector

Question 60

Entirety of the policies, roles and processes the organization uses to make security decisions in an organization

Answer 60

Security Governance

Question 61

A model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction.

Answer 61

Cloud Computing

Question 62

The process of identifying and analyzing risks to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals and other organizations

Answer 62

Risk Assessment

Question 63

Lays out a process and timeline for actions in event a key executive/employee is lost to the organization

Answer 63

Succession Planning

Question 64

Deployment of UPS/generators, communication link redundancy, fire detection & suppression systems

Answer 64

Preventive Controls

Question 65

What OSI Model does a WAF operate at?

Answer 65

(Layer 7) Application

Question 66

Checks for available IP addresses from a pool and automatically assigns them to client devices

Answer 66

Dynamic Host Configuration Protocol (DCHP)

Question 67

Simplest and least expensive type of firewall and uses ACL to control traffic

Answer 67

Packet Filter

Question 68

Specialized software that limits the websites users can access

Answer 68

Web Filter

Question 69

Firewall on individual computer that allows or denies connections to that computer based on a set of rules

Answer 69

Host-Based Firewall

Question 70

Priorities to evaluate the impact of threats to the business

Answer 70

Qualitative Risk Analysis

Question 71

Hardware or software components that protect computing and network resources

Answer 71

Technical Controls

Question 72

Control functionality which describes the protection a control provides. Communicate expected behavior

Answer 72

Directive Controls

Question 73

An example of an administrative control

Answer 73

Security Awareness Training

Question 74

Biometric authentication uses what type of security control?

Answer 74

Technical Controls

Question 75

Separation of duties require job functions to be assigned so that one employee can’t commit fraud by himself since the critical job function is split between 2 or more employees

Answer 75

Segregation of Duties

Question 76

One department is responsible for governing, managing and configuring tools for access administration for all systems

Answer 76

Centralized

Question 77

Access control is managed by different departments/people for different systems throughout the organization

Answer 77

Decentralized

Question 78

Key component of detection and analysis phase of incident response plan

Answer 78

Reviewing Logs & Security Alerts

Question 79

Preparation | Detection and Analysis | Containment, Eradication, and Recovery | Post-Incident Activity

Answer 79

Incident Response Process

Question 80

What phase of the incident response process involves bringing systems and data back to normal operation?

Answer 80

Containment, Eradication, and Recovery

Question 81

Example of biometric (Type 3) authentication factor

Answer 81

Facial Recognition

Question 82

What phase of data lifecycle is data retained in order to comply with regulatory, legal, or other obligations?

Answer 82

Archive

Question 83

Output of information that is run through a hash function

Answer 83

Message Digest

Question 84

Backbone of security program. Lay out the requirements that everyone in the organization must follow

Answer 84

Security Policies

Question 85

Value that is used as input into a cryptographic algorithm that allows for encryption and decryption operations to take place to transform plaintext to ciphertext

Answer 85

Cryptographic Key

Question 86

Accuracy, consistency, and trustworthiness of data and systems

Answer 86

Integrity

Question 87

Altering data without proper authorization is a breach of _?

Answer 87

Integrity

Question 88

Method used as a protection against compromises of integrity?

Answer 88

Hashing