The Security: General VIEW

Question 1

what is the security in general View?

Answer 1

Security is the condition of being protected from any harm, danger, unauthorized access, and the measures taken to ensure safety, stability and protection from any potential vulnerabilities, threats, attacks and risks

Question 2

What is security designed for?

Answer 2

security is designed to protect the assets

Question 3

Security is designed to protect the assets from what?

Answer 3

to protect it from various types of Risks: including (Damage, misuse or unauthorized access)

Question 4

why is security important?

Answer 4

1- protection from threats
2- safeguarding assets
3- maintaining trust and reputation
4- compliance with regulations
5- preventing financial loss
6- security, in its broadest sense

Question 5

explain: Security is important to protect from threats ?

Answer 5

Security protects against a variety of risks, from physical attacks and theft to cyberattacks and data breaches

Question 6

explain: Security is important to safeguarding assets?

Answer 6

it helps preserve the confidentiality, integrity and availability of critical assets, whether its data, infrastructure, or intellectual property

Question 7

explain: Security is important to maintaining trust and reputation ?

Answer 7

Effective security practices build trust with customers, partners, and stakeholders, as they know that their information and assets are being protected

Question 8

explain: Security is important to Compliance with regulations?

Answer 8

Many industries have security requirements to protect personal data and ensure compliance with laws.

Question 9

explain: Security is important to prevent financial loss?

Answer 9

security measures help avoid costly breaches, legal consequences , and loss of business due to downtime, damage, or theft.

Question 10

explain: Security is important in its broadest sense?

Answer 10

it is about ensuring that systems, assets and individuals are protected from various risks and threats.

Question 11

What is the goal of security?

Answer 11

the goal of Security is to maintain a safe and stable environment, mitigate risks, and ensure that important assets are safeguarded from harm or unauthorized access

Question 12

What are the key objectives of security

Answer 12

PDRR
1- prevention
2- Detection
3- Response
4- Recovery

Question 13

Key objectives of security
What do we mean by the key (Prevention)

Answer 13

The proactive measures taken to stop security incidents or breaches before they occur, This includes using security protocols, firewalls, encryption, and physical barriers

Question 14

Key objectives of security
What do we mean by the key (Detection)

Answer 14

The ability to identify when a security threat or breach is occurring. This includes monitoring systems for unusual activity, setting up alerts, and using intrusion detection systems (IDS)

Question 15

Key objectives of security
What do we mean by the key (Response)

Answer 15

The actions taken to address and mitigate the effects of security breach or attack, it involves having a clear incident response plan and being able to take immediate action to contain and resolve issues.

Question 16

Key objectives of security
What do we mean by the key (Recovery)

Answer 16

The process of restoring normal operations after a security breach or disaster. this involves data backup, disaster recovery plans, and business continuity strategies to minimize downtime and loss

Question 17

The term assets refers to ?

Answer 17

Anything of value (Resources) that needs to be protected from potential threats, risks, or harm

Question 18

there are two types of assets ?

Answer 18

1-Tangible (Physical)
2- intangible ( digital or intellectual)
-they can be critical to the functioning an organization, system, or individual.

-protecting assets is a central goal of any security strategy

Question 19

Losing or damaging these assets could lead to what?

Answer 19

1- Significant financial loss
2- reputational damage
3- operational failure

Question 20

in security the distinction between Tangible and Intangible assets relates to what ?

Answer 20

relates to their physical presence and how they are protected

Question 21

what are the Tangible assets?

Answer 21

Tangible assets : These are physical, material objects that can be touched or measured

Question 22

Examples of the Tangible assets?

Answer 22

-Hardware: Servers, Computers, network devices
-Facilities: Data centers, office buildings
-Physical documents: Printed contracts or blueprints

Question 23

Mention the security measures for the tangible assets?

Answer 23

-Physical security: Locks, surveillance cameras, and access control
-Environmental controls: Fire suppression, temperature regulation
-Insurance to cover physical loss or damage

Question 24

What are the Intangible assets?

Answer 24

These are non-physical resources that provide value but cannot be touched

Question 25

Examples of the Intangible assets?

Answer 25

-Data: Customer information, intellectual property, trade secrets
-Digital assets: software, databases, cryptographic keys
-Brand reputation: Market perception and goodwill
-Compliance: patents, licenses, and legal rights

Question 26

Mention the security measures for the Intangible assets?

Answer 26

-Cybersecurity: Firewalls, encryption, intrusion detection systems
-Data backups and disaster recovery
-Intellectual property protection: Copyrights, trademarks, and policies
-Risk management: Reputation monitoring and legal strategies

Question 27

Types of assets that should be secure?

Answer 27

1-Information assets
2-physical assets
3-Digital assets
4-Network assets
5-Human assets

Question 28

in the information assets, the data should be secure in 3 regions?

Answer 28

1-Data at Rest: stored data such as databases
2-Data at Transit: Data being transmitted over networks
3-Data in use: Data actively being processed by applications

Question 29

There are two types of physical assets mention them?

Answer 29

-Hardware: Servers, workstations, network devices, and storage devices
-Facilities: Buildings, data centers, and physical storage locations

Question 30

there are 3 types of Digital assets mention them?

Answer 30

-Applications: software and operating systems
-intellectual property: source code, designs, algorithms
-Configuration files: critical system configurations and network setup details

Question 31

There are two types of the Network assets mention them?

Answer 31

-network infrastructure: Routers, switches, firewalls, and other connected devices
-Cloud Resources: virtual machines storage buckets, and APIs

Question 32

There are two types of the Human assets mention them?

Answer 32

-personnel: Employees, contractors, and third-party partners
-Identify and access credentials: Usernames, passwords, and authentication tokens

Question 33

Protecting assets is crucial for several reasons

Answer 33

1- Prevention of loss
2-Preserving confidentiality, integrity
3-Business continuity
4-Reputation management

Question 34

one of the reasons to protect the assets is (prevention of loss) explain?

Answer 34

Losing or damaging critical assets can lead to financial losses, legal consequences or business failure

Question 35

one of the reasons to protect the assets is (Preserving confidentiality, integrity) explain?

Answer 35

For sensitive data or intellectual property, protecting assets ensures that only authorized individuals have access to valuable or private information

Question 36

one of the reasons to protect the assets is (Business continuity) explain?

Answer 36

By protecting physical, digital, and human assets, organizations can continue their operations without disruption and recover quickly in case of an incident

Question 37

one of the reasons to protect the assets is (Reputation management) explain?

Answer 37

Safeguarding your assets especially reputation helps maintain public trust and credibility, which are essential for long term success

Question 38

(Information security, cybersecurity, internet security, network security , web security) How they relate to one another?

Answer 38

1- information security as the foundation: (Interconnection), IS is the overarching discipline aimed at protecting data in all forms, making it the foundation for all other types of security
2-cybersecurity: Focuses on protecting digital data (subset of IS)
3-Internet Security: Secures online communication and data, ensuring information is not intercepted or altered during internet activities
4-Network security: prevents unauthorized access to the networks where information flows
5-Web Security: protects web applications and websites that store or process sensitive information

Question 39

define Cybersecurity?

Answer 39

Cybersecurity is a broader concept that includes protecting all digital infrastructure from cyber threats its a subset of information security

Question 40

cybersecurity encompasses aspects of ?

Answer 40

-Internet
-network
-web security

Question 41

what do we mean by (Internet security)?

Answer 41

Addresses threats arising specifically from internet-based activities (eg: phishing or malicious websites) which are part of broader cybersecurity strategies

Question 42

what do we mean by (Network security)?

Answer 42

A key subset of cybersecurity, as networks are critical pathways for cyberattacks

Question 43

What do we mean by (Web security)?

Answer 43

Ensures that websites and applications, which are common cyberattack targets, are secure

Question 44

Network security serves as what ?

Answer 44

Network security serves as the backbone for protecting all other digital communication and system

Question 45

when the information security is compromised?

Answer 45

the information security is compromised as data in transit can be intercepted

Question 46

when cybersecurity is weakened?

Answer 46

cybersecurity is weakened since many cyberattacks exploit network vulnerabilities

Question 47

when the (Internet security) and the (Web security) are ineffective?

Answer 47

when the (Internet security) and the (Web security) are ineffective if attackers can compromise the underlying network

Question 48

Web security supports two things from the FIGURE?

Answer 48

1-Internet security
2-Information security

Question 49

Web security focuses on what?

Answer 49

Web security focuses on protecting websites and web applications, which are often gateways to sensitive information

Question 50

Internet security relies on what?

Answer 50

Internet security relies on secure web environments to protect online users

Question 51

Information security ensures what?

Answer 51

Information security ensures sensitive data submitted through web applications is safe

Question 52

What is the interaction between Cloud security and information security?

Answer 52

Protects sensitive data stored or processed in the cloud by applying encryption, access control, and backup strategies

Question 53

What is the interaction between Cloud security and Cybersecurity?

Answer 53

Defends cloud systems against cyber threats like ransomware, malware, and unauthorized access

Question 54

what is the interaction between cloud security and internet security?

Answer 54

Secures internet- based access to cloud platforms by encrypting data in transit and protection against phishing

Question 55

what is the interaction between cloud security and Network security?

Answer 55

Secures the connections between users, on-premises systems, and cloud environments by using firewalls, VPNs, and network segmentation

Question 56

what is the interaction between cloud security and Web security?

Answer 56

Protects web applications hosted in the cloud from vulnerabilities like cross-site scripting (XSS) or SQL injection.

Question 57

What do we mean by this phrase?
(Hardening systems and Resources)

Answer 57

-Security is about making it harder to exploit vulnerabilities
-The goal is to deter attackers by increasing effort and reducing reward

Question 58

What do we mean by this phrase?
(Discouraging Attackers)

Answer 58

-When security layers are strong and complex, attackers are less likely to succeed
-Most attackers will give up if the effort outweighs the potential gain

Question 59

Explain (No such thing as perfect security) phrase?

Answer 59

Absolute security is unattainable, but adequate security is achievable

Question 60

what is the Layered security approach (1-Network, 2-Host, 3-Application, 4-Data)

Answer 60

Combining multiple layers of protection creates a stronger defense, if one layer fails, others compensate, reducing overall risk.