CH18 - Course Quiz

Question 1

The ___________ defines who may access the Network, how they may access the Network, and what they can access?

Network Access Policy
Service-Level Agreement (SLA)
Multi-Source Agreement (MSA)
Statement of Work (SoW)

Answer 1

Network Access Policy

Question 2

The main method by which a first responder secures an area is by having their presence at the scene?

True
False

Answer 2

True

Question 3

Which secondary location is a complete duplicate of the Primary Site?

local
physical
hot
cold

Answer 3

hot

Question 4

International export controls restrict the export of some kinds of hardware and software along with more obvious things like weapons to specific countries?

True
False

Answer 4

True

Question 5

With ____________ deployment, employees are presented with a Whitelist of preapproved applications that they may install on a corporate device?

Corporate-Owned, Personally Enabled (COPE)
Corporate-Owned, Business Only (COBO)
Personally-Owned, Personally Enabled (POPE)
Chose Your Own Device (CYOD)

Answer 5

Corporate-Owned, Personally Enabled (COPE)

Question 6

Which tool is an Open-Source tool for Penetration Testing pretty much every aspect of Wireless Networks?

Kali Linux
Aircrack-ng
Armitage
OpenVAS

Answer 6

Aircrack-ng

Question 7

The __________________ factor indicates the length of time a device is expected to last in operation?

mean time between failures (MTBF)
mean time to repair (MTTR)
mean time to vulnerability (MTTV)
mean time to failure (MTTF)

Answer 7

mean time to failure (MTTF)

Explanation:
Mean Time to Failure (MTTF) - Length of time a device is expected to last in operation.

Mean Time between Failures (MTBF) - Applies to hardware components, manufacturer’s best guess regarding how much time will past between major failures of the component.

Mean Time to Repair (MTTR) - The amount of time it takes to fix a system after it fails.

Question 8

Network access policies may be embedded into policies such as VPN Policy, Password Policy, Encryption Policy, and many others?

True
False

Answer 8

True

Question 9

Which two tools dominate the Vulnerability Testing arena?

Aircrack-ng and Metasploit
Nessus and OpenVAS
Kali Linux and Microsoft Baseline Security Analyzer (MBSA)
Nmap and Microsoft Baseline Security Analyzer (MBSA)

Answer 9

Nessus and OpenVAS

Question 10

If the disaster requires actions offsite from the primary infrastructure, it is under the jurisdiction of ________________?

business continuity
disaster recovery
change management
incident response

Answer 10

business continuity

Question 11

Business continuity handles everything related to recovery infrastructure from a disaster except incidents that require moving part of the organization’s business offsite?

True
False

Answer 11

False

Question 12

If an incident can no longer be contained, causing significant damage or danger to the immediate infrastructure, it is covered under __________?

change management
disaster recovery
business continuity
incident response

Answer 12

disaster recovery

Question 13

Anything that negatively affects an organization, that hurts or comprimises its people, systems, or ability to function as an entity, is a ___________________?

vulnerability
asset
incident
contingency

Answer 13

incident

Question 14

It doesn’t always happen this way, but its best for everyone involved if there’s a smooth ______________ procedure to ensure new members of an organization get everything they need to settle in efficently and a careful ___________________ procedure to reverse these when they leave the organization?

offboarding, onboarding
continuity, contingency
risk, recovery
onboarding, offboarding

Answer 14

onboarding, offboarding

Question 15

Which term is used for all the customized settings for a Router, Switch, Load Balancer, Intrusion Detection/Prevent System (IDS/IPS), Firewall, or other Network Device?

computer forensics
configuration data
contingency plans
sucession plans

Answer 15

configuration data

Question 16

Every asset has some weakness that makes it potentially susceptible to a threat?

True
False

Answer 16

True

Question 17

Which is a legal document that prohibits the signer from disclosing any company secrets learned as part of his or her job?

Multi-Source Agreement (MSA)
Nondisclosure Agreement (NDA)
Service-Level Agreement (SLA)
Statement of Work (SOW)

Answer 17

Nondisclosure Agreement (NDA)

Question 18

A proper assessment of a backup plan records how much data might be lost and how long it would take to restore?

True
False

Answer 18

True

Question 19

Which document defines the duties parties commit to perform for each other and a time frame for the commitment?

Memorandum of Understanding (MOU)
Service-Level Agreement (SLA)
Multi-Source Agreement (MSA)
Statement of Commitment (SOC)

Answer 19

Memorandum of Understanding (MOU)

Question 20

With a _________________ site, everything of note is stored in the cloud, including servers, client machine images, applications, and data?

physical
cloud
hot
cold

Answer 20

cloud

Question 21

Most restored systems have the same amount of lost data based on when the last backup took place?

True
False

Answer 21

True

Question 22

By following good patch management procedures, you can roll back or downgrade by removing a patch?

True
False

Answer 22

True

Question 23

Disaster recovery starts with a plan and includes ____________?

change management
real-time patch management
data backups
full replication of all data

Answer 23

data backups

Question 24

Firmware updates enable programming updates that make network devices more efficient, more secure, and more robust?

True
False

Answer 24

True

Question 25

Which tool is a Port Scanner?

OpenVAS
Nmap
Nessus
Aircrack-ng

Answer 25

Nmap

Question 26

End users are probably the primary source of security problems for any organization?

True
False

Answer 26

True

Question 27

An organization offering ___________________ options provides employees Free chocie within a catalog of Mobile Devices?

Choose Your Own Device (CYOD)
Personally-Owned, Personally Enabled (POPE)
Corporate-Owned, Business Only (COBO)
Corporate-Owned, Personally Enabled (COPE)

Answer 27

Choose Your Own Device (CYOD)

Question 28

Business continuity planning deals with the concept of backing up sites?

True
False

Answer 28

True

Question 29

Which document is arguable the most famous of all security policies as this is the one document that pretty much everyone who works anywhere is required to read, and in many cases sign, before they can start work?

forensics report
acceptable use policy
exit plan
material safeties data sheet (MSDS)

Answer 29

Acceptable Use Policy (AUP)

Question 30

Which secondary location will generally take more than a few days to bring online?

local
warm
cold
hot

Answer 30

cold

Question 31

____________________, from Tenable Network Security, is arguably the First truly comprehensive Vulnerability Testing tool that has been around for almost two decades?

Answer 31

Nessus

Question 32

A _________________________ is a document between a customer and a service provider that defines the scope, quality, and terms of the service to be provided?

Answer 32

Service-Level Agreement (SLA)

Question 33

The _________________ policy defines what is and what is not acceptable to do on an organization’s computers?

Answer 33

Acceptable Use

Question 34

Instead of adding access to the customer database for every sales representative’s account, a ________________ approach would establish a sales-representative role, associate each representative’s account with the role, and assign all of the necessary privileges to the role?

Answer 34

role based access

Question 35

A _________________ is in essence a legal contract between a vendor and a customer?

Answer 35

Statement of Work (SoW)

Question 36

The _______________ factor indicates the length of time a device is expected to last in operation?

Answer 36

Mean Time to Failure (MTTF)

Explanation:
Mean Time to Failure (MTTF) - Length of time a device is expected to last in operation.

Mean Time between Failures (MTBF) - Applies to hardware components, manufacturer’s best guess regarding how much time will past between major failures of the component.

Mean Time to Repair (MTTR) - The amount of time it takes to fix a system after it fails.

Question 37

__________________ simply means identifying people who can take over certain positions (usually on a temporary basis) in case the people holding those critical positions are incapacitated or lost in an incident?

Answer 37

Succession Planning

Question 38

A ______________ sets an upper limit to how much lost data the organization can tolerate if it must restore from a backup, effectively dictating how frequently backups must be taken?

Answer 38

Recovery Point Objective (RPO)

Question 39

Incidents that take place within the organization that can be stopped, contained, and remediated without outside resources are handled by ______________ planning?

Answer 39

incident response

Question 40

The process of creating change in your infrastructure in an organized, controlled, safe way is called _______________?

Answer 40

Change Management

Question 41

A ________________________ is an event that disables or destroyes substantial amounts of infrastructure?

Answer 41

disaster

Question 42

Briefly describe the purpose of a Memorandum of Understanding (MOU)?

Answer 42

A document agreement that defines the duties between 2 parties conducting occasional business where a legal contract wouldn’t be appropriate.

Question 43

Describe the two aggressive and powerful comprehensive Vulnerability testers that dominate the field, Nessus and OpenVAS?

Answer 43

Nessus - the first truly comprehensive Vulnerability testing tool from Tenable Network Security and is Free to Home Users and requries a Subscription for commercial use.
OpenVAS is an Open Source fork of Nessus and is considered to be superior by many in the security field.

Question 44

Briefly identify three items that should be included when documenting change?

Answer 44

Network (Configurations) - Such as Server, Router configurations and so on.
(Additions) to the Network - Such as additional Servers, Switches, and so on.
Physical (Locations) Changes - Such as moved workstations, relocated Switches, and so on.

Question 45

How do organizations use Business Continuity Planning (BCP)?

Answer 45

To detail risks to critical systems, cost to replace or repair such systems, and how to make those replacements or repairs happen in a timely fashion.

Question 46

Describe Aircrack-ng?

Answer 46

An Open Source tool for Pentesting pretty much every aspect of Wireless Networks.

Question 47

Distinguish between a Warm Site and a Hot Site included in a Business Continuity Plan?

Answer 47

Warm Site starts with the same components as a Cold Site, but adds Computers loaded with software and functioning servers, a complete hardware infrastructure. Warm Site lacks current data and may not have functioning Internet/Network Links. Bringing this site up to speed may start with activating your Network Links and loading recent backups, may take a day or two to bring online.

Hot Site has everything a Warm Site does, but also includes very recent backups. It might need just a little data restored but in many cases a Hot Site is a complete duplicate of the primary site. A Proper Hot Site should only take a few hours to bring online.

Question 48

What is Kali Linux?

Answer 48

Specialized Linux Distro with the best, most recent and powerful Tools for Security Professionals, Pentesters and Ethical Hackers.

Question 49

Identify and elaborate on the important steps that take place in almost every scenario of a Network Patch environment?

Answer 49

Research - It’s important to research the Patch to verify that it is going to do what you need it to do and that people who have already installed the patch aren’t having problems.

Test - Always a good idea to test patches on a test system when possible.

Configuration Backups - Backing up configurations is critical, especially when backing up firmware in the event something bad happens, this will allow you to recover quicker.

Question 50

Briefly describe the premise on which IT Security is based?

Answer 50

That somewhere, at some time, something will attack some part of your Network. The attack may take as many forms as your paranoia allows.

Question 51

Briefly list the five items that should be included in a good change request?

Answer 51

Type of Change
Configuration Procedures
Rollback Process
Potential Impact
Notification

Question 52

Describe Metasploit?

Answer 52

Unique, open source tool that enables the Pentester to use a massive library of attacks as well as tweak those attacks for unique pentetrations. It’s the goto tool for Pentesting.

Question 53

Briefly identify the two levels at which changes tend to originate?

Answer 53

Strategic-Level Changes - Initiated by management and major in scope.

Infrastructure-Level Changes - Typically initiated by a department by making a request to the change management team.