Security Pillar

Question 1

What focus area does Managing human and machine identities fall under

Answer 1

Identity and Access Management

Question 2

What focus area does Detective Controls fall under

Answer 2

Detection

Question 3

Give three examples of detective controls

Answer 3

Lifecycle controls to establish operational baselines
Internal auditing to examine controls
Automated alerting

Question 4

What focus area does Automating misconfiguration detection and response fall under

Answer 4

Detection

Question 5

What is an example of a Security best practice?

Use a badge to allow access
Archive all log files immediately
Review security events monthly
Automate security responses

Answer 5

Automate security responses

Question 6

What focus area does control traffic at all layers fall under ?

Answer 6

Infrastructure protection

Question 7

What focus area does Use managed services fall under

Answer 7

Infrastructure Protection

Question 8

What are two examples of security best practices in infrastructure protection?

Enable SSH login for root
Have layered network protection
Use one account for all activities
Enable people to perform actions at a distance

Answer 8

Have layered network protection
Enable people to perform actions at a distance

Question 9

Define Data Protection

Answer 9

Identifying and classifying the data you have, and then using controls and patterns to keep your data confidential while preserving its integrity and availability at rest and in transit

Question 10

What focus area does Encrypt data in transit fall under

Answer 10

Data protection

Question 11

What focus area does Keep people away from data fall under

Answer 11

Data Protection

Question 12

Define Incident Response

Answer 12

Hoe the processes need to be in place to respond to and mitigate the potential impact of security incidents

Question 13

What focus area does Templated “Clean Rooms” fall under

Answer 13

Incident Response