Assets, Threats, and Vulnerabilities: Module 1

Question 1

Asset

Answer 1

Something valuable to a company

Question 2

Asset Classification

Answer 2

Labeling assets by how sensitive or important they are

Question 3

Asset Inventory

Answer 3

A list of all items that need protection

Question 4

Asset Management

Answer 4

Tracking valuable items and the risks to them

Question 5

Compliance

Answer 5

Following rules and standards

Question 6

Data

Answer 6

Information a computer can use or store

Question 7

Data at Rest

Answer 7

Data that isn’t being used right now

Question 8

Data in Transit

Answer 8

Data moving from one place to another

Question 9

Data in Use

Answer 9

Data currently being used

Question 10

Information Security (InfoSec)

Answer 10

Keeping data safe from people who shouldn’t see it

Question 11

National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF)

Answer 11

A set of best practices to help companies manage cyber risks

Question 12

Policy

Answer 12

A rule to help protect information

Question 13

Procedures

Answer 13

Steps to follow to do a security task

Question 14

Regulations

Answer 14

Official rules made by a government or authority

Question 15

Risk

Answer 15

Something that could harm valuable data or systems

Question 16

Standards

Answer 16

Guidelines for how to make rules

Question 17

Threat

Answer 17

Something that could harm a company or its data

Question 18

Vulnerability

Answer 18

A weakness that a threat could use