Corporate Security #2

Question 1

What are the 6 examples of Additional Cyber Security?

Answer 1

1) Data Protection 2) Segregation of Duties 3) Network Fragmentation and Monitoring 4) Honeypots 5) Penetration Testing 6) Standards

Question 2

What are 6 ways to implement Data Protection? 1) ⚠️2) 🔐3) 🧩4) 🗃️5) 🕵️

Answer 2

1) Understand risk 2) Use encryption 3) Fragmentation (break up data and store in different places) 4) Data Backups 5) Privacy protection (remove PII)

Question 3

What is Segregation of Duties?

Answer 3

Making more than one person complete security critical tasks

Question 4

What is Network Fragmentation?

Answer 4

Split infrastructure, so then only access given to those who need it

Question 5

What is Network Monitoring?

Answer 5

Observe and record traffic on the network

Question 6

What are Honeypots?

Answer 6

Decoys to lure attackers

Question 7

What are 3 benefits of Honeypots?

Answer 7

Detect attacks, deflect attackers, get info on attack stratergies

Question 8

Research vs Production Honeypots

Answer 8

Research = Complex Honeypot, study attacker stratergies. Production = Simpler, act as a distraction

Question 9

High vs Low Interaction Honeypots

Answer 9

High = Complex, simulate a real system. Low = Simple, crack quickly to show attacker nothing here is valuable

Question 10

What is Pentesting?

Answer 10

Authorised simulated attack to identify system security

Question 11

What are Standards?

Answer 11

Large documents fully detailing compliance for security