Cyber Security

Question 1

SOC

Answer 1

Security Operations Center (SOC)
- centralized unit that monitors and manages an organization’s security posture on a 24/7 basis

Question 2

NIPS

Answer 2

Network Intrusion Prevention System (NIPS)
- monitors network traffic for suspicious activity and can take automated actions to block or prevent potential threats

Question 3

WAF

Answer 3

Web Application Firewall (WAF) with DDoS protection
- specifically designed to mitigate and block DDoS attacks by filtering and monitoring incoming traffic to a web application.

Question 4

PKI

Answer 4

Public Key Infrastructure (PKI)
- involves the use of asymmetric cryptography to provide secure communication and authentication, each device is assigned a unique key pair consisting of a public key and a private key

Question 5

IDS

Answer 5

Intrusion Detection System (IDS)
- designed to monitor network traffic for suspicious activities or patterns that may indicate unauthorized access, malware infections, or other security threats

Question 6

ACL

Answer 6

Access Control Lists (ACLs)
- used to control access to network resources by specifying which users of systems are allowed or denied access to specific resources

Question 7

TPM

Answer 7

Trusted Platform Module (TPM)
- dedicated microcontroller designed to secure hardware by integrated cryptographic keys into devices

Question 7

SAN Certificate

Answer 7

Subject Alternative Name (SAN) Certificate
- can secure multiple domains and subdomains by specifying them in the certificate’s SAN field

Question 8

VLAN

Answer 8

Virtual Local Area Network
- logical grouping of network devices that allows devices on different physical LANs to communicate as if they were on the same physical LAN

Question 9

RSA

Answer 9

Rivest, Shamir, & Adleman
- an asymmetric algorithm used primarily for secure data transmission and digital signature

Question 10

HMAC

Answer 10

Hash-based Message Authentication Code (HMAC)
- used to verify the integrity and authenticity of a message, requires a shared secret key but does not provide a method for establishing or agreeing upon that key

Question 11

AES

Answer 11

Advanced Encryption Standard (AES)
- a symmetric encryption algorithm used to encrypt data

Question 12

TLS

Answer 12

Transport Layer Security (TLS)
- security protocol that protects data and privacy when communicating over the internet

Question 13

SSL

Answer 13

Secure Socket Layer (SSL)
- standard technology for securing an internet connection by encrypting data sent between a website and a browser (or between two servers)

Question 14

CRL

Answer 14

Certificate Revocation List (CRL)
- list of digital corticates that have been revoked by the CA (Certificate Authority) before their expiration date

Question 15

CSRF

Answer 15

Cross-Site Request Forgery (CSRF)
- web-based attack where an attacker tricks a user into performing actions on a web application without their consent

Question 16

APT

Answer 16

Advanced Persistent Threat (APT)
- highly skilled, well-resourced, and persistent attackers, often associated with state-sponsored groups, that focus on long-term espionage or sabotage

Question 17

ARP

Answer 17

Address Resolution Protocol (ARP)
- protocol or procedure that connects an ever-changing Internet Protocol (IP) address to a fixed physical machine address, also known as a media access control (MAC) address, in a local-area network (LAN)

Question 18

WEP

Answer 18

Wired Equivalent Privacy (WEP)
- an outdated encryption standard known to have significant vulnerabilities that can be easily compromised

Question 19

WPA

Answer 19

Wi-Fi Protected Access (WPA)
- a security standard for wireless networks that protects data transmitted between devices and the internet

Question 20

PSK

Answer 20

Pre-Shared Key (PSK)
- a complex string of characters that is used to authenticate users on a network and secure wireless communication

Question 21

AES

Answer 21

Advanced Encryption Standard (AES)
- a symmetric block cipher chosen by the U.S. government to protect classified information

Question 22

NTLM

Answer 22

New Technology LAN Manager
- suite of Microsoft security protocols intended to provide authentication, integrity, and confidentiality to users

Question 23

TOC

Answer 23

Time-of-check (TOC)
- refers to the moment when a system checks the state of a resources

Question 24

TOU

Answer 24

Time-of-use (TOU) - refers to the moment when a system uses a resource after it has been checked

Question 25

SSH

Answer 25

Secure Shell (SSH) - a network protocol that allows secure communication between devices over an unsecured network

Question 26

HIPS

Answer 26

Host-based Intrusion Prevention System (HIPS) - a security software that monitors and prevents malicious activity on a device

Question 27

CVE

Answer 27

Common Vulnerability and Exposure (CVE) - a system that identifies and tracks publicly known cybersecurity vulnerabilities

Question 28

EDR

Answer 28

Endpoint Detection and Response (EDR) - focuses on identifying and addressing security threats at the endpoint level, such as laptops, desktops, and mobile devices

Question 29

RAT

Answer 29

Remote Access Trojan (RAT) - re malware designed to allow an attacker to remotely control an infected computer

Question 30

SCADA

Answer 30

Supervisory Control and Data Acquisition (SCADA) - provide centralized control, data acquisition, and real-time monitoring of industrial processes

Question 31

RTO

Answer 31

Recovery Time Objective (RTO) - the maximum amount of time an organization can tolerate for restoring its systems, applications, and data after a cyber incident

Question 32

AAA

Answer 32

Authentication, Authorization, and Accounting (AAA)

Question 33

AES-256

Answer 33

Advanced Encryption Standards 256-bits (AES-256)

Question 34

AH

Answer 34

Authentication Header (AH) - an IPSec header used to verify that the contents of a packet have not been modified while the packet was in transit

Question 35

AIS

Answer 35

Automated Indicator Sharing (AIS) - program enables organizations to share and receive machine-readable cyber threat indicators (CTIs) and defensive measures (DMs) in real-time for use in monitoring and defending their networks against known threats that are relevant to AIS participants

Question 36

ALE

Answer 36

Annualized Loss Expectancy (ALE) - the total loss we can expect from a risk in a one-year timeframe and is calculated by multiplying SLE (Single Loss Expectancy) by ARO (Annualized Rate Occurrence)

Question 37

APT

Answer 37

Advanced Persistent Threat (APT) - a type of cyber attack that involves a prolonged, covert intrusion into a network or system

Question 38

ARO

Answer 38

Annualized Rate Occurrence (ARO) - the likelihood of a risk being compromised and is calculated by dividing the estimated number of incidents by the time frame

Question 39

ASLR

Answer 39

Address Space Layout Randomization (ASLR) - a technique that is used to increase the difficulty of performing a buffer overflow attack that requires the attacker to know the location of an executable in memory

Question 40

ATT&CK

Answer 40

Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) - a comprehensive matrix of tactics and techniques used by cyber adversaries

Question 41

AUP

Answer 41

Acceptable User Policy (AUP) - sets rules related to an organization's IT security policies

Question 42

BASH

Answer 42

Bourne Again Shell (BASH) - default shell language in most server computing environments in Linux

Question 43

BCP

Answer 43

Business Continuity Planning (BCP) - a proactive approach that prepares an organization to respond and recover from potential cyber threats

Question 44

BGP

Answer 44

Border Gateway Protocol (BGP) - a gateway protocol that enables the internet to exchange routing information between autonomous systems (AS)

Question 45

BIA

Answer 45

Business Impact Analysis (BIA) - a systematic process that helps organizations evaluate the potential impact of disruptions on their critical assets, processes, and services

Question 46

BPA

Answer 46

Business Partners Agreement (BPA) - legal agreements between partners, this is a legal agreement that outlines the terms, conditions, and expectations between the partners

Question 47

BPDU

Answer 47

Bridge Protocol Data Unit (BPDU) - a message that helps switches exchange information and determine the best paths for data to travel through a network.

Question 48

BYOD

Answer 48

Bring Your Own Device (BYOD)

Question 49

CAPTCHA

Answer 49

Completely Automated Public Turing Test To Tell Computers and Humans Apart (CAPTCHA)

Question 50

CAR

Answer 50

Corrective Action Report (CAR) - a formal document used by organizations to address and rectify issues, errors, non-conformances, or deficiencies identified in processes, products, services, or systems

Question 51

CASB

Answer 51

Cloud Access Security Broker (CASB) - a security solution that monitors and enforces an organization's security policies for cloud applications

Question 52

CBC

Answer 52

Cipher Block Chain (CBC) - a block mode of DES that XORs the previous encrypted block of ciphertext to the next block of plaintext to be encrypted

Question 53

CCMP

Answer 53

Counter Mode/CBC-MAC Protocol (CCMP) - a cryptographic protocol that uses the AES cipher to encrypt data and provide security services

Question 54

CERT

Answer 54

Computer Emergency Response Team (CERT) - a group of information security experts who protect an organization's cybersecurity

Question 55

CFB

Answer 55

Cipher Feedback (CFB) - a block cipher mode of operation used in encryption algorithms to encrypt and transfer plaintext values

Question 56

CHAP

Answer 56

Challenge Handshake Authentication Protocol (CHAP) - an identity checking protocol that periodically re-authenticates the user during an online session

Question 57

CIO

Answer 57

Chief Information Officer (CIO)

Question 58

CIRT

Answer 58

Computer Incident Response Team (CIRT) - a group of experts who manage and respond to cyber security incidents and breaches

Question 59

COOP

Answer 59

Continuity of Operation Planning (COOP) - a set of plans and procedures that ensure an organization can continue to perform essential functions during emergencies

Question 60

COPE

Answer 60

Corporate Owned, Personally Enabled (COPE) - a business model where a company owns devices that employees can use for both business and personal purposes

Question 61

CP

Answer 61

Contingency Planning (CP) - a set of procedures an organization initiates in the event of cyberattacks

Question 62

CRC

Answer 62

Cyclical Redundancy Check (CRC) - a technique used for detecting errors in digital data transmission, commonly employed in network communication and data storage

Question 63

CSO

Answer 63

Chief Security Officer (CSO)

Question 64

CSP

Answer 64

Cloud Service Provider (CSP)

Question 65

CSR

Answer 65

Certificate Signing Request (CSR) - a formal request to a Certificate Authority (CA) for a digital identity certificate, such as an SSL/TLS certificate

Question 66

CSU

Answer 66

Channel Service Unit (CSU) - a hardware device that converts a digital data frame from the communications technology used on a local area network (LAN) into a frame appropriate to a wide-area network (WAN) and vice versa

Question 67

RTOS

Answer 67

Real-Time Operating System (RTOS) - a specialized operating system used in critical embedded systems that requires fast, deterministic responses to events

Question 68

PDU

Answer 68

Power Distribution Unit (PDU) - a device fitted with multiple outputs designed to distribute electric power, especially to racks of computers and networking equipment located within a data center

Question 69

PEAP

Answer 69

Protected Extensible Authentication Protocol (PEAP) - a security protocol that protects wireless networks by encrypting authentication data during transmission, does not require client-side certificates

Question 70

LEAP

Answer 70

Lightweight Extensible Authentication Protocol (LEAP) - a proprietary wireless LAN authentication method developed by Cisco Systems, considered insecure due to known vulnerabilities

Question 71

ESP

Answer 71

Encapsulating Security Payload (ESP) - a member of the Internet Protocol Security (IPsec) set of protocols that encrypt and authenticate the packets of data

Question 72

DLP

Answer 72

Data Loss Prevention (DLP) - the practice of detecting and preventing data breaches, exfiltration, or unwanted destruction of sensitive data

Question 73

UTM

Answer 73

Unified Threat Management (UTM) - UTM devices are hardware or software that tie together network security features into one simple-to-use, easy-to-manage appliance

Question 74

IPSec

Answer 74

Internet Protocol Security (IPSec) - a set of communication rules or protocols for setting up secure connections over a network

Question 75

SHA

Answer 75

Secure Hashing Algorithm (SHA)

Question 76

SASE

Answer 76

Secure Access Service Edge (SASE) - a cloud-based architecture that combines network and security services into a single solution

Question 77

SD-WAN

Answer 77

Software-defined Wide Area Newtork (SD-WAN) - a technique for using software to make wide area networks more intelligent and flexible

Question 78

NAC

Answer 78

Network Access Control (NAC) - controls and manages access to a network, ensuring that only authorized devices and users can connect

Question 79

DMZ

Answer 79

Demilitarized Zone (DMZ) - also known as a screened subnet, designed to add an extra layer of security by isolating the public-facing service from the internal network

Question 80

CVE

Answer 80

Common Vulnerabilities and Exposures (CVE) - a list of publicly known cybersecurity vulnerabilities that affect software, hardware, and firmware

Question 81

IoC

Answer 81

Indicators of Compromise (IoC) - are clues or evidence that a network or system has been compromised or attacked

Question 82

OSINT

Answer 82

Open-source Intelligence (OSINT) - a method of gathering information from public or other open sources, which can be used by security experts, national intelligence agencies, or cybercriminals

Question 83

STIX

Answer 83

Structured Threat Information eXchange (STIX) - a standardized language and data model that allows organizations to share cyber threat intelligence (CTI) in a consistent and readable format

Question 84

SAML

Answer 84

Security Assertion Markup Language (SAML) - is used for single sign-in (SSO) and can be used for both authentication and authorization, especially in enterprise environments

Question 85

MAC

Answer 85

Mandatory Access Control (MAC) - an access control model where access rights are regulated by central authority based on a multiple levels of security, users cannot change access policies

Question 86

DAC

Answer 86

Discretionary Access Control (DAC) - access to resources is determined by the resource owner

Question 87

RBAC

Answer 87

Role-Based Access Control (RBAC) - a cybersecurity method that limits access to applications and networks based on a user's role and assigned permissions

Question 88

SNMPv3

Answer 88

Simple Network Management Protocol version 3 (SNMPv3) - designed specifically to provide secure management and monitoring of network devices, it includes important security features such as authentication, encryption, and message integrity

Question 89

RADIUS

Answer 89

Remote Authentication Dial-In User Service (RADIUS) - is used for authentication, authorization and accounting (AAA) services, particularly for network access

Question 90

SFTP

Answer 90

SSH File Transfer Protocol (SFTP)

Question 91

ABAC

Answer 91

Attribute-based Access Control (ABAC) - uses various attributes, such as user role, time of access, and geographic location, to determine access rights

Question 92

CVSS

Answer 92

Common Vulnerability Scoring System (CVSS) - standard for assessing the severity of security vulnerabilities

Question 93

FDE

Answer 93

Full Disk Encryption (FDE)

Question 94

SPF

Answer 94

Sender Policy Framework (SPF) - an email authentication method designed to detect forging sender addresses during the delivery of the email, allows domain owners to specify which mail servers are permitted to send email on behalf of their domains by creating a specific SPF record in the DNS

Question 95

DKIM

Answer 95

Domain Keys Identified Mail (DKIM) - provides a way to verify that an email was indeed sent and authorized by the owner of that domain, it does this by using a digital signature

Question 96

DMARC

Answer 96

Domain-based Message Authentication, Reporting & Conformance (DMARC) - builds on SPF and DKIM to provide additional reporting and policy enforcement

Question 97

EF

Answer 97

Exposure Factor (EF) - the percentage of an asset's value that is exposed to be lost due to a specific incident of loss event

Question 98

CYOD

Answer 98

Choose Your Own Device (CYOD)

Question 99

PAM

Answer 99

Privileged Access Management (PAM) - a cybersecurity strategy that helps organizations protect against cyber threats by monitoring and controlling access to critical resources

Question 100

GPO

Answer 100

Group Policy Objects (GPOs) - a collection of settings that can be used to manage and configure systems, applications, and user settings in Active Directory

Question 101

ICS

Answer 101

Industrial Control System (ICS) - a general term for any system used to control and manage industrial processes, including manufacturing, production and distribution

Question 102

SE Linux

Answer 102

Security-enhanced Linux (SE Linux) - a security module integrated into the Linux kernel that provides mandatory access control (MAC) policies

Question 103

MSA

Answer 103

Master Service Agreement (MSA) - a fundamental contract outlining the scope of the relationship between two parties, including terms and conditions for current and future activities and responsibilities

Question 104

MOA

Answer 104

Memorandum of Agreement (MOA) - a written document describing a cooperative relationship between two parties wishing to work together on a project

Question 105

MOU

Answer 105

Memorandum of Understanding (MOU) - a non-binding agreement that outlines the general intentions and understanding between parties

Question 106

MTBF

Answer 106

Mean Time Between Failures (MTBF) - the average time between repairable failures of a technology product

Question 107

MTTR

Answer 107

Mean Time To Failure (MTTF) - the average time between non-repairable failures of a technology product

Question 108

RPO

Answer 108

Recovery Point Objective (RPO) - the maximum length of time permitted that data can be restored from

Question 109

SLA

Answer 109

Service Level Agreement (SLA) - a formal agreement between a service provider and a client that defines the level of service expected

Question 110

DRP

Answer 110

Disaster Recovery Plan (DRP) - process involves creating a strategy to restore IT systems and data after a disaster

Question 111

IRP

Answer 111

Incident Response Plan (IRP) - a written document, formally approved by the senior leadership team, that helps your organization before, during, and after a confirmed or suspected security incident

Question 112

RDP

Answer 112

Remote Desktop Protocol (RDP) - a protocol that enables users anywhere in the world to access and control a computer through a secure, reliable channel

Question 113

PII

Answer 113

Personally Identifiable Information (PII) - a category of sensitive data that can be used to identify an individual

Question 114

SPIM

Answer 114

Spam Over Internet Messaging (SPIM) - involves sending un

Question 115

HSM

Answer 115

Hardware Security Module (HSM) - a physical device that protects cryptographic keys and other sensitive data in an organization

Question 116

OCSP

Answer 116

Online Certificate Status Protocol (OCSP) - an alternative to the certificate revocation list (CRL) and is used to check whether a digital certificate is valid or if it has been revoked

Question 117

CMS

Answer 117

Content Management System (CMS) - software suites that allow site administrators to easily manage the design, functionality, and operation of websites with minimal technical expertise

Question 118

CTM

Answer 118

Counter Mode (CTM)

Question 119

DEP

Answer 119

Data Execution Prevention (DEP) - a technology built into Windows that helps protect you from executable code launching from places it's not supposed to

Question 120

DES

Answer 120

Data Encryption Standard (DES) - a symmetric-key algorithm for the encryption of digital data

Question 121

DHCP

Answer 121

Dynamic Host Configuration Protocol (DHCP) - a networking protocol that automatically assigns IP addresses and other network parameters to devices connected to a network; responsible for setting up configurations when a computer first joins a local network

Question 122

DHE

Answer 122

Diffie-Hellman Ephemeral (DHE)

Question 123

DNAT

Answer 123

Destination Network Address Translation (DNAT) - a networking technology that can be used to enhance network security and allow external users to access internal services

Question 124

DNS

Answer 124

Domain Name System (DNS) - a critical part of the internet infrastructure that translates domain names into IP addresses so that computers can communicate with each other

Question 125

DPO

Answer 125

Data Privacy Officer (DPO) - a role in an organization that ensures that the company is compliant with data protection laws and regulations when handling personal data

Question 126

DSA

Answer 126

Digital Signature Algorithm (DSA) - a FIPS (Federal Information Processing Standard) and public-key cryptosystem that's used for digital signatures

Question 127

DSL

Answer 127

Digital Subscriber Line (DSL)

Question 128

EAP

Answer 128

Extensible Authentication Protocol (EAP) - used to pass the authentication information between the supplicant (the Wi-Fi workstation) and the authentication server (Microsoft IAS or other)

Question 129

ECB

Answer 129

Electronic Code Book (ECB) - a block cipher mode of operation that encrypts messages by dividing them into blocks and encrypting each block separately

Question 129

ECC

Answer 129

Elliptic Curve Cryptography (ECC) - a public key encryption technique based on elliptic curve theory that can be used to create faster, smaller and more efficient cryptographic keys

Question 130

ECDHE

Answer 130

Elliptic Curve Diffie-Hellman Ephemeral (ECDHE)

Question 131

ECDSA

Answer 131

Elliptic Curve Digital Signature Algorithm (ECDSA)

Question 132

EFS

Answer 132

Encrypted File System (EFS) - a Windows feature that encrypts files and folders to protect them from unauthorized access