Foundations Of Cybersecurity

Question 1

Cybersecurity

Answer 1

The practice of ensuring confidentiality, integrity and availability of information by protecting networks, devices, people, and data from unauthorized access or criminal exploitation

Question 2

Threat Actor

Answer 2

Any person or group who presents a security risk

Question 3

Playbook

Answer 3

A list of how to go through a certain detection, and what the analyst needs to look at in order to investigate those incidents

Question 4

Compliance

Answer 4

The process of adhering to internal standards and external regulations and enables organizations to avoid fines and security breaches

Question 5

Security Frameworks

Answer 5

Guidelines used for building plans to help mitigate risks and threats to data and privacy

Question 6

Security Controls

Answer 6

Safeguards designed to reduce specific security risks. They are used with security frameworks to establish a strong security posture

Question 7

Security Posture

Answer 7

An organizations ability to manage its defense of critical assets and data and react to change.

Question 8

Internal Threat

Answer 8

A current or former employee, an external vendor or a trusted partner who poses a security risk.

Question 9

Network Security

Answer 9

The practice of keeping an organizations network infrastructure secure from unauthorized access.

Question 10

Cloud Security

Answer 10

The process of ensuring that assets stored in the cloud are properly configured or set up correctly, and access to those assets is limited to authorized users.

Question 11

Cloud

Answer 11

A network made up of a collection of servers or computers that store resources and data in remote physical locations known as data centers that can be accessed via the internet.

Question 12

Programming

Answer 12

A process that can be used to create a specific set of instructions for a computer to execute tasks.

Question 13

Transferable Skills

Answer 13

Communication, collaboration, analysis and problem solving

Question 14

Technical Skills

Answer 14

Programming languages, Security Information and Event Management (SIEM) tools, and computer forensics

Question 15

Security Information and Event Management (SIEM) Tools

Answer 15

Tools which collect and analyze log data or records of events such as unusual login behavior and support analysts ability to monitor critical activities in an organization.

Question 16

Intrusion Detection Systems (IDSs)

Answer 16

Used to monitor system activity and alerts for possible intrusions.

Question 17

Personally Identifiable Information (PII)

Answer 17

Any information used to infer an individuals identity. (Ex- full name, D.O.B., address, phone number, email, IP)

Question 18

Sensitive Personally Identifiable Information (SPII)

Answer 18

A specific type of PII that falls under stricter handling guidelines. (Ex- SSN, medical or financial information, biometric data)

Question 19

Computer Virus

Answer 19

Malicious code written to interfere with computer operations and cause damage to data and software.

Question 20

Malware

Answer 20

Software designed to harm devices or network.

Question 21

Social Engineering

Answer 21

A manipulation technique that exploits human error to gain private information, access, or valuables.

Question 22

Phishing

Answer 22

The use of digital communications to trick people into revealing sensitive data or deploying malicious software.

Question 23

CSIRTs

Answer 23

Computer Security Incident Response Teams

Question 24

Business Email Compromise (BEC)

Answer 24

A threat actor sends an email message that seems to be from a known source to make a seemingly legitimate request for information in order to obtain a financial advantage.

Question 25

Spear Phishing

Answer 25

A malicious email attack that targets a specific user or group of users.

Question 26

Whaling

Answer 26

A form of spear phishing. Threat actors target company executives to gain access to sensitive data.

Question 27

Vishing

Answer 27

The exploitation of electronic voice communication to obtain sensitive information or to impersonate a known source.

Question 28

Smishing

Answer 28

The use of text messages to trick users in order to obtain sensitive information or to impersonate a known source.

Question 29

Worms

Answer 29

Malware that can duplicate and spread itself across system on its own.

Question 30

Ransomware

Answer 30

A malicious attack where threat actors encrypt an organization's data and demand payment to restore access.

Question 31

Spyware

Answer 31

Malware that's used to gather and sell information without consent.

Question 32

Social Media Phishing

Answer 32

A threat actor collects detailed information about their target from social media sites.

Question 33

Watering Hole Attack

Answer 33

A threat actor attacks a website frequently visited by a specific group of users.

Question 34

USB Baiting

Answer 34

A threat actor strategically leaves a malware USB stick for an employee to find and install to unknowingly infect a network.

Question 35

Physical Social Engineering

Answer 35

A threat actor impersonates an employee, customer or vendor to obtain unauthorized access to a physical location.

Question 36

Reasons Social Engineering Is Effective

Answer 36

Authority, intimidation, consensus/ social proof, scarcity, familiarity, trust or urgency

Question 37

CISSP

Answer 37

Certified Information Systems Security Professional

Question 38

Name The 8 CISSP Security Domains

Answer 38

Security and Risk Management, Asset Security, Security Architecture and Engineering, Communications and Network Security, Identity and Access Management, Security Assessment and Testing, Security Operations, Software Development Security

Question 39

Security and Risk Management

Answer 39

Defines security goals and objectives, risk mitigation, compliance, business continuity, and the law.

Question 40

Asset Security

Answer 40

Secures digital and physical assets. Related to the storage, maintenance, retention, and destruction of data.

Question 41

Security Architecture and Engineering

Answer 41

Optimizes data security by ensuring effective tools, systems, and processes are in place. Ex- firewall

Question 42

Communication and Network Security

Answer 42

Manage and secure physical networks and wireless communications.

Question 43

Identity and Access Management

Answer 43

Keeps data secure by ensuring users follow established policies to control and manage physical assets, like office spaces and logical assets, such as networks and applications. Ex- validating employees or setting up keycard access.

Question 44

Security Assessment and Testing

Answer 44

Conducting security control testing, collecting and analyzing data, and conducting security audits to monitor for risks, threats, and vulnerabilities.

Question 45

Security Operations

Answer 45

Conducting investigations and implementing preventative measures. Ex- unknown device connects to the network

Question 46

Software Development Security

Answer 46

Uses secure coding practices, which are a set of recommended guidelines that are used to create secure applications and services.

Question 47

Password Attack

Answer 47

An attempt to access password secured devices, systems, networks, or data. Ex- Brute Force or Rainbow Table

Question 48

Physical Attack

Answer 48

A security incident that affects not only digital but also physical environments where the incident is deployed.

Question 49

Adversarial Artifical Intelligence

Answer 49

A technique that manipulates artificial intelligence and machine learning technology to conduct attacks more efficiently.

Question 50

Supply Chain Attack

Answer 50

Targets systems, applications, hardware, and/or software to locate a vulnerability where malware can be deployed.

Question 51

Cryptographic Attack

Answer 51

Affects secure forms of communication between a sender and intended recipient.

Question 52

Advanced Persistent Threats (APTs)

Answer 52

Have significant expertise accessing an organizations network without authorization. Tend to research their targets in advance and can remain undetected for an extended period of time.

Question 53

Insider Threats

Answer 53

Abuse of their authorized access to obtain data that may harm an organization.

Question 54

Hacktivists

Answer 54

Threat actors that are driven by a political agenda.

Question 55

Hacker

Answer 55

Any person who uses a computer to gain access to computer systems, networks, or data.

Question 56

Authorized Hackers (Ethical Hackers)

Answer 56

Follow a code of ethics and adhere to the law to conduct organizational risk evaluations.

Question 57

Semi-Authorized Hackers (Researchers)

Answer 57

Search for vulnerabilities but don't take advantage of the vulnerabilities they find.

Question 58

Unauthorized Hackers (Unethical Hackers)

Answer 58

Malicious threat actors who don't follow or respect the law.

Question 59

Security Life Cycle

Answer 59

A constantly evolving set of policies and standards that define how an organization manages risks, follows established guidelines and meets regulatory compliance laws

Question 60

Purposes of Security Frameworks

Answer 60

Protecting PII, Securing Financial Information, Identifying Security weaknesses, managing organizational risks, aligning Security with business goals

Question 61

Components of Security Frameworks

Answer 61

Identifying and documenting security goals, setting guidelines to achieve security goals, implementing strong security processes, and monitoring and communicating results

Question 62

General Data Protection Regulation (GDPR)

Answer 62

A data protection law established to grant European citizens more control over their personal data

Question 63

CIA Triad

Answer 63

A foundational model that helps inform how organizations consider risk when setting up systems and security policies

Question 64

Confidentiality

Answer 64

Only authorized users can access specific assets or data

Question 65

Integrity

Answer 65

Data is correct, authentic and reliable

Question 66

Availability

Answer 66

Data is accessible to those who are authorized to access it

Question 67

Asset

Answer 67

An item perceived as having value to an organization

Question 68

NIST

Answer 68

National Institute of Standards and Technology

Question 69

NIST Cybersecurity Framework (CSF)

Answer 69

A voluntary framework that consists of standards, guidelines, and best practices to manage cybersecurity risk (Baseline to manage short and long term risks)

Question 70

Security Ethics

Answer 70

Guidelines for making appropriate decisions as a security professional

Question 71

Ethical Principles In Security

Answer 71

Confidentiality, Privacy Protections, and Laws

Question 72

Privacy Protection

Answer 72

Safeguarding personal information from unauthorized use

Question 73

Log

Answer 73

A record of events that occur within an organizations systems

Question 74

Network Protocol Analyzer (Packet Sniffers)

Answer 74

A tool designed to capture and analyze data traffic within a network

Question 75

Chain of Custody Playbook

Answer 75

The process of documenting evidence possession and control during an incident life cycle. (Who, what, where and why evidence was collected)

Question 76

Protecting and Preserving Evidence Playbook

Answer 76

The process of properly working with fragile and volatile digital evidence

Question 77

Order of Volatility

Answer 77

A sequence outlining the order of data that must be preserved from first to last

Question 78

Volatile Data

Answer 78

Data that may be lost if the device in question powers off

Question 79

Dashboard

Answer 79

A tool used to visually communicate information or data

Question 80

Linux

Answer 80

An open source operating system (publicly available)

Question 81

Structured Query Language (SQL)

Answer 81

A programming language used to create, interact with, and request information from a database

Question 82

Database

Answer 82

An organized collection of information or data

Question 83

Python

Answer 83

Used to perform tasks that are repetitive and time consuming and that require a high level of detail and accuracy

Question 84

Data Point

Answer 84

A specific piece of information

Question 85

Operating System

Answer 85

The interface between computer hardware and the user. Ex- Linux, macOS, Windows

Question 86

Command

Answer 86

An instruction telling the computer to do something

Question 87

Command Line

Answer 87

A text based user interface that uses commands to interact with the computers

Question 88

Web Vulnerability

Answer 88

A unique flaw in a web application that a threat actor could exploit

Question 89

Antivirus Software

Answer 89

A software program used to prevent, detect and eliminate malware and viruses (also called anti malware)

Question 90

Encryption

Answer 90

The process of converting data from a readable format to a cryptographically encoded format

Question 91

Cryptographic Encoding

Answer 91

Converting plaintext into secure ciphertext

Question 92

Plaintext

Answer 92

Unencrypted information

Question 93

Penetration Testing

Answer 93

The act of participating in a simulated attack that helps identify vulnerabilities in systems, networks, websites, applications and processes.