Fundamentals of Security

Question 1

What is Information Security?

Answer 1

The act of protecting data and information from unauthorized access, unlawful modification and disruption, disclosure and corruption, and destruction.

Question 2

What is Information Systems Security?

Answer 2

The act of protecting the systems that hold and process the critical data.

Question 3

What is the CIA Triad?

Answer 3

Confidentiality, Integrity, Availability

Question 4

Define Confidentiality in the context of the CIA Triad

Answer 4

Confidentiality is ensuring that information is only accessible to those with the appropriate authorization.

Question 5

Define Integrity in the context of the CIA Triad

Answer 5

Ensure that data remains accurate and unaltered unless modification is required.

Question 6

Define Availability in the context of the CIA Triad

Answer 6

Ensure that information and resources are accessible and functional when needed by authorized users.

Question 7

What is non-repudiation?

Answer 7

Guaranteeing that a specific action or event has taken place and cannot be denied by the parties involved.

Question 8

What is AAA?

Answer 8

Authentication, Authorization, Accounting

Question 9

What is authentication?

Answer 9

Authentication is the process of verifying the identity of a user or system.

Question 10

What is authorization?

Answer 10

Authorization defines what actions or resources a user can access.

Question 11

What is accounting in the context of cyber security?

Answer 11

Accounting is the act of tracking user activities and resource usage, typically for audit or billing purposes.

Question 12

What are Security Controls?

Answer 12

Security Controls are measures or mechanisms put in place to mitigate risks and protect the confidentiality, integrity, and availability of information systems and data.

Question 13

What is Zero Trust?

Answer 13

A security model that operates on the principle that no one, whether inside or outside the organization, should be trusted by default.

Question 14

What are the 4 Security Control Categories?

Answer 14

Technical, Managerial, Operational, Physical

Question 15

What are the 6 types of Security Controls?

Answer 15

Preventative, Deterrent, Detective, Corrective, Compensating, Directive

Question 16

What 2 planes do we use to achieve Zero Trust?

Answer 16

The Control plane and the Data plane

Question 17

What is the Control Plane?

Answer 17

The control plane consists of the adaptive identity, threat scope reduction, policy-driven access control, and secured zones.

Question 18

What is the Data Plane?

Answer 18

The data plane is focused on the subject/system, policy engine, policy administrator, and establishing policy enforcement points.

Question 19

What is a Threat?

Answer 19

A threat is anything that could cause harm, loss, damage, or compromise to our information technology systems.

Question 20

Where can Threats come from?

Answer 20

Natural disasters, cyber-attacks, data integrity breaches, disclosure of confidential information.

Question 21

What is a Vulnerability?

Answer 21

A vulnerability is any weakness in the system design or implementation.

Question 22

Where can Vulnerabilities come from?

Answer 22

Software bugs, misconfigured software, improperly protected network devices, missing security patches, lack of physical security

Question 23

What is Risk Management?

Answer 23

Risk management is finding different ways to minimize the likelihood of an outcome and achieve the desired outcome

Question 24

What are the 5 methods we use to ensure Confidentiality?

Answer 24

Encryption, Access Controls, Data Masking, Physical Security Measures, Training and Awareness.

Question 25

Define Encryption

Answer 25

Encryption is the process of converting data into a code to prevent unauthorized access.

Question 26

What are Access Controls?

Answer 26

Access Controls allow us to set strong user permissions, ensuring that only authorized personnel can access certain data.

Question 27

What is Data Masking?

Answer 27

The obfuscation of specific data within a database to make it inaccessible for unauthorized users while retaining authenticity for authorized users.

Question 28

What are the 5 methods we use to ensure data Integrity?

Answer 28

Hashing, Digital Signatures, Checksums, Access Controls, Regular Audits

Question 29

What is Hashing?

Answer 29

Hashing is the process of converting data into a fixed-size value.

Question 30

How do digital signatures help in securing data?

Answer 30

Digital signatures ensure that the data is intact and authentic.

Question 31

What is a checksum?

Answer 31

Checksums are a method to verify the integrity of data during transmission.

Question 32

What is redundancy?

Answer 32

Redundancy is the duplication of critical components or functions of a system with the intention of enhancing its reliability.

Question 33

What are the 4 types of redundancy you need to consider when designing your systems and networks?

Answer 33

Server, Data, Network, and Power.

Question 34

What is the best tool to establish non-repudiation in a digital transaction?

Answer 34

Digital Signatures

Question 35

How is a digital signature created?

Answer 35

A digital signature is created by first hashing a particular message or communication that you want to digitally sign, and then it encrypts that hash digest with the user's private key using asymmetric encryption.

Question 36

What are the 5 commonly used authentication methods?

Answer 36

Something you know, something you have, something you are, something you do, and somewhere you are.

Question 37

What is Multi-Factor Authentication?

Answer 37

A security process that requires users to provide multiple methods of identification to verify their identity.

Question 38

What is a SIEM?

Answer 38

A SIEM is a Security Information and Event Management system. It provides real-time analysis of security alerts generated by various hardware and software infrastructure in an organization.

Question 39

What are Technical Controls?

Answer 39

Technologies, hardware, and software mechanisms that are implemented to manage and reduce risks.

Question 40

What are Managerial Controls?

Answer 40

The strategic planning and governance of security within an organization.

Question 41

What are Operational Controls?

Answer 41

Procedures and measures that are designed to protect data on a day-to-day basis.

Question 42

What are Physical Controls?

Answer 42

Tangible, real-world measures taken to protect assets.

Question 43

Define Preventative Controls

Answer 43

Proactive measures implemented to thwart potential security threats or breaches.

Question 44

Define Deterrent Controls

Answer 44

Discourage potential attackers by making the effort seem less appealing or more challenging.

Question 45

Define Detective Controls

Answer 45

Monitor and alert organizations to malicious activities as they occur or shortly thereafter.

Question 46

Define Corrective Controls

Answer 46

Mitigate any potential damage and restore our systems to their normal state.

Question 47

Define Compensating Controls

Answer 47

Alternative measures that are implemented when primary security controls are not feasible or effective.

Question 48

Define Directive Controls

Answer 48

Guide, inform, or mandate actions. Typically rooted in policy and procedure that sets the standard for behavior within an organization.

Question 49

What is Adaptive Identity?

Answer 49

Adaptive Identity relies on real-time validation that takes into account the user's behavior, device, location and more.

Question 50

What is Threat Scope Reduction?

Answer 50

Threat Scope Reduction limits the users' access to only what they need for their work tasks to reduce the network's potential attack surface.

Question 51

What is Policy-Driven Access Control?

Answer 51

Policy-Driven Access Control entails developing, managing, and enforcing user access policies based on their roles and responsibilities.

Question 52

What are Secured Zones?

Answer 52

Secured Zones are isolated environments within a network that are designed to house sensitive data.

Question 53

What is a Policy Engine?

Answer 53

The Policy Engine cross-references the access request with its predefined policies.

Question 54

What is the Policy Administrator?

Answer 54

The Policy Administrator is used to establish and manage the access policies.

Question 55

What is the Subject/System in regards to the Data Plane?

Answer 55

The Subject/System refers to the individual or entity attempting to gain access to data or resources.

Question 56

What is the Policy Enforcement Point?

Answer 56

The Policy Enforcement Point is where the decision to grant or deny access is actually executed.

Question 57

What are the 2 types of Gap Analysis?

Answer 57

Technical and Business.

Question 58

What is involved in a Technical Gap Analysis?

Answer 58

Evaluating an organizations current technical infrastructure and identifying any areas where it falls short in meeting the technical requirements of its security solutions.

Question 59

What is involved in a Business Gap Analysis?

Answer 59

Evaluating an organizations current business processes to identify any areas where they fall short of the capabilities required to fully utilize cloud-based solutions.

Question 60

What is a POA&M?

Answer 60

Plan of Action and Milestones. The POA&M outlines the specific measures to address each vulnerability, allocates resources, and establishes timelines for remediation.