Lesson 1 - Security Roles and Controls

Question 1

What is the CIA triad?

Answer 1

Confidentiality, Integrity, and Availability

Question 2

What is the NIST Cybersecurity Framework?

Answer 2

Identify, Protect, Detect, Respond, Recover

Question 3

What is the purpose of the Security Operations Center (SOC)?

Answer 3

This is where security professionals monitor and protect critical information assets across other business functions.

Question 4

Which security related phrase relates to the integrity of data?

Answer 4

Modification - Any modification is authorized and is stored and transferred as intended when referring to the integrity of data.

Question 5

How might the goals of basic network management not align with the goals of security?

Answer 5

Management focuses on availability over confidentiality.

Question 6

Any external responsibility for an organization’s security lies mainly with which individuals?

Answer 6

The senior executives.

Question 7

The NIST provides a framework that classifies security-related functions. Which description aligns with the “respond” function?

Answer 7

Identify, analyze, and eradicate threats

Question 8

The ________ requires federal agencies to develop security policies for computer systems that process confidential information.

Answer 8

Computer Security Act

Question 9

After a poorly handled security breach, a company updates its security policy to include an improved incident response plan. Which of the following security controls does this update address?

Answer 9

Corrective

Question 10

Which of the following has a cyber security framework (CSF) that focuses exclusively on IT security rather than IT service provisioning?

Answer 10

National Institute of Standards and Technology (NIST)