Module 10 - Cybersecurity principles, practices and processes

Question 1

Which model breaks down data protection into three dimensions to guide cybersecurity practices?

Answer 1

The Cybersecurity cube

Question 2

Which principle ensures that data is only accessible to authorized entities?

Answer 2

Confidentiality

Question 2

What are the three security principles at the core of the cybersecurity cube?

Answer 2

Confidentiality, Integrity and Availability (CIA)

Question 3

Which principle guarantees the accuracy, consistency, and trustworthiness of data?

Answer 3

Integrity

Question 3

What are the three data states represented in the second dimension of the cybersecurity cube?

Answer 3

Data in transit, Data at rest, Data in process

Question 3

Which principle focuses on ensuring data is accessible when needed by authorized users?

Answer 3

Availability

Question 3

What are the three safeguard categories in the cybersecurity cube’s third dimension?

Answer 3

People, Policies and Practices, Technology

Question 3

What safeguard dimension involves setting up rules and controls to guide secure behavior?

Answer 3

Policies and practices

Question 4

What safeguard dimension focuses on increasing human awareness and skills in cybersecurity?

Answer 4

People

Question 4

Which substitution technique enhances confidentiality by replacing sensitive data with meaningless tokens?

Answer 4

Tokenization

Question 4

How does tokenization differ from encryption?

Answer 4

Tokens have no relationship to the original data and are useless outside of the system

Question 4

Which technology manages and restricts access to copyrighted digital content like music and e-books?

Answer 4

DRM (Digital Rights Management)

Question 4

Which technology helps control access to organizational documents such as emails and files?

Answer 4

IRM (Information Rights Management)

Question 4

What type of information includes data that can identify an individual, like medical or credit records?

Answer 4

Personal information

Question 4

What type of data includes sensitive internal details like trade secrets or customer lists?

Answer 4

Business information

Question 4

Which category of data includes government information labeled as secret, confidential, or restricted?

Answer 4

Classified information

Question 5

Which privacy technique turns identifiable information into anonymous, irreversible data?

Answer 5

Data anonymization

Question 5

Which principle refers to the accuracy, consistency, and trustworthiness of data throughout its lifecycle?

Answer 5

Data integrity

Question 5

What is the level of data integrity need for a healthcare organization ?

Answer 5

Critical level-{inaccurate prescription data can be life-threatening}

Question 5

How is data integrity prioritized in e-commerce or analytics-based businesses?

Answer 5

High level -{data is validated and verified frequently to ensure accuracy}

Question 5

What level of data integrity need applies to public data from search engines and online sales?

Answer 5

Mid level -{limited verification and reduced trust}

Question 5

Which types of platforms have a low level of integrity need due to unverified user content?

Answer 5

Blogs and personal social media pages

Question 5

Which principle ensures that information and systems remain accessible to authorized users when needed?

Answer 5

Availability

Question 5

What must be tested to ensure data recovery is possible in case of loss?

Answer 5

Backup systems and backed up data

Question 6

Which plan ensures that employees and cybersecurity teams are prepared to respond and recover from major disruptions?

Answer 6

A disaster plan

Question 6

Which data state applies when information is stored and not being accessed or modified by any process or user?

Answer 6

Data at rest

Question 6

What type of storage is directly attached to a single computer, such as an internal hard drive or USB flash drive?

Answer 6

DAS (Directly Attached Storage)

Question 7

Which storage solution uses multiple disks presented as one to improve performance and fault tolerance?

Answer 7

RAID (Redundant Array of Independent Disks)

Question 7

What is the key benefit of RAID arrays for enterprise storage?

Answer 7

Improved performance and fault tolerance

Question 7

Which network-based storage device allows multiple authorized users to store and retrieve data centrally?

Answer 7

NAS (Network Attached Storage)

Question 7

Which high-speed, network-based storage architecture connects multiple servers to centralized disk repositories?

Answer 7

SAN (Storage Area Network)

Question 8

What characteristic differentiates SAN from other network storage?

Answer 8

SAN has high speed network interfaces

Question 8

Which remote storage option uses a data center provider’s infrastructure and is accessed over the Internet?

Answer 8

Cloud Storage

Question 8

Which storage type is not shared by default and requires manual configuration to be network-accessible?

Answer 8

DAS (Direct Attached Storage)

Question 9

Which type of storage is difficult to manage and especially vulnerable to malicious attacks on the local host?

Answer 9

DAS (Direct Attached Storage)

Question 9

Which data state involves sending information from one device to another, rather than storing or actively using it?

Answer 9

Data in transit

Question 10

What term refers to data moved physically between computers using removable media like USB drives?

Answer 10

Sneaker net

Question 10

What security method ensures both the user and the server verify each other's identity?

Answer 10

Mutual Authentication

Question 10

Which data state refers to the stage when data is being input, computed, modified, or output?

Answer 10

Data in Process

Question 11

Which data state occurs during initial entry from forms, sensors, file uploads, or manual typing?

Answer 11

Input stage of Data in process

Question 12

Which data process involves changing data through manual edits or automated processing like encryption or compression?

Answer 12

Data modification

Question 12

What term describes unintentional or malicious changes that make data unreadable or unusable?

Answer 12

Data corruption

Question 12

Which process describes data being sent to output devices such as printers or displays?

Answer 12

Data output

Question 12

Which software tool controls remote access to a system and is often built into operating systems?

Answer 12

A software firewall

Question 12

Which tools are used to discover and monitor open ports on hosts or servers?

Answer 12

Network and port scanners

Question 13

Which devices collect and examine network traffic to detect misconfigurations, app issues, and communication problems?

Answer 13

Protocol/Signature analyzers

Question 13

Which scanning tools assess weaknesses in computers or networks?

Answer 13

Vulnerability scanners

Question 13

Which hardware or software system blocks unwanted network traffic using customizable traffic rules?

Answer 13

A firewall

Question 14

Which device presents a single organization-wide IP address to the Internet and can mask user identities?

Answer 14

A proxy server

Question 15

What does hardware-based access control use to verify identity before granting access to data or systems?

Answer 15

Biometric technology

Question 15

What term refers to physical devices that enforce identity verification using biometrics?

Answer 15

Hardware based access control

Question 15

What networking device serves as a connection point and helps increase network security and efficiency?

Answer 15

A Network switch

Question 15

Which analyzer is used to establish normal traffic baselines and detect performance or application issues?

Answer 15

A protocol analyzer

Question 16

Which security tool allows you to identify open ports that may be vulnerable on a host system?

Answer 16

A Port scanner

Question 16

What two elements are essential for ensuring employees support security goals effectively?

Answer 16

A strong security awareness program and security policies.

Question 17

Which document demonstrates a company’s commitment to cybersecurity while setting behavioral rules?

Answer 17

A Security Policy

Question 17

Which security policy component specifies who is authorized to access network resources and how they’re verified?

Answer 17

Identification and authentication policies

Question 17

Which policy ensures strong passwords and routine password changes?

Answer 17

A Password policy

Question 17

Which policy outlines rules for secure network access by off-site users?

Answer 17

Remote access policy

Question 17

Which policy specifies how system and application updates are performed?

Answer 17

Network maintenance policy

Question 18

Which security policy details the procedures for handling breaches and other incidents?

Answer 18

Incident Handling policies

Question 18

What defines what system and network behavior is acceptable, and what is prohibited Bans on specific websites, newsgroups, or bandwidth-intensive applications?

Answer 18

AUP (Acceptable Use Policy)

Question 18

Which document type offers flexible suggestions for improving security without being mandatory?

Answer 18

Guidelines

Question 19

What is a key difference between guidelines and standards?

Answer 19

Guidelines are not mandatory while standards are enforced

Question 19

Which type of security document includes step-by-step instructions and visuals for implementation?

Answer 19

Procedures

Question 19

What is available from organizations such as the NIST (National Institute of Standards and Technology), and the NSA (National Security Agency) Security Configurations Guide , and the Common Criteria Standard??

Answer 19

They provide external cybersecurity guidelines