Module 2.2

Question 1

What are the three things you need to balance in info sec governance?

Answer 1

Functionality
Usability
Security

Question 2

What are the implementation of least privilege?

Answer 2

Design access control points (passwords)
Segmentation (certain roles)
Logging (history)

Question 3

What is the separation of duties?

Answer 3

Enforcement of dual control = any two people have access to something. Maker and checker, two people authorize the transaction
Enforcement of review and approval = there are people who verify the action
Enforcement of mutual exclusive = their actions are different, they are mutually exclusive so that they remove the risk of collusion

• there is the separation of duties because it reduces room for error

Question 4

What are the shared responsibilities?

Answer 4

System ownership = one department owns the system
Ownership of controls = owns the certain controls
Information ownership = owns the information

Question 5

Why are simple systems easier to defend than complex systems?

Answer 5

smaller attack surface (environment an attack can enter), less opportunities to bypass controls, ease of use

Question 6

What assets should you put defenses up for

Answer 6

network, each level of a system, each component of a system

Question 7

What is zero trust?

Answer 7

Each part of system must be secure in iteself

Question 8

How do you implement zero trust?

Answer 8

endpoint device validation, multi-factor authentication, network segmentation

Question 9

What are the critical systems architecture

Answer 9

This architecture ensures the ability to continue operations despite the failure

• component
• network
• utility

Question 10

How do you design system availability

Answer 10

Levels of availability
- Fault tolerance = backup is running, more expensive
- High availability = backup isn’t running, like fault tolerance
- Best effort = availability, SLAs
Fail secure

Question 11

How do you prepare for failure?

Answer 11

Redundancy
Backups
RAID (redundant array of independent disks)

Question 12

How do you choose system controls?

Answer 12

1) information protection requirements can be met by externally connected systems (shouldn’t all come from you)
2) Control must meet requirements but should not be gold plating (not one-time use)
3) controls selected must customers’ successful

Question 13

Why do segregated areas need different levels of security

Answer 13

some areas need baseline protection

Question 14

What are TCB and its four basic functions

Answer 14

Trusted Computing Base (all components in a computing platform are critical in maintaining security)

• Process activation
• Execution domain switching
• Memory protection (manage references of the system)
• Input/output operations

Question 15

What is TPM

Answer 15

Trusted Platform Module = The TPM is a cryptographic module that enhances computer security and privacy.