Play it safe: Manage security risks

Question 1

Assess

Answer 1

The fifth step of the NIST RMF that means to determine if established controls are implemented correctly

Question 2

Authorize

Answer 2

The sixth step of the NIST RMF that refers to being accountable for the security and privacy risks that may exist in an organization

Question 3

Business Continuity

Answer 3

An organization’s ability to maintain their everyday productivity by establishing risk disaster recovery plans

Question 4

Categorize

Answer 4

The second step of the NIST RMF that is used to develop risk management processes and tasks

Question 5

External Threat

Answer 5

Anything outside the organization that has the potential to harm organizational assets

Question 6

Implement

Answer 6

The fourth step of the NIST RMF that means to implement security and privacy plans for an organization

Question 7

Internal threat

Answer 7

A current or former employee, external vendor, or trusted partner who poses a security risk

Question 8

Monitor

Answer 8

The seventh step of the NIST RMF that means be aware of how systems are operating

Question 9

Prepare

Answer 9

The first step of the NIST RMF related to activities that are necessary to manage security and privacy risks before a breach occurs

Question 10

Ransomware

Answer 10

A malicious attack where threat actors encrypt an organization’s data and demand payment to restore access

Question 11

Risk

Answer 11

Anything that can impact the confidentiality, integrity, or availability of an asset

Question 12

Risk Mitigation

Answer 12

The process of having the right procedures and rules in place to quickly reduce the impact of a risk like a breach

Question 13

Security posture

Answer 13

An organization’s ability to manage its defense of critical assets and data and react to change

Question 14

Select

Answer 14

The third step of the NIST RMF that means to choose, customize, and capture documentation of the controls that protect an organization

Question 15

Shared responsibility

Answer 15

The idea that all individuals within an organization take an active role in lowering risk and maintaining both physical and virtual security

Question 16

Social engineering

Answer 16

A manipulation technique that exploits human error to gain private information, access, or valuables

Question 17

Vulnerability

Answer 17

A weakness that can be exploited by a threat

Question 18

Asset

Answer 18

An item perceived as having value to an organization

Question 19

Attack Vectors

Answer 19

The pathways attackers use to penetrate security defenses

Question 20

Authentication

Answer 20

The process of verifying who someone is

Question 21

Authorization

Answer 21

The concept of granting access to specific resources in a system

Question 22

Availability

Answer 22

The idea that data is accessible to those who are authorized to access it

Question 23

Biometrics

Answer 23

The unique physical characteristics that can be used to verify a person’s identity

Question 24

Confidentiality

Answer 24

The idea that only authorized users can access specific assets or data

Question 25

Confidentiality, integrity, availability (CIA) triad

Answer 25

A model that helps inform how organizations consider risk when setting up systems and security policies

Question 26

Detect

Answer 26

A NIST core function related to identifying potential security incidents and improving monitoring capabilities to increase the speed and efficiency of detections

Question 27

Encryption

Answer 27

The process of converting data from a readable format to an encoded format

Question 28

Identify

Answer 28

A NIST core function related to management of cybersecurity risk and its effect on an organization’s people and assets

Question 29

Integrity

Answer 29

The idea that the data is correct, authentic, and reliable

Question 30

National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF)

Answer 30

A voluntary framework that consists of standards, guidelines, and best practices to manage cybersecurity risk

Question 31

National Institute of Standards and Technology (NIST) Special Publication (S.P.) 800-53

Answer 31

A unified framework for protecting the security of information systems within the U.S. federal government

Question 32

Open Web Application Security Project/Open Worldwide Application Security Project (OWASP)

Answer 32

A non-profit organization focused on improving software security

Question 33

Protect

Answer 33

A NIST core function used to protect an organization through the implementation of policies, procedures, training, and tools that help mitigate cybersecurity threats

Question 34

Recover

Answer 34

A NIST core function related to returning affected systems back to normal operation

Question 35

Respond

Answer 35

A NIST core function related to making sure that the proper procedures are used to contain, neutralize, and analyze security incidents, and implement improvements to the security process

Question 36

Risk

Answer 36

Anything that can impact the confidentiality, integrity, or availability of an asset

Question 37

Security audit

Answer 37

A review of an organization's security controls, policies, and procedures against a set of expectations

Question 38

Security controls

Answer 38

Safeguards designed to reduce specific security risks

Question 39

Security frameworks

Answer 39

Guidelines used for building plans to help mitigate risk and threats to data and privacy

Question 40

Security posture

Answer 40

An organization’s ability to manage its defense of critical assets and data and react to change

Question 41

Threat

Answer 41

Any circumstance or event that can negatively impact assets

Question 42

Chronicle

Answer 42

A cloud-native tool designed to retain, analyze, and search data

Question 43

Incident response

Answer 43

An organization’s quick attempt to identify an attack, contain the damage, and correct the effects of a security breach

Question 44

Log

Answer 44

A record of events that occur within an organization’s systems

Question 45

Metrics

Answer 45

Key technical attributes such as response time, availability, and failure rate, which are used to assess the performance of a software application

Question 46

Operating system (OS)

Answer 46

The interface between computer hardware and the user

Question 47

Playbook

Answer 47

A manual that provides details about any operational action

Question 48

Security information and event management (SIEM)

Answer 48

An application that collects and analyzes log data to monitor critical activities in an organization

Question 49

Security orchestration, automation, and response (SOAR)

Answer 49

A collection of applications, tools, and workflows that use automation to respond to security events

Question 50

SIEM tools

Answer 50

A software platform that collects, analyzes, and correlates security data from various sources across your IT infrastructure that helps identify and respond to security threats in real-time, investigate security incidents, and comply with security regulations

Question 51

Splunk Cloud

Answer 51

A cloud-hosted tool used to collect, search, and monitor log data

Question 52

Splunk Enterprise

Answer 52

A self-hosted tool used to retain, analyze, and search an organization's log data to provide security information and alerts in real-time

Question 53

Incident response

Answer 53

An organization’s quick attempt to identify an attack, contain the damage, and correct the effects of a security breach