Play it Safe: Manage Security Risks

Question 1

What does ‘Assess’ mean in the context of the NIST RMF?

Answer 1

The fifth step of the NIST RMF that means to determine if established controls are implemented correctly

Question 2

What is an ‘Asset’?

Answer 2

An item perceived as having value to an organization

Question 3

What are ‘Attack vectors’?

Answer 3

The pathways attackers use to penetrate security defenses

Question 4

What is ‘Authentication’?

Answer 4

The process of verifying who someone is

Question 5

What does ‘Authorization’ refer to?

Answer 5

The concept of granting access to specific resources in a system

Question 6

What does ‘Authorize’ mean in the context of the NIST RMF?

Answer 6

The sixth step of the NIST RMF that refers to being accountable for the security and privacy risks that might exist in an organization

Question 7

What is ‘Availability’?

Answer 7

The idea that data is accessible to those who are authorized to access it

Question 8

What are biometrics?

Answer 8

The unique physical characteristics that can be used to verify a person’s identity.

Question 9

What is business continuity?

Answer 9

An organization’s ability to maintain their everyday productivity by establishing risk disaster recovery plans.

Question 10

What is the second step of the NIST RMF?

Answer 10

Categorize: It is used to develop risk management processes and tasks.

Question 11

What is Chronicle?

Answer 11

A cloud-native tool designed to retain, analyze, and search data.

Question 12

What does confidentiality mean?

Answer 12

The idea that only authorized users can access specific assets or data.

Question 13

What is the CIA triad?

Answer 13

A model that helps inform how organizations consider risk when setting up systems and security policies.

Question 14

What does detect mean in the context of NIST?

Answer 14

A core function related to identifying potential security incidents and improving monitoring capabilities to increase the speed and efficiency of detections.

Question 15

What is encryption?

Answer 15

The process of converting data from a readable format to an encoded format.

Question 16

What is an external threat?

Answer 16

Anything outside the organization that has the potential to harm organizational assets.

Question 17

What is the Identify function in the NIST Cybersecurity Framework?

Answer 17

A NIST core function related to management of cybersecurity risk and its effect on an organization’s people and assets

Question 18

What does Implement mean in the NIST Risk Management Framework (RMF)?

Answer 18

The fourth step of the NIST RMF that means to implement security and privacy plans for an organization

Question 19

What is incident response?

Answer 19

An organization’s quick attempt to identify an attack, contain the damage, and correct the effects of a security breach

Question 20

What does integrity refer to in cybersecurity?

Answer 20

The idea that the data is correct, authentic, and reliable

Question 21

What is an internal threat?

Answer 21

A current or former employee, external vendor, or trusted partner who poses a security risk

Question 22

What is a log in the context of cybersecurity?

Answer 22

A record of events that occur within an organization’s systems

Question 23

What are metrics in software performance assessment?

Answer 23

Key technical attributes such as response time, availability, and failure rate, which are used to assess the performance of a software application

Question 24

What does Monitor mean in the NIST RMF?

Answer 24

The seventh step of the NIST RMF that means be aware of how systems are operating

Question 25

What is the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF)?

Answer 25

A voluntary framework that consists of standards, guidelines, and best practices to manage cybersecurity risk

Question 26

What is NIST Special Publication (S.P.) 800-53?

Answer 26

A unified framework for protecting the security of information systems within the U.S. federal government

Question 27

What is OWASP?

Answer 27

A non-profit organization focused on improving software security.

Question 28

What is an operating system (OS)?

Answer 28

The interface between computer hardware and the user.

Question 29

What is a playbook?

Answer 29

A manual that provides details about any operational action.

Question 30

What does 'Prepare' refer to in the NIST RMF?

Answer 30

The first step related to activities necessary to manage security and privacy risks before a breach occurs.

Question 31

What does 'Protect' mean in the NIST core functions?

Answer 31

To protect an organization through the implementation of policies, procedures, training, and tools that help mitigate cybersecurity threats.

Question 32

What is ransomware?

Answer 32

A malicious attack where threat actors encrypt an organization’s data and demand payment to restore access.

Question 33

What does 'Recover' refer to in the NIST core functions?

Answer 33

Related to returning affected systems back to normal operation.

Question 34

What does 'Respond' mean in the NIST core functions?

Answer 34

Related to ensuring that proper procedures are used to contain, neutralize, and analyze security incidents, and implement improvements to the security process.

Question 35

What is risk?

Answer 35

Anything that can impact the confidentiality, integrity, or availability of an asset.

Question 36

What is risk mitigation?

Answer 36

The process of having the right procedures and rules in place to quickly reduce the impact of a risk like a breach.

Question 37

What is a security audit?

Answer 37

A review of an organization's security controls, policies, and procedures against a set of expectations.

Question 38

What are security controls?

Answer 38

Safeguards designed to reduce specific security risks.

Question 39

What are security frameworks?

Answer 39

Guidelines used for building plans to help mitigate risk and threats to data and privacy.

Question 40

What is security information and event management (SIEM)?

Answer 40

An application that collects and analyzes log data to monitor critical activities in an organization.

Question 41

What is security orchestration, automation, and response (SOAR)?

Answer 41

A collection of applications, tools, and workflows that use automation to respond to security events.

Question 42

What is security posture?

Answer 42

An organization’s ability to manage its defense of critical assets and data and react to change.

Question 43

What does 'Select' refer to in the NIST RMF?

Answer 43

The third step that means to choose, customize, and capture documentation of the controls that protect an organization.

Question 44

What is shared responsibility?

Answer 44

The idea that all individuals within an organization take an active role in lowering risk and maintaining both physical and virtual security.

Question 45

What is social engineering?

Answer 45

A manipulation technique that exploits human error to gain private information, access, or valuables.

Question 46

What is Splunk Cloud?

Answer 46

A cloud-hosted tool used to collect, search, and monitor log data.

Question 47

What is Splunk Enterprise?

Answer 47

A self-hosted tool used to retain, analyze, and search an organization's log data to provide security information and alerts in real-time.

Question 48

What is a threat?

Answer 48

Any circumstance or event that can negatively impact assets

Question 49

What is a vulnerability?

Answer 49

A weakness that can be exploited by a threat