S20-Documentation and Processes

Question 1

IT Governance

Answer 1

specific framework that guides the effective and efficient use of IT to achieve organizational objectives.

Question 2

Policy

Answer 2

Defines the role of security inside of an organization and establishes the desired end state for that security program

Question 3

what are the 3 levels in a policy?

Answer 3

• Organizational
• System-specific
• issue-specific

Question 4

Organizational Policy

Answer 4

Framework to meet the business goals and define the roles, and terms associated with it

Question 5

System-specific Policy

Answer 5

Addresses the security of a specific technology , application, network, or computer system

Question 6

Issue-Specific Policy

Answer 6

addresses a specific security issue such as Email privacy, Employee termination procedures, or other specific issues

Question 7

Baseline

Answer 7

Creates a reference point in network architecture and design

Question 8

Guideline

Answer 8

Recommended action that allows for exception and allowances in unique situations

Question 9

Procedure

Answer 9

Detailed Step-by-step instructions created to ensure personnel can perform a given task or series of actions

Question 10

What are some Common Documentation types?

Answer 10

• Physical Network Diagrams
• Logical Network Diagrams
• Wiring Diagrams
• Site Survey Reports
• Audit and Assessment reports
• Baseline Configs

Question 11

Physical Network Diagrams

Answer 11

Physical arrangement of network components that show physical connections and locations

Question 12

Logical Network Diagrams

Answer 12

Logical Arrangement of network components that shows how data flows & how devices communicate

Question 13

Wiring Diagrams

Answer 13

Labels which cables are connected to which ports

Question 14

Site Survey Reports (wireless)

Answer 14

Planning and designing a wireless network to deliver the required wireless solution

Question 15

Audit and Assessment reports

Answer 15

Delivered after a formal assessment has been conducted

Question 16

Baseline Configs

Answer 16

Set of specs for an information system, or a configuration item within a system, that has been formally reviewed and agreed on

Question 17

Site Survey Reports (wired)

Answer 17

Determines if a site has the right amount of power, space and cooling to support a new upgrade/installation

Question 18

Asset Management

Answer 18

Systematic approach to the governance and realization of value of things over their life cycle

Question 19

What is used to differentiate and identify various assets/

Answer 19

A unique Asset Tag and/or Asset ID

Question 20

Procurement Lifecycle

Answer 20

Birth to death of an asset

Question 21

Change Request

Answer 21

Verifies business impact

Question 22

Procurement

Answer 22

Determines the budget

Question 23

Deployment

Answer 23

Implements procedures in a secure config

Question 24

Maintenance/operations

Answer 24

Implements procedures for monitoring and support

Question 25

Disposal

Answer 25

Implements procedures for sanitizing data remnants

Question 26

IP Address Management (IPAM)

Answer 26

Tools used to plan, track and manage the IP address space in a network infrastructure

Question 27

IPAM benefits

Answer 27

Creates a systematic and error-resistance method of managing IPs

Question 28

What are some common Agreements?

Answer 28

- NDAs - MOUs - SLA

Question 29

Non-Disclosure Agreement (NDA)

Answer 29

Confidential Data cannot be shared outside of a relationship - Administrative control

Question 30

Memorandum of Understanding (MOU)

Answer 30

non-binding agreement between two or more parties that outlines their intentions, objectives, and how they will work together - "letter of intent"

Question 31

Service level Agreement (SLA)

Answer 31

Documents the quality, availability, and responsibilities agreed upon by a service provider and a client

Question 32

Mainstream Support (Windows)

Answer 32

Support minimum for five years

Question 33

Extended Support (Windows)

Answer 33

Extends up to three to five years

Question 34

Legacy OS

Answer 34

Operating system that is no longer supported

Question 35

Change Management

Answer 35

Orchestrated strategy to transition from an existing state to a more desirable state

Question 36

Change Advisory Board (CAB)

Answer 36

People responsible for evaluation of any proposed changes within and Organization

Question 37

Change Owner

Answer 37

Individual or team that initiates the change request

Question 38

Stakeholder (change management)

Answer 38

Person who has a vested interest in the proposed change

Question 39

Impact Analysis

Answer 39

part of the management process that involves understanding the change's potential fallout

Question 40

Configuration Management

Answer 40

Maintaining up to date documentation of a network's configuration

Question 41

What are key Configuration Management procedures?

Answer 41

- Asset Management - Baselining - Cable management - Network Documentation

Question 42

Asset management

Answer 42

system of Tracking network components and managing their lifecycle

Question 43

Baselining

Answer 43

Collection of data that outlines normal operating conditions

Question 44

Cable Management

Answer 44

Documenting physical interfaces, cable connections, layouts and locations on the network

Question 45

Network Documentation

Answer 45

- Network maps &Diagram information - Admin contact info - Policies - Documentation (Vendors, Warranty, etc.) - Wiring schematics - Operating procedures and instructions

Question 46

Asset management steps

Answer 46

- Prepare - Plan - Design - Implement - Operate - Optimize

Question 47

Cable management components

Answer 47

- Diagrams - Cable Labeling - Location of Punch-down blocks - Cable location source - Cable location destination

Question 48

Patch Management

Answer 48

Planning, testing, implementing, and auditing of software patches

Question 49

Patch management benefits

Answer 49

- Security - Uptime - Compliance - Improves features

Question 50

what are the 4 critical steps in patch Management?

Answer 50

- Planning - Testing - Implementing - Auditing