Sec + 2

Question 1

1st stage of incident response

Answer 1

Preparation

Question 2

What ensures that evidence has remained untouched?

Answer 2

Chain of custody

Question 3

Primary concern of introducing automation and orchestration in security operations?

Answer 3

Complexity

Question 4

What is it called when automation creates more problems than they solve?

Answer 4

Technical debt

Question 5

Document outlining rights and responsibilities of users

Answer 5

Acceptable use policy

Question 6

What is the max time a company tries to recover operations after a disaster?

Answer 6

Recovery time objective (RTO)

Question 7

Formal agreement without legal obligations

Answer 7

MOU

Question 8

What is it called when a company pays for insurance instead of new security controls?

Answer 8

Transfer

Question 9

What is a written understanding with another entity detailing the sow without specifying how to do it?

Answer 9

Statement of work(SOW)

Question 10

What agreement type defines service expectations and requirements?

Answer 10

Service-Level agreement(SLA)

Question 11

Boundary when risk becomes unacceptable

Answer 11

Risk tolerance

Question 12

Which external consideration primarily focuses on industry standards-based

Answer 12

Industry

Question 13

What differentiates between data controller and data processor

Answer 13

Controller: determines the purpose and means of processing

Question 14

What is it called when a company sends out simulated phising emails?

Answer 14

Campaigns

Question 15

In the context of privacy, who is responsible for determining the purpose, condition, and means of processing personal data?

Answer 15

Controller

Question 16

What threat is it when employees share office details outside of work?

Answer 16

Social engineering

Question 17

What is attestation?

Answer 17

Formal declaration or confirmations

Question 18

What is a UTM?

Answer 18

Unified threat management firewall.
Malware inspection
Data loss prevention (DLP)
Content and url filtering
Good for hiipa

Question 19

What is ngfw?

Answer 19

Next generation firewall.
Layer 7
Uses advanced behavior analysis and behavioral monitoring.

Question 20

What is the layer 4 firewall?

Answer 20

Stateless. Basic packet filtering.

Question 21

What is RDP?

Answer 21

Remote desktop. Windows version of ssh.

Question 22

What is tunneling?

Answer 22

Technique used to secure and encrypt traveling data with encryption. Uses ipsec

Question 23

What is ipsec?

Answer 23

Protocols to encrypt data in transit. Used by vpns.

Question 24

Ipsec process

Answer 24

1. Authenticated header (AH) using sha-1 or md5 hashing
2. Encapsulated security protocol (ESP) with des, 3des, or eas
3. Internet key is used with dilfe- hellman

Question 25

Security policy is an example of?

Answer 25

Directive control

Question 26

What is is called when an attacker tricks an employee into revealing their password by pretending to be from the it department?

Answer 26

Pretexting

Question 27

What is a microservice?

Answer 27

Designing an app as a collection of loosely coupled, independently deployable services.

Question 28

What is containerization?

Answer 28

An isolated app and its dependencies used to run and manage the app consistently across different os's.

Question 29

What protocol is associated with port security and allows data access control over the data link layer?

Answer 29

802.1x

Question 30

What is a network appliance that inspects traffic at both the transport and application layers and can make decisions based on both?

Answer 30

Next generation firewall (NGFW)

Question 31

What is the common vulnerability enumeration(CVE)?

Answer 31

Provides a standard identifier for a known vulnerability.

Question 32

What tool to use to detect unauthorized changes to system files?

Answer 32

File integrity monitoring apps.

Question 33

What mechanism is used to streamline the access to a cloud app from the companies internal app?

Answer 33

Federation

Question 34

What do agents do?

Answer 34

Get info from endpoints.

Question 35

What is the primary advantage of standardized infrastructure configurations?

Answer 35

Enforcing baselines

Question 36

How to preserve data?

Answer 36

Legal hold

Question 37

What is continual oversight of a vendor?

Answer 37

Vendor monitoring

Question 38

What document allows you to audit the other company?

Answer 38

Right to audit clause