Security Assessment Flashcards
What is a security Assessment?
An examination of your security posture, practices and anything else related against industry standards.
What does it entail in a vulnerability assessment?
Review of:
exisiting configuration
code
software
architecture
design
dependencies
You need to see how all these things work together.
What is a vulnerability scanners?
Network scanning application that list inventory of systems of network and the details of that system.
It scans any ports open and compare it with vulnerabilities in a database.
What is a CVSS?
Common Vulnerability scoring system - a system for scoring vulnerability on their severity.
This is used to help us which CVEs need to be patched first.
What is a SIEM?
Security information and event management. Centralize solutions for all your logs.
Log collections
Analyze logs for anomalies
Generate alarms and notifications based on patterns
How do you verify the integrity of logs?
Checking the hash.
What is a SOAR?
Security orchestration, automation and response.
Integrates security tools, processes and technologies to improve the efficiency and effectiveness of incident response and threat management.
This helps us to automate responses without human interventions.
