Security Operations

Question 1

What are the three phases of a secure baseline?

Answer 1

1. Establish
2. Deployable
3. Maintain

Question 2

What is the CIS?

Answer 2

Center for internet security. It pros and organizations worldwide provide detailed road maps to set up security baselines.

Question 3

What is the STIG?

Answer 3

Security technical implementation guide. Security baselines set up by the dod..

Question 4

What is SCAP? What does it do.

Answer 4

Security context automation protocol.
Provides a common language for vulnerabilities so they can be shared between security tools and systems

Question 5

What is CIS-Cat?

Answer 5

Center for internet security config assessment tool. Gold standard automatic standard.

Question 7

How to harden mobile devices?

Answer 7

1. Strong passwords
2. Biometrics
3. Encryption
4. Patching.

Question 8

How to harden workstations?

Answer 8

1. Firewalls
2. Anti-virus
3. Principal of least privilege

Question 9

How to harden switches?

Answer 9

1. Replace defaults
2. Strong passwords
3. Close unused ports
4. Use virtual lans
5. Use secure shell
6. Use acls
7. Patch

Question 10

How to harden routers?

Answer 10

1. Update defaults
2. Firewall
3. Disable remote management
4. Only user ssh for access
5. Patches

Question 11

How to harden cloud?

Answer 11

1. Access controls
2. Encryption

Question 12

How to harden servers?

Answer 12

1. Patches
2. Principal of least privilege
3. Logs

Question 13

How to harden industrial control systems (ICS)?

Answer 13

1. Segmentation
2. Use supervising control and data acquisition system (SCADA)
3. Physical security
4. Patches

Question 14

How to harden IOT’s?

Answer 14

1. Change defaults
2. Strong authentication
3. Updates
4. Segmentation

Question 15

How to harden WAN’s?

Answer 15

1. Change default
2. Modify ssid name
3. Disable ssid broadcasting
4. Use MAC filtering
5. Use WPA3 encryption

Question 16

What are the 3 mdm deployment models?

Answer 16

1. Bring your own (BYOO)
2. Choose your own device (CYOO)
3. Corporate owned, personally enabled (COPE)

Question 17

2 wireless connection methods?

Answer 17

1. Wireless
2. Bluetooth

Question 18

What are the 5 Wireless connection methods?

Answer 18

1. Ad-hoc- 2 devices connected together without a wan. Like wi-fi direct
2. Captive portal- controls access to a wan. Usually a web page.
3. Wps- connect to wan by pushing a button. Wi-fi protected setup
4. Pre-shared key
5. Evil twin attack

Question 19

What is bluejacking?

Answer 19

Uses Bluetooth discoverable mode to send stuff to phone like phishing

Question 20

What is bluesnarfing?

Answer 20

Using Bluetooth t o get data from a phone.

Question 21

How to harden Bluetooth?

Answer 21

1. Disable unused connections
2. Use Bluetooth low energy (BLE)
3. Keep in non discoverable mode

Question 22

What is nfc? And how to avoid skimmimg

Answer 22

Near field communications. Like contact less pay.

Put in aluminum