Wrong answers

Question 1

MTTR

Answer 1

Mean Time to Restore/Repair

Question 2

Mean Time to Restore (MTTR)

Answer 2

The amount of time required to get
back up and running. This is sometimes called Mean Time To Repair.

Question 3

MTBF

Answer 3

Mean Time Between Failures

Question 4

RPO

Answer 4

Recovery Point Objective

Question 5

Recovery Point Objective (RPO)

Answer 5

A recovered system may not be completely repaired, but it will be running well enough to maintain a certain level of
operation.

Question 6

RTO

Answer 6

Recovery Time Objective

Question 7

Recovery Time Objective (RTO)

Answer 7

A GOAL of time to get back up and running

Question 8

WAF

Answer 8

Web Application Firewall

Question 9

Web Application Firewall (WAF)

Answer 9

Only allows a zip code in a zip code field. Prevents SQL injections

Question 10

Data Processor

Answer 10

Performs an action with/to the data. Often a third party or small group within the organization

Question 11

Data Owner

Answer 11

an executive that is ultimately responsible for the use and security of the data

Question 12

Data Controller

Answer 12

Manages the data. Often the human resources dept

Question 13

Data Custodian

Answer 13

Responsible for the accuracy, privacy, and security of the data. Often IT dept or someone whose sole job is data custodian.

Question 14

RTOS

Answer 14

Real Time Operating System

Question 15

Real Time Operating System (RTOS)

Answer 15

Needs to operate immediately, such as emergency breaking system in a vehicle or a military machine, device or function

Question 16

Orchestration

Answer 16

Large-scale automation or automating processes between
different systems.
(completing the script of generating IT tickets to correct depts)

Question 17

Due diligence

Answer 17

The investigation performed on a third party prior to doing business

Question 18

Role-based access controls

Answer 18

Used to associate a job function with a set of rights and permissions.

Question 19

Device certificate

Answer 19

can be used to verify the ownership of a remote system.

Question 20

Fail Over

Answer 20

When one system fails, an operational backup takes its place

Question 21

Firewall

Answer 21

Firewall rules must be
built to match the traffic flows, and only then will traffic pass through the
firewall.

Question 22

HA (High Availability)

Answer 22

High Availability

Question 23

UPS (Uninterruptable Power Supply)

Answer 23

Uninterruptable Power Supply

Question 24

VPN concentrator

Answer 24

used as an endpoint to
an endpoint VPN solution.

Question 25

ARO (Annualized Rate of Occurrence)

Answer 25

Annualized Rate of Occurrence

Question 26

AV (Asset Value)

Answer 26

Asset Value

Question 27

EF (Exposure Factor)

Answer 27

Exposure Factor, a percentage of asset lost

Question 28

SLE (Single Loss Expectancy)

Answer 28

Single Loss Expectancy, dollar amount lost to a single event

Question 29

ALE (Annualized Loss Expectancy)

Answer 29

Annual Loss Expectancy, dollar amount lost to all events in a year

Question 30

WCF (Web Content Filtering)

Answer 30

Blocks malicious websites, inexpensive, easy to use

Question 31

DNS Filtering (Domain Name System Filtering)

Answer 31

Blocks users from visiting malicious websites

Question 32

802.1X

Answer 32

Authenticates user before user can gain access to the network- does not encrypt data in transit

Question 33

WPA3

Answer 33

Authenticates user and encrypts data over the internet

Question 34

RADIUS

Answer 34

Authenticates user credentials, any login page

Question 35

Port 443

Answer 35

HTTPS secure encrypted

Question 36

Port 80

Answer 36

HTTP not encrypted

Question 37

SCAP (Security Content Automation Protocol)

Answer 37

Automates validation and patching of security issues

Question 38

DSA (Digital Signature Algorithm)

Answer 38

Provides integrity, authentication, and non-repudiation. Opposite of encrypting information, sender sends with private key. Receiver verifies with public key.

Question 39

SSH

Answer 39

Secure compared to Telenet

Question 40

FTPS (Secure File Transfer Protocol)

Answer 40

Secure File Transfer Protocol

Question 41

SSL/TLS

Answer 41

All the power of your browser with encryption from HTTPS Port 443

Question 42

AES (Advanced Encryption Standard)

Answer 42

Advanced Encryption Standard, a symmetrical encryption

Question 43

Passive Reconaissance

Answer 43

Searching social media etc

Question 44

Active Reconnaissance

Answer 44

Penetration testing

Question 45

DMARC

Answer 45

Specifies spam emails

Question 46

SPF (Sender Policy Framework)

Answer 46

List of authorized/trust email senders

Question 47

NAC (Network Access Control)

Answer 47

Only allowing authorized users with the help of EAP and IEEE 802.1X

Question 48

DKIM

Answer 48

Validates digitally signed emails

Question 49

Federation

Answer 49

Using a third party to log into a site, like using Google account to log into Pinterest

Question 50

Journaling

Answer 50

Saves a copy as a middle man in case data goes down before getting posted

Question 51

Resource Provisioning

Answer 51

Automated employee permissions related to onboarding/offboarding

Question 52

Business Continuity

Answer 52

Plan B for when Plan A tech no workie

Question 53

DNS Posioning

Answer 53

Attackers impersonating DNS to user by taking on IP address of DNS. Can also direct user to malicious websites

Question 54

Enumeration

Answer 54

Documenting list of all parts in a device

Question 55

IaC

Answer 55

Infrastructure as Code

Question 56

AUP

Answer 56

Acceptable use Policy

Question 57

SASE

Answer 57

Secure Access Service Edge- VPN for cloud services

Question 58

NAT

Answer 58

Network Address Translation- assigning same IP address to a group of computers

Question 59

UTM

Answer 59

all-in one device, expensive, router, IPS, firewall combined. can limit overall bandwidth

Question 60

SCADA/ICS

Answer 60

network connecting large pieces of machinery in industrial environments, such as power plants, manufacturing, mining

Question 61

VM Virtual Machines

Answer 61

Only share hardware resources

Question 62

Containerized deployments

Answer 62

Share kernal operating systems, less secure than VM for this reason

Question 63

DLP

Answer 63

Data Loss Prevention- could be in rest or in motion, blocking sensitive data in real time

Question 64

Input validation

Answer 64

Input validation can be used to create a very specific filter of allowed input,

Question 65

Static code analyzer

Answer 65

A static code analyzer is useful when evaluating the security of existing source code.

Question 66

Secure cookies

Answer 66

Secure cookies ensure the information contained in the browser cookie is encrypted and only viewable by the end user.

Question 67

Snapshot

Answer 67

Virtual machines (VMs) have a snapshot feature to capture both a full backup of the virtual system and incremental changes that occur over time. It’s common to take a snapshot of a VM for backup purposes or before making any significant changes to the VM.

Question 68

Owner

Answer 68

The owner of an object controls access in a discretionary access control model.

Question 69

Administrator

Answer 69

Administrators generally label objects when using mandatory access control, but they are not involved with discretionary access control.

Question 70

OCSP (Online Certificate Status Protocol) Stapling

Answer 70

Stapling allows the certificate holder verify their own certificate status. The OCSP status is commonly “stapled” into the SSL/TLS handshake process. Instead of contacting the certificate authority to verify the certificate, the verification is included with the initial network connection to the server.

Question 71

Wildcards

Answer 71

Wildcards are added to certificates for use across multiple devices associated with the same domain name.

Question 72

Directory traversal

Answer 72

Directory traversal attempts to read or access files outside the scope of the web server's file directory. Look for a pair of dots in a file path (../)

Question 73

LDAP (Lightweight Directory Access Protocol)

Answer 73

a common standard for authentication. LDAP is an open standard and is available across many different operating systems and devices.

Question 74

DES and WEP

Answer 74

Older, weak encryption

Question 75

Replay attack

Answer 75

A replay attack uses previously transmitted information to gain access to an application or service. This information is commonly captured in network PACKETS and replayed to the service.

Question 76

SOW

Answer 76

A SOW (Statement of Work) is a detailed list of tasks, items, or processes to be completed by a third-party. The SOW lists the job scope, location, deliverables, and any other specifics associated with the agreement. The SOW is also used as a checklist to verify the job was completed properly by the service provider.

Question 77

SLA

Answer 77

An SLA (Service Level Agreement) sets the minimum terms of service between a customer and a service provider. This agreement often contains terms for expected uptime, response time requirements,

Question 78

BPA

Answer 78

A BPA (Business Partners Agreement) is used between entities going into business together.

Question 79

MOU

Answer 79

A Memorandum of Understanding, states common goals, not legally binding

Question 80

MOA

Answer 80

Memorandum of Agreement, next step above a MOU, both sides agree to objectives, sometimes legally binding, sometimes not

Question 81

MSA

Answer 81

Master Service Agreement, legal contract, sets the terms, above MOU AND MOA

Question 82

Air-gapped

Answer 82

An air-gapped network would be physically isolated from other networks. Air gapped networks are commonly used to separate networks that must never communicate to each other.

Question 83

SD-WAN

Answer 83

An SD-WAN (Software Defined Networking in a Wide Area Network) network allows users to efficiently communicate directly to cloud-based applications

Question 84

Jump server

Answer 84

A jump server is often used to allow external access to internal devices, commonly for maintenance or administrative tasks.

Question 85

Non-repudiation

Answer 85

Non-repudiation is used to verify the source of data or a message. Digital signatures are commonly used for non-repudiation.

Question 86

Containment

Answer 86

The containment phase isolates events which can quickly spread and get out of hand.

Question 87

Eradication

Answer 87

Eradication focuses on removing the cause of the event and restoring the systems back to their non-compromised state.

Question 88

would be the MOST effective use of asymmetric encryption?

Answer 88

Create a shared session key without sending the key across the network.

Question 89

Data sanitization

Answer 89

Data sanitization involves the complete removal of data without any method of recovery.

Question 90

data inventory

Answer 90

A data inventory describes a list of all data managed by an organization.

Question 91

Metadata

Answer 91

Metadata is data which describes other data sources. Email header information, network headers,

Question 92

Forward proxy/proxy server

Answer 92

A proxy server can be used to monitor incoming and outgoing network communication. Proxy servers can be used to identify malicious software, filter content, or increase performance through file caching

Question 93

OSINT

Answer 93

OSINT (Open Source Intelligence) is information gathered from publicly available sources such as social media sites, online forums,

Question 94

SCAP

Answer 94

SCAP (Security Content Automation Protocol) is a standard method used by security tools to identify and act on the same criteria.

Question 95

Internal self-assessment

Answer 95

An internal self-assessment with audit can verify users have the correct permissions and all users meet the practice of least privilege.

Question 96

Account de-provisioning

Answer 96

the disabling of an account and archiving of user information. This process usually occurs when an employee has left the organization.

Question 97

VLAN

Answer 97

A VLAN (Virtual Local Area Network) is a logical method of segmenting traffic within network switches. Although this segmentation is effective, it’s not as secure as an air gap.

Question 98

CYOD

Answer 98

CYOD (Choose Your Own Device) employer buys device

Question 99

COPE

Answer 99

Corporately Owned, Personally Enabled devices are purchased by the company and deployed to the users.

Question 100

BYOD

Answer 100

BYOD (Bring Your Own Device) is a model where the employee owns the mobile device but can also use the same device for work.

Question 101

Router

Answer 101

Routers forward traffic between separate IP subnets or VLANs, and use the destination IP address to determine which interface on the router will be used

Question 102

Proxy

Answer 102

Intercept all browser requests and cache the results