Control Type and Selection

Question 1

____ are countermeasures or safeguards used to reduce the chances that a threat will exploit a vulnerability.

Answer 1

security controls

Question 2

The act of reducing risk is also called _____.

Answer 2

risk mitigation

Question 3

three main types of IT security controls

Answer 3

1. Technical
2. Administrative
3. Physical

Question 4

CONTROL TYPES

Fences

Answer 4

Physical

Question 5

CONTROL TYPES

Gates

Answer 5

Physical

Question 6

CONTROL TYPES

CCTV

Answer 6

Physical

Question 7

CONTROL TYPES

Surveillance

Answer 7

Physical

Question 8

CONTROL TYPES

Repair physical damage

Answer 8

Physical

Question 9

CONTROL TYPES

re-issue access cards

Answer 9

Physical

Question 10

CONTROL TYPES

IPS

Answer 10

Technical

Question 11

CONTROL TYPES

Honeypots

Answer 11

Technical

Question 12

CONTROL TYPES

Antivirus

Answer 12

Technical

Question 13

CONTROL TYPES

Vulnerability patching

Answer 13

Technical

Question 14

CONTROL TYPES

reboot a system

Answer 14

Technical

Question 15

CONTROL TYPES

hiring & termination policies

Answer 15

administrative

Question 16

CONTROL TYPES

separation of duties

Answer 16

administrative

Question 17

CONTROL TYPES

data classification

Answer 17

administrative

Question 18

CONTROL TYPES

review access rights

Answer 18

administrative

Question 19

CONTROL TYPES

audit logs

Answer 19

administrative

Question 20

CONTROL TYPES

implement a business continuity plan

Answer 20

administrative

Question 21

CONTROL TYPES

have an incident response plan

Answer 21

administrative

Question 22

Risk mitigation is achieved by implementing different types of security controls depending on:

Answer 22

1. The goal of the countermeasure
2. level to which the risk needs to be minimized
3. severity of damage the threat can inflict

Question 23

_____ controls attempt to prevent an incident from occurring.

Answer 23

Preventive

Question 24

____ controls attempt to detect incidents after they have occurred.

Answer 24

Detective

Question 25

____ controls attempt to reverse the impact of an incident.

Answer 25

corrective

Question 26

_____ controls attempt to discourage individuals from causing an incident.

Answer 26

Deterrent

Question 27

_____ controls are alternative controls used when a primary control is not feasible.

Answer 27

comepnsating

Question 28

They are the people who interact with the physical assets, networks, and endpoints.

Answer 28

Users

Question 29

Users must adhere to security policies, such as using strong passwords, being aware of phishing attempts, and following proper access control procedures.

Answer 29

Responsibility

Question 30

Human error, such as falling for a social engineering attack or misplacing a device, can compromise even the most robust security systems.

Answer 30

Vulnerability

Question 31

the primary asset that all the security measures are ultimately designed to protect. It is the information (personal records, intellectual property, financial data) that has value to an organization.

Answer 31

Data

Question 32

3 States of data

Answer 32

1. rest (stored) 2. transit (moving across network) 3. in use (being processed by an app)

Question 33

SECURITY DOMAINS Tangible assets (buildings, hardware, server rooms, people)

Answer 33

Physical

Question 34

SECURITY DOMAINS Prevent unauthorized physical access, theft, vandalism, and damage from environmental threats (fire, flood).

Answer 34

Physical

Question 35

SECURITY DOMAINS The network infrastructure and data as it moves across the network (data in transit).

Answer 35

Network

Question 36

SECURITY DOMAINS Individual devices (laptops, desktops, mobile phones, servers) that connect to the network.

Answer 36

Endpoint

Question 37

SECURITY DOMAINS Protect the integrity of the network and control traffic flow to prevent digital intrusions and data breaches.

Answer 37

Network

Question 38

SECURITY DOMAINS Protect the data and applications residing on the device, serving as the last line of defense against threats.

Answer 38

Endpoint

Question 39

the likelihood that a threat will exploit a vulnerability resulting in a loss.

Answer 39

risks

Question 40

any event with the potential to compromise the confidentiality, integrity, and availability (CIA) of information.

Answer 40

Threat

Question 41

___ are a weakness or flaw in the software, hardware, or organizational processes, which when compromised by a threat, can result in a security incident.

Answer 41

Vulnerabilities

Question 42

an occurrence that actually or potentially jeopardizes the confidentiality, integrity, or availability of an information system or the information the system processes, stores, or transmits or that constitutes a violation or imminent threat of violation of security policies, security procedures, or acceptable use policies.

Answer 42

Security Incidents

Question 43

Network traffic filters that can control incoming or outgoing traffic. ACLs are common in routers or firewalls but can also be configured in any device that runs in the network.

Answer 43

Access Control Lists (ACLs)

Question 44

A policy that defines what to do with user access accounts for employees who leave voluntarily, have immediate terminations, or are on a leave of absence.

Answer 44

Account Disablement Policy

Question 45

Policies, procedures, or guidelines that define personnel or business practices in accordance with the organization’s security goals.

Answer 45

Administrative Security Controls

Question 46

The process of creating and storing copies of data that can be used to protect organizations against data loss.

Answer 46

Backups and System Recovery

Question 47

The methods and manners in which a company describes and implements change within both its internal and external processes.

Answer 47

Change Management

Question 48

Alternative controls used when a primary control is not feasible. They must meet the intent of the original control and provide a similar level of assurance.

Answer 48

Compensating Controls

Question 49

Controls that attempt to reverse the impact of an incident.

Answer 49

Corrective Controls

Question 50

A common security strategy used whereby multiple layers of controls are implemented.

Answer 50

Defense-in-depth

Question 51

Controls that attempt to detect incidents after they have occurred.

Answer 51

Detective Controls

Question 52

Controls that attempt to discourage individuals from causing an incident.

Answer 52

Deterrent Controls

Question 53

The process of reducing security exposure and tightening security controls.

Answer 53

Hardening

Question 54

A network security technology that monitors network traffic to detect anomalies and can quickly prevent malicious activity by dropping packets or resetting connections.

Answer 54

Intrusion Prevention Systems

Question 55

An approach that combines multiple security controls to develop a defense-in-depth strategy.

Answer 55

Layering

Question 56

A diagnostic method used to analyze real-time events or stored data to ensure application availability and to assess the impact of changes on an application’s performance.

Answer 56

Log Monitoring

Question 57

Security controls that focus on the management of risk and the management of information system security.

Answer 57

Management Controls

Question 58

Security controls that are primarily implemented and executed by people (as opposed to systems).

Answer 58

Operational Controls

Question 59

A method for testing a web application, network, or computer system to identify security vulnerabilities that could be exploited.

Answer 59

Penetration Testing

Question 60

The implementation of security measures in a defined structure used to deter or prevent unauthorized access to sensitive material.

Answer 60

Physical Controls

Question 61

Controls that attempt to prevent an incident from occurring.

Answer 61

Preventive Controls

Question 62

The likelihood that a threat will exploit a vulnerability resulting in a loss.

Answer 62

Risk

Question 63

The act of reducing risk by decreasing the chances that a threat will exploit a vulnerability.

Answer 63

Risk Mitigation

Question 64

A measurement that focuses on cybersecurity standards, guidelines, and procedures, as well as the implementation of these controls.

Answer 64

Security Audit

Question 65

The process of providing formal cybersecurity education to a workforce about various information security threats and company policies for addressing them.

Answer 65

Security Awareness Training

Question 66

The testing and/or evaluation of the management, operational, and technical security controls in an information system to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome.

Answer 66

Security Control Assessment

Question 67

Countermeasures or safeguards used to reduce the chances that a threat will exploit a vulnerability.

Answer 67

Security Controls

Question 68

An occurrence that actually or potentially jeopardizes the confidentiality, integrity, or availability (CIA) of an information system or the information it processes, stores, or transmits.

Answer 68

Security Incident

Question 69

A set of tools and services offering a holistic view of an organization’s information security by using operational logs from various systems.

Answer 69

Security Information and Event Management (SIEM)

Question 70

Also known as logic controls, these use technology to reduce vulnerabilities in hardware and software.

Answer 70

Technical Controls

Question 71

The practice of gathering information and attempting to identify a pattern in the information gathered from an application’s log output.

Answer 71

Trend Analysis

Question 72

The process of identifying risks and vulnerabilities in computer networks, systems, hardware, applications, and other parts of the IT ecosystem.

Answer 72

Vulnerability Assessment