1
Q
Gap Analysis
A
Process of evaluation the differences between an orgs current performance and it’s desired performance
2
Q
Steps of gap analysis
A
- Define the scope of analysis
- Gather data on current org
- Analyze data to ID gap
- Develop plan to bridge gap
3
Q
Technical Gap
A
Involves evaluating current orgs technical infrastructure and identifying an areas where it falls short of technical capabilities required to utilize security solution
4
Q
Business Gap
A
Evaluating current business processes and identifying where they fall short of the capabilities needed to utilize cloud-based solutions
5
Q
Plan of action and milestones (POA&M)
A
Outlines the specific measures to address each vulnerability, allocate resources, and set up timelines for each remediation task
SY0-701 Flash cards
flashcards
Decks in class (24)
# Cards
-
Fundamentals of Security16
-
Threats and vulnerabilities7
-
Confidentiality8
-
Integrity7
-
Availability8
-
Non-Repudiation3
-
Authentication10
-
Authorization2
-
Accounting9
-
Security Control Categories4
-
Security control types6
-
Gap Analysis5
-
Zero Trust10
-
Threat Actor12
-
Obj. 2.1 Threat actor motivations10
-
Threat actor attributes5
-
Unskilled attackers3
-
Hacktivists4
-
Organized crime3
-
Nation state actors7
-
Insider threats2
-
Shadow IT3
-
Threat vectors and attack surfaces11
-
Outsmarting threat actors14
