LF11bV2 Deck 5 Flashcards by Unknown Unknown

IT-Risikomanagement

Kontinuierlicher Prozess Identifikation Analyse Behandlung Überwachung von IT-Risiken

How well did you know this?

Not at all

Perfectly

Risikobasierte Ansatz

Entscheidungen basierend auf Risikobewertung nicht nur Compliance

How well did you know this?

Not at all

Perfectly

Residual Risk

Verbleibendes Risiko nach Gegenmaßnahmen Akzeptanz notwendig

How well did you know this?

Not at all

Perfectly

Risk Appetite

Maximal akzeptierbares Risiko Unternehmen definiert vom Management

How well did you know this?

Not at all

Perfectly

Risk Tolerance

Tatsächliche Risikobereitschaft Abweichung von Appetite

How well did you know this?

Not at all

Perfectly

Qualitative Risikobewertung

Hoch Mittel Niedrig Verbal Traffic Light System

How well did you know this?

Not at all

Perfectly

Quantitative Risikobewertung

Geldwerte ALE Annualized Loss Expectancy

How well did you know this?

Not at all

Perfectly

ALE Annualized Loss Expectancy

ARO x SLE Annualized Rate of Occurrence x Single Loss Expectancy

How well did you know this?

Not at all

Perfectly

ROE Return on Security Investment

Kosten-Nutzen-Verhältnis Sicherheitsmaßnahmen

How well did you know this?

Not at all

Perfectly

BCP Business Continuity Plan

Geschäftskontinuität bei Ausfall RTO RPO definieren

How well did you know this?

Not at all

Perfectly

DRP Disaster Recovery Plan

Daten System-Wiederherstellung Backup Strategy

How well did you know this?

Not at all

Perfectly

RTO Recovery Time Objective

Maximal akzeptierte Ausfallzeit kritische Systeme

How well did you know this?

Not at all

Perfectly

RPO Recovery Point Objective

Maximaler Datenverlust Minuten Stunden

How well did you know this?

Not at all

Perfectly

Hot Site

Vollständig ausgestatteter Replikationsstandort sofort einsatzbereit

How well did you know this?

Not at all

Perfectly

Warm Site

Teilausstattung Konfiguration vorhanden Update erforderlich

How well did you know this?

Not at all

Perfectly

Cold Site

Raum Strom Netzwerk vorhanden komplette Ausstattung nötig

How well did you know this?

Not at all

Perfectly

Chaos Engineering

Kontrollierte Ausfälle Test Resilienz Netflix Chaos Monkey

How well did you know this?

Not at all

Perfectly

Digital Forensics

Wissenschaftliche Untersuchung digitaler Spuren Gerichtsverwertbarkeit

How well did you know this?

Not at all

Perfectly

Chain of Custody

Dokumentation Beweismittel Integrität Gerichtsverfahren

How well did you know this?

Not at all

Perfectly

Memory Forensics

Volatile RAM-Analyse laufender Malware Prozesse

How well did you know this?

Not at all

Perfectly

Timeline Analysis

Chronologische Rekonstruktion Incident Verlauf Super-Timeline

How well did you know this?

Not at all

Perfectly

IOC Hunting

Suche nach Indicators of Compromise Hash IP Domain YARA Rules

How well did you know this?

Not at all

Perfectly

YARA Rules

Pattern-Matching Regeln Malware IOC Erkennung

How well did you know this?

Not at all

Perfectly

Threat Intelligence

Strukturierte Bedrohungsinformationen STIX TAXII

How well did you know this?

Not at all

Perfectly

MITRE ATT&CK Navigator

Taktik-Technik Mapping Incident Coverage

Purple Teaming

Red Blue Kollaboration kontinuierliches Lernen

Gamification SecOps

CTF Capture The Flag Security Challenges

DevSecOps

Security in DevOps-Pipeline Shift Left IaC Security

SBOM Software Bill of Materials

Komponentenliste Software Lieferkette

SBOM Tools

Syft Grype CycloneDX SPDX Generation Analyse

Zero Trust Architecture

Verify Explicitly Never Trust Always Assume Breach

ZTNA Zero Trust Network Access

Per-App Zugriff Identity-basierend

SASE Secure Access Service Edge

Cloud-native Security Networking Convergence

CASB Cloud Access Security Broker

SaaS Shadow IT DLP CASB

CSPM Cloud Security Posture Management

Cloud-Konfigurationsfehler Erkennung

CNAPP Cloud Native Application Protection Platform

CSPM CWPP Convergence

CWPP Cloud Workload Protection Platform

Container Kubernetes Runtime Security

FAISS Federated AI Security Information Sharing

Bedrohungsinfos anonymisiert teilen

XDR Extended Detection Response

Multi-Source Korrelation EDR NDR SIEM

NDR Network Detection Response

Netzwerk-basierte Threat Detection ML

UEBA User Behavior Analytics

Insider Threat Erkennung ML-basierend

SOAR Playbooks

Automatisierte Incident Response Workflows

Attack Surface Management

Externe Assets Scannen ASM Continuous

Dark Web Monitoring

Forum Leak Monitoring Credential Stuffing

Brand Protection

Domain Phishing Site Take-down Monitoring

Supply Chain Risk Management

Vendor Assessment Third-Party Risk

GRC Governance Risk Compliance

Policy Management Audit Trail

GXP GMP GAMP5

Pharma Life Sciences Compliance Validierung

FedRAMP

US Federal Cloud Authorization Standards

CISA Known Exploited Vulnerabilities

US Agency CISA aktiv ausgenutzte Schwachstellen

Supply Chain Levels for Software

SLSA Integrity Guarantees Build Pipeline

SBOM Attestation

Signierte Komponentenliste Integrität Supply Chain

Critical Design Review

Architektur Security Review vor Entwicklung

Threat Modeling

STRIDE DREAD Attack Trees Design Phase

Privacy by Design

Datenschutz Entwicklungsintegration GDPR Art.25

Secure SDLC

Security in gesamtem Software Development Lifecycle

Container Image Scanning

Docker Registry Scans Vulnerabilities Malware

Kubernetes RBAC

Role-Based Access Control Namespaces ServiceAccounts

Istio Service Mesh

Zero Trust Networking mTLS Observability

eBPF Extended Berkeley Packet Filter

Kernel Tracing Security Observability

Falco Runtime Security

Container Cloud-Native Intrusion Detection

Tetragon eBPF-based Security

Kubernetes Observability Enforcement

Wazuh Open Source SIEM

Endpoint Log Management Compliance

OSSEC Host-based IDS

File Integrity Rootkit Detection

Suricata Network IDS IPS

Multi-Threaded Signature Anomaly Detection

Zeek Bro IDS

Network Analysis Protocol Parsing

Elastic Security

ELK Stack SIEM Endpoint ML

LF11bV2 Deck 5 Flashcards

Betrieb und Sicherheit vernetzter Systeme gewährleisten (67 cards)