1) Someone put malware on your computer that records all of your keystrokes. What aspect of security was primarily attacked? Choose the best response. a) Confidentiality b) Integrity c) Availability 2) What type of control would a security assessment procedure be? Choose the best response. a) Management b) Operational c) Physical d) Technical 3) Which controls primarily protect data integrity?  a) Authentication b) Encryption c) Fault tolerance d) Hashing e) Least Privilege 4) Which of the following policies would help an organization identify and mitigate potential single points of failure in the company’s IT/security operations? a) Least privilege b) Awareness training c) Separation of duties d) Mandatory vacation 5) A network administrator has been asked to install an Intrusion Detection System (IDS) to improve the security posture of an organization. Which of the following control types is an IDS?? a) Corrective b) Physical c) Detective d) Administrative 6) Everyone in the accounting department has the ability to print and sign checks. Internal audit has asked that only one group of employees may print checks while only two other employees may sign the checks. Which of the following concepts would enforce this process? a) Separation of Duties b) Mandatory Vacations c) Discretionary Access Control d) Job Rotation 7) The systems administrator notices that many employees are using passwords that can be easily guessed or are susceptible to brute force attacks. In response, password rules requiring complexity were implemented. What security control would this fall under? a) Managerial b) Technical c) Operational d) Physical

Security Fundamentals

autor:

Tabela rankingowa

Motyw

Opcje

Zmień szablon

Przywrócić automatycznie zapisane ćwiczenie: ?