Building a Strong Security Strategy

Questions and Answers

Which of the following is a sign of less maturity in an organization's security strategy?

• Little formal leadership exists. (correct)
• Processes are documented, reviewed, measured, and tested.
• Some cybersecurity tools may be used if they are free or bundled within other software packages.
• Clear job descriptions and top-down leadership supports the cybersecurity strategy.

What is the purpose of outlining and implementing a security strategy in an organization?

• To prioritize cybersecurity as a secondary consideration.
• To increase preparedness for a breach.
• To focus on system perspectives.
• To mitigate threats. (correct)

What is security maturity in the context of cybersecurity?

• The number of cybersecurity roles in an organization.
• The ad hoc processes followed by an organization.
• The investment in cybersecurity tools.
• The level of experience an organization has in cybersecurity. (correct)

Which organization offers guidance on managing cybersecurity risks through the 10 Steps to Cyber Security?

National Cyber Security Centre (A)

What is the purpose of adopting the security measures outlined in the 10 Steps to Cyber Security?

To minimize the impact of cyber attacks (D)

What is the significance of the cybersecurity marketplace for organizations starting out with a cybersecurity strategy?

Organizations can leverage existing security products and services (D)

What is the key idea highlighted regarding cybersecurity maturity?

Organizations can be mature in some areas but not in others (B)