Cyber Attack Indication Events & Risk Mitigation

Questions and Answers

What is the primary goal of cyber risk mitigation?

• To implement security policies and technologies
• To reduce the overall impact and risk of a cyber threat (correct)
• To identify and respond to threats in a timely manner
• To increase revenue

What is a common challenge of cyber risk mitigation for organizations?

• Having too many security teams
• Identifying too many threats
• Having too many assets to protect
• Lack of resources (correct)

What is the primary benefit of timely identification and mitigation of cyber risks?

• Better security compliance
• Increased revenue
• Fewer vulnerabilities
• Reducing the overall impact and risk of a cyber threat (correct)

What is the main objective of the 'Four Ts' approach in risk mitigation?

To reduce or avoid risks (D)

What are cyber attack indication events?

Signals or signs that indicate the presence of a cyber attack or malicious activity (D)

What do IOAs stand for?

Indicators of Attack (D)

Why are cyber attack indication events important?

To respond immediately to avoid any compromise of business or systems (B)

What is a common limitation of security teams in mitigating cyber risks?

They are not able to identify and respond to threats in a timely manner (B)

What is the primary focus of IOCs?

Identifying tactics, techniques, and procedures used by attackers (A)

What is the goal of 'Transferring Risk' in the 'Four Ts' approach?

To shift risk ownership to another party (B)

What do IOCs indicate?

A system or network has been compromised by a cyber attack (A)

What is the main difference between IOAs and IOCs?

IOAs are used for attack detection, while IOCs are used for compromise detection (C)

What is the primary disadvantage of terminating a risk?

It restricts what the organization can do (A)

What is an example of transferring risk?

Contracting with a cloud service provider (D)

What is an example of a risk termination strategy?

Deciding not to store sensitive customer data on servers (B)

What is a disadvantage of transferring risk?

Some risks, such as human error, cannot be fully transferred (D)

What is an advantage of terminating a risk?

It enhances confidence among customers and investors (C)

What is the purpose of treating risk?

To reduce the likelihood of the risk occurring (A)

Why is terminating a risk considered the most expensive risk strategy?

Because it costs the organization potential benefits of the activity (B)

What is a consequence of relying only on accepting risks?

It can lead to the accumulation of risks (C)

What is an example of treating risk?

Setting up antivirus software and firewalls (D)

What is an advantage of treating risk?

It ensures systems and data are safeguarded against various threats (C)

What is a potential long-term consequence of terminating a risk?

It can limit the organization's ability to adapt to changes (A)

What may be left over after treating an unacceptable risk?

A residual risk (A)

A major disadvantage of treating risk is that:

it may not completely eliminate all risks (C)

What is a potential advantage of tolerating risk?

It reduces mistakes and laziness among team members (A)

Why might an organization tolerate risk?

Because the cost of implementing risk management options is too high (C)

What is a potential consequence of accepting risks without proper action?

Legal trouble due to non-compliance with regulations (B)

What is a characteristic of tolerating risk?

It involves no action to mitigate risks (C)

What is a limitation of risk management strategies?

They can be impacted by factors such as budget constraints (A)