Cyber Security Overview Quiz

Questions and Answers

What is the primary focus of cybersecurity?

• Ensuring the safety of all types of information
• Safeguarding digital information from cyber threats (correct)
• Managing organizational data in paper form
• Protecting physical documents from fire hazards

Which of the following threats does cybersecurity exclusively focus on?

• Natural disasters like floods
• Malware attacks (correct)
• Unauthorized access to physical records
• Theft of physical documents

What is the primary concern of information privacy?

• The proper handling of personal information (correct)
• The promotion of technology use
• The development of cybersecurity policies
• The encryption of network data

How does the scope of information security compare to that of cybersecurity?

Information security encompasses both physical and electronic forms of data. (A)

Which of the following is NOT a goal of information security?

Data optimization (C)

Which aspect is NOT considered a part of cybersecurity?

Physical theft of documents (B)

How can confidentiality of digital information be maintained?

Using access controls and encryption (D)

What can be classified as part of the threat landscape for information security?

Physical disasters affecting paper records (B)

What is a significant consequence of a loss of integrity in digital assets?

Potential success of further attacks (B)

Which statement correctly highlights a key difference between information security and cybersecurity?

Cybersecurity is a subset of information security. (D)

Which concept ensures reliable access to information and systems?

Availability (B)

What does the risk management aspect of cybersecurity primarily deal with?

Identifying and mitigating digital threats (C)

What defines a computer vulnerability?

A defect that can be exploited (B)

What is one of the main areas covered in the course on Cyber Security?

Incident Response and Recovery (B)

Which of the following is a method to control the integrity of digital assets?

Logging and digital signatures (A)

What is considered a threat in the context of computer security?

Anything that can cause serious harm to systems (B)

What is the primary focus of cybersecurity?

Securing network and system infrastructures (C)

Which statement accurately describes information security?

It encompasses policies for handling both digital and physical information. (D)

What type of data does cybersecurity primarily concern itself with?

Digital data and communications (C)

Which of the following is NOT a focus of information security?

Intrusion detection and prevention (D)

Which of the following tools is primarily used in cybersecurity?

Antivirus software (B)

What is the role of disaster recovery planning in information security?

Ensuring recovery of data and operations after disruptions (B)

In contrast to information security, cybersecurity primarily addresses which of the following?

Technical measures against digital threats (A)

Which of the following best describes the relationship between information security and cybersecurity?

Information security is broader and includes cybersecurity measures. (D)

What is a vulnerability in the context of computer security?

Weaknesses or gaps in a security program. (D)

Which of the following is NOT considered a type of vulnerability?

Hardware enhancements. (D)

How is security risk defined mathematically?

Security Risk = Asset + Threat + Vulnerability (D)

What does the Information Security Policy aim to protect?

Confidentiality, integrity, and availability of institutional data. (B)

Which role is considered the weakest link in cybersecurity?

User (D)

What must users do with regard to information security policies?

Report suspected vulnerabilities and misuse. (A)

What type of data does the Information Security Policy seek to protect?

Any data owned or licensed by the institution. (D)

Which of the following statements about securing information systems is accurate?

Security should be considered reasonable based on data sensitivity. (A)

What should you do when discussing Restricted data?

Only discuss it with individuals who have a need to know. (A)

Which method is appropriate for securely deleting files that contain Restricted data?

Use Identity Finder. (C)

When handling electronic communications, what should you avoid?

Opening attachments from unknown sources. (A)

What action should you take if you suspect a security breach?

Disconnect the computer from the network. (D)

What does confidentiality in cyber security refer to?

Preventing unauthorized data disclosure. (A)

What is a recommended practice for managing electronic communications?

Organize communications by project or work type. (A)

Which of the following is a risky online behavior?

Clicking on shortened URLs without verification. (D)

What should you use to dispose of paper-based media containing confidential information?

Cross shredder. (B)

What should users do to safeguard institutional data from being stored on mobile devices?

Avoid storing restricted data on mobile computing devices (D)

Which of the following is a recommended practice for password security?

Change your password periodically (B)

What should users do if their computer is unattended?

Lock the computer to prevent unauthorized access (D)

How should users handle public wireless networks?

Avoid connecting unless necessary (C)

Which of the following actions is NOT recommended when transmitting restricted data?

Transmitting data via email (A)

What is one of the best practices for protecting physical data in an office?

Lock file cabinets that store institutional data (D)

What is an important action to take regarding operating system security?

Enable automatic software updates where available (B)

Which type of data should be handled with the highest security measures?

Restricted data that requires strict controls (A)

Flashcards

Information Security

Protecting data in all forms, including physical and digital, from unauthorized access, use, disclosure, disruption, modification, or destruction.

Cybersecurity

Protecting digital data and systems from cyber threats like hacking, viruses, and data breaches.

Data Protection

Protecting data from unauthorized access, use, and disclosure.

Cybersecurity Focus

Cybersecurity prioritizes protecting network, systems, and digital assets.

Security Controls

Actions and measures taken to limit who can access information.

Information Security Components

Includes access controls, physical security, disaster recovery, and handling sensitive information in various forms (digital and physical).

Information Security

A broader concept encompassing all aspects of protecting information, including physical and electronic forms. It safeguards data in all forms.

Cybersecurity

A subset of information security focusing on protecting digital information from cyber threats. It protects digital systems, networks, and data.

Scope of InfoSec

Wide-ranging, including protecting data in all mediums (physical and digital).

Scope of Cybersecurity

Focused on digital information and systems; protecting data, networks, and devices from cyberattacks.

InfoSec Threats

Covers both physical and digital threats, including theft, disaster, and unauthorized access to physical records.

Cybersecurity Threats

Exclusively focuses on digital threats like malware, hacking, and data breaches.

Information Privacy

Proper handling, processing, storage, and usage of personal information, which focus on the rights associated with this information.

Information Security

Protecting computer systems and data from unauthorized access, use, disclosure, disruption, modification, or destruction.

Confidentiality

Protecting data from unauthorized disclosure according to its sensitivity and legal requirements.

Integrity

Ensuring the accuracy and completeness of data and systems.

Availability

Ensuring timely and reliable access to information and systems.

Threat

Anything that may seriously harm a computer system.

Vulnerability

A system defect that makes it susceptible to attack.

Vulnerability

Weaknesses or gaps in a security program that can be exploited by threats to gain unauthorized access to an asset.

Network Vulnerability

Weaknesses in a network, such as insecure Wi-Fi or poorly configured firewalls.

Operating System Vulnerability

Weaknesses in computer operating systems, often related to default accounts or settings.

Human Vulnerability

Weaknesses related to human error or lack of security awareness that can compromise a security program.

Security Risk formula

Security Risk = Asset + Threat + Vulnerability

Security Risk

The potential for harm caused by a threat exploiting a vulnerability in an asset.

Information Security Policy

A set of rules and guidelines for protecting confidential, integrity, and available institutional data and systems.

Institutional Data

Any data owned or licensed by an institution.

Information System

Any electronic system used to store, process, or transmit information.

Data Agent

A role in information security focused on data.

Data Protector

A role in information security focused on protecting data.

User

An employee, contractor, or third-party authorized to access institutional data.

Safeguarding Data Types

Knowing if data is public, private, or restricted, and handling each accordingly.

Restrict Mobile Data

Do not store restricted data on mobile devices.

Avoid Personal Devices

Don't store institutional data on personal devices.

Physical Data Security

Protecting physical documents/storage (lock doors, cabinets, etc).

Password Security

Use strong passwords, change them regularly, and don't share them.

Secure Your PC

Keep operating systems, software, antivirus, and firewalls updated.

Avoid Public Wi-Fi

Don't connect to public Wi-Fi networks for sensitive data.

Safeguarding Email

Don't send sensitive data through insecure methods (like email).

Strong Passwords

Use strong passwords/passphrases to protect online accounts.

Password Safety

Don't write your passwords down or store them insecurely.

Restricted Data

Confidential information that should not be shared with unauthorized individuals.

Need to Know

The principle that only individuals with a legitimate business reason to access sensitive information should do so.

Data Disposal

Proper methods for getting rid of data that is no longer needed for business purposes.

Electronic Communications

Forms of communication that use technology to transmit messages (email, instant messaging, etc.).

Untrusted Source

Any source of electronic communication (email, link, etc.) that you aren't sure is safe or legitimate.

Phishing Scams

Deceptive attempts to trick people into revealing sensitive information (passwords, bank details, etc.).

Confidentiality

Protecting sensitive data from unauthorized disclosure.

Integrity

Ensuring data accuracy and trustworthiness.

Availability

Ensuring data and systems are accessible when needed.

Security Breach

An incident where sensitive information or systems are compromised by malicious actors.

Study Notes

Cyber Security Overview

• Presented by Dr. Shrouk Hossam Eldien
• Course covers Cybersecurity & Information Security, focusing on different chapter topics.

Course Content

• Chapter 1: Cybersecurity & Information Security
• Chapter 2: Cyber Security Threats
• Chapter 3: Access Controls
• Chapter 4: Security Operations
• Chapter 5: Risk Identification, Monitoring, and Analysis
• Chapter 6: Incident Response and Recovery
• Chapter 7: Networks and Communications Security
• Chapter 8: Systems and Application Security
• Chapter 9: Operational Security
• Chapter 10: Security Best Practice
• Chapter 11: Cryptography

Information Security vs. Cybersecurity

• Information security (InfoSec) is broader, encompassing all aspects of protecting data, both physical and digital.
• Cybersecurity focuses specifically on digital assets, systems, and threats, a subset of information security. It primarily addresses electronic data storage, networks, and handling devices.

Threat Landscape

• Information Security: Considers a wider range, including physical threats (theft, unauthorized access, disasters).
• Cybersecurity: Exclusively concerned with digital threats (malware, hacking, data breaches, denial-of-service attacks, phishing).

Components

• Information Security: Includes access control policies.
• physical security (locks/alarms), disaster recovery, and policies for handling sensitive information in both digital and physical formats.
• Cybersecurity: Centers on technical controls like firewalls, intrusion detection/prevention, antivirus software, encryption, secure coding practices, and incident response to specific digital threats.

Emphasis on Network and Systems

• Information Security: Covers more than just networks and systems. It also includes policies related to document handling and storage
• Cybersecurity: Great emphasis on network and system security as these are primary attack vectors for digital threats. Protecting servers, endpoints, and infrastructure is important for cybersecurity.

Data Protection

• Information Security: Involves protecting data in all forms, including paper documents, hard drives, and physical records.
• Cybersecurity: Specifically focuses on protecting digital data (databases, files, communications) from access, theft, or alteration.

Goals of Information Security and Cyber Security

• Confidentiality: Protecting data from unauthorized disclosure, according to sensitivity and legal requirements, using access controls, file permissions, and encryption.
• Integrity: Ensuring information accuracy and completeness. This is crucial in preventing breaches and malicious activities, which can damage system availability and confidentiality. Use logging, digital signatures, hashes, encryption, and access controls to guarantee integrity.
• Availability: Ensuring timely and reliable access to systems and data by authorized users, crucial for functionality and productivity, via measures like backups, firewalls, and backup power supplies.

General Security Concepts

• Threat: Anything that could harm a computer system.
• Vulnerability: A defect in a system that allows an attack.
• Risk: Combination of vulnerabilities, assets, and threats.

Network, Operating System and Human Vulnerabilities

• Network Vulnerabilities: Insecure Wi-Fi, poorly configured firewalls.
• Operating System vulnerabilities: Default administrator accounts.
• Human vulnerabilities: The weakness of personnel in cybersecurity structures.

Information Security Policy

• Covers confidentiality, integrity, and availability, applicable to institutional data and systems.
• Defines institutional data as owned or licensed data.
• Defines information system as any electronic system storing, processing, or transmitting data.

Information Security Policy Policies

• Institutional data is protected throughout its lifecycle, considering sensitivity, value, and criticality.
• Information systems are secured appropriately based on the same criteria.
• Individuals accessing institutional data have associated roles and responsibilities.

Information Security Roles

• Users: Employees, contractors who have access to data and systems. Responsible for following policies, guidelines, procedures, reporting security breaches, and safeguarding institutional data.
• Data Agent
• Data Protector

Safeguarding Institutional Data (Specific User Responsbilities)

• Know your Data: Be mindful of the type of data. (Public, Private, Restricted)

• Protecting Electronic Data: Don't store Restricted data on personal devices.

• Avoid storing Restricted data on mobile computing devices.

• Avoid storing institutional data on personally owned computing devices.

• Don't store Restricted data on CDs, DVDs, USB thumb drives, etc.

• Don't transmit Restricted data via email and other insecure messaging solutions.

• Safeguarding your password: use strong passwords, avoid using the same passwords, change passwords regularly, and don't write them down or store them on insecure sites.

• Secure your computer: update operating systems, enable automatic software updates, install and maintain antivirus and firewall software.

• Protecting Physical Data. Close and lock when leaving your office. Lock file cabinets properly. Keep data out of plain view and don't leave data in visible locations.

• Protecting verbal data: Be mindful of surroundings Discussing Restricted Data.

• Disposing of Data: Place Data when not needed, Use Identity Finder for secure data deletion, and properly dispose of electronic and physical data media.

• Electronic Communications: Avoid opening attachments from untrusted sources and clicking suspicious links.

• Avoid clicking links in electronic communications from untrusted sources: Be wary of phishing scams.

• Additional Considerations: Use official email accounts for business, avoid personal accounts, organize data, and save copies of important outgoing email.

• Avoiding Risky Behaviors Online

• Be cautious when using file sharing applications

• Be cautious when browsing the web

• Be cautious when clicking on shortened URLs

• Avoid any responses to messages or links in pop-up windows

• Reporting any suspected security breach

• Disconnect the computer from the network, contact IT staff, notify users if there is a temporary service outage, preserve any log information, and wait for further instructions.