Cybersecurity Concepts and Vulnerabilities Quiz

Questions and Answers

Which of the following best defines a 'vulnerability'?

The probability of a threat acting upon a system

A potential hazard that can be exploited

The impact of a cyber incident on a business

A weakness or flaw that could permit unauthorized action (correct)

Denial of Service (DoS) attacks aim to improve system availability.

False (B)

What is a common mitigation strategy against phishing attacks?

Educating users about phishing attacks

__________ threats are caused by employees who intentionally or unintentionally harm their organization.

Insider

Match the following types of cyber threats to their definitions:

Malware = Software designed to disrupt or damage systems Phishing = Tricking individuals into giving up personal information DDoS = Overwhelming a system making it unavailable MitM Attacks = Intercepting communications between two parties

Which type of vulnerability refers to weaknesses in software code?

Software Vulnerabilities (C)

Advanced Persistent Threats (APTs) are typically low-skilled attacks that can be easily mitigated.

False (B)

What is the primary purpose of risk assessment?

To identify, evaluate, and prioritize risks (D)

Name a mitigation strategy for addressing human vulnerabilities.

Training staff on security procedures

Qualitative risk assessment relies on quantitative data for its evaluations.

False (B)

To protect against __________ vulnerabilities, regular updates and strong security configurations should be maintained.

network

What is a key objective of addressing cyber threats and vulnerabilities?

Ensuring system reliability (A)

Name one advantage of quantitative risk assessment.

Provides precise and objective risk analysis.

In qualitative risk assessment, risks are categorized as high, medium, or _____

low

Match the risk assessment methodology to its major characteristic:

Qualitative = Subjective evaluation of risks Quantitative = Objective analysis using numerical data NIST RMF = Structured governmental framework ISO/IEC 27005 = Internationally recognized standard

Which of the following is a disadvantage of hybrid risk assessment?

It requires both qualitative and quantitative data (A)

The NIST Risk Management Framework (RMF) includes ongoing monitoring of security controls.

True (A)

What is one key benefit of conducting risk assessment?

Proactive risk management

Quantitative risk assessment involves assigning _____ to the potential impact of risks.

monetary values

Which risk assessment methodology is recognized for integrating with ISO standards?

ISO/IEC 27005 (C)

Which of the following is NOT a core principle of security engineering?

Profitability (D)

Confidentiality measures include encryption, access controls, and data masking.

True (A)

What does integrity in security engineering refer to?

Maintaining the accuracy and completeness of data.

The principle of ______ ensures that users are verified before being granted access.

authentication

Match the security principle with its definition:

Confidentiality = Ensuring that sensitive information is only accessible by authorized individuals. Integrity = Maintaining the accuracy and completeness of data. Availability = Ensuring that information and systems are available to users when needed. Non-repudiation = Ensuring that actions cannot be denied after they have occurred.

What is one objective of security engineering?

Mitigating cyber risks (A)

Authorization is about verifying user identities.

False (B)

Name one measure taken to maintain availability in security systems.

Redundancy

The principle of ______ ensures that organizations comply with regulatory requirements.

compliance

Match the activity with its type of security practice:

Secure Software Development = Incorporating security into the software development lifecycle. Network Security = Using firewalls and intrusion detection systems. Access Control = Implementing role-based access mechanisms. Incident Response Planning = Preparing to effectively respond to security incidents.

Which term refers to measures taken to ensure that sensitive information is protected?

Confidentiality (B)

Digital signatures are used to ensure non-repudiation.

True (A)

What is an example of a network security measure?

Firewall

Security engineering involves conducting ______ assessments to identify vulnerabilities.

risk

Flashcards

Vulnerability

A weakness in a system or software that can be exploited by attackers.

Threat

The potential for a vulnerability to be exploited by an attacker.

Risk

The likelihood that a threat will exploit a vulnerability and the potential impact of that exploitation.

Malware

Software intentionally designed to harm a computer system, steal data, or gain unauthorized access.

Phishing

Tricking users into revealing personal information or credentials.

Denial of Service (DoS)

An attack that aims to overwhelm a system or network, making it unavailable to users.

Distributed Denial of Service (DDoS)

A type of DoS attack where multiple compromised systems are used to overwhelm a target.

Man-in-the-Middle (MitM)

An attacker intercepts communications between two parties without their knowledge.

Insider Threat

A threat from an individual inside an organization who has access to sensitive information.

Advanced Persistent Threats (APT)

Sophisticated and targeted cyber attacks conducted by skilled adversaries.

What is Risk Assessment?

A systematic process of identifying, analyzing, and prioritizing risks to information systems. Helps organizations allocate resources and implement security controls.

Qualitative Risk Assessment

A subjective approach using expert judgment to evaluate risks based on their severity and likelihood.

Quantitative Risk Assessment

An objective approach using numerical data and statistical methods to quantify risks.

Hybrid Risk Assessment

Combines elements of both qualitative and quantitative methods.

NIST Risk Management Framework (RMF)

A structured approach developed by NIST for managing risks to information systems.

ISO/IEC 27005

An ISO standard that provides guidelines for information security risk management.

Implementing Risk Assessment Methodologies

Identifies potential risks, develops mitigation strategies, and regularly reviews findings.

Benefits of Risk Assessment

Proactively managing risks, allocating resources effectively, ensuring compliance, and strengthening security measures.

Key Takeaways

Each methodology has its strengths and weaknesses, choose the one that best suits your needs and resources.

What is this Document about?

A document that explores various risk assessment methodologies and their applications in practice.

What is Security Engineering?

The practice of applying engineering principles to the design and implementation of secure systems.

Confidentiality

Ensuring sensitive information is accessible only to authorized individuals. Measures include encryption, access control, and data masking.

Integrity

Maintaining the accuracy and completeness of data. Measures include checksums, digital signatures, and version control.

Availability

Ensuring information and systems are available to authorized users when needed. Measures include redundancy, load balancing, and disaster recovery planning.

Authentication

Verifying the identity of users and systems. Methods include passwords, biometrics, and multi-factor authentication.

Authorization

Granting or denying access to resources based on user roles and permissions. Mechanisms include access control lists (ACLs) and role-based access control (RBAC).

Non-repudiation

Ensuring that actions or transactions cannot be denied after they have occurred. Achieved through the use of digital signatures and audit logs.

Protecting Sensitive Information

Protecting sensitive information, such as personal data, financial records, and intellectual property, from unauthorized access and disclosure.

Mitigating Cyber Risks

Identifying and mitigating cyber risks, reducing the likelihood of security breaches and minimizing their impact.

Ensuring Compliance

Complying with regulatory requirements that mandate specific security measures for various industries.

Maintaining Trust

Gaining trust from customers, partners, and stakeholders by implementing strong security measures.

Supporting Business Continuity

Ensuring systems remain operational and available even in the face of security incidents, supporting business continuity.

Secure Software Development

Incorporating security into the software development lifecycle (SDLC) to ensure applications are built with security in mind.

Network Security

Designing and implementing secure network architectures using firewalls, intrusion detection/prevention systems (IDS/IPS), and virtual private networks (VPNs).

Access Control

Implementing strong access control mechanisms to ensure users have the appropriate level of access based on their roles.