Cybersecurity Principles and Best Practices

Questions and Answers

Which encryption method does the SSL protocol primarily utilize for the session key?

Asymmetric encryption algorithm, using DES

Asymmetric encryption algorithm, including DES

Symmetric encryption algorithm, including DES, triple-DES (correct)

Symmetric encryption algorithm, using RSA

What is the FIRST step in an optimal risk management methodology?

Estimate potential damage from threats

Identify critical information assets (correct)

Analyze the impact of vulnerabilities

Evaluate the probability of threats

Which biometric characteristic is considered to have the highest reliability?

Eye (iris or retina) (correct)

Hand geometry

Writing

Voice

What is a FUNDAMENTAL characteristic of a user awareness program?

Regularly reviewed against best practices

Which statement about digital summary algorithms is correct?

MD4 is weaker than MD5

Which of the following is a feature of intrusion detection systems?

Collecting evidence of attack attempts

Which protocol secures credit card payments in e-commerce?

SET

What common feature do most hash functions used in security applications have?

Unique output for each unique input

Which situation would likely increase the probability of fraud?

Application programmers have access to the development environment.

What is the MAIN purpose of testing backup centers?

Ensure data integrity in the database.

Who is responsible for developing the security policy?

The Security Committee.

What does the MTO parameter define?

The maximum time until recovery of critical services post-disaster.

How is the risk of a threat quantified?

The product of the probability of occurrence and the magnitude of the impact.

What is the MOST important aspect of a security policy?

It should be derived from a prior risk assessment.

What is the INITIAL step in establishing a security program?

Defining a security policy.

What is the FUNDAMENTAL characteristic of hashing?

It is irreversible.

What is the MAIN purpose for installing an intrusion detection system (IDS)?

Identify potential attacks on the internal network.

What does creating a digital signature primarily achieve?

Verifies the message origin.

Which situation indicates inadequate security controls in a production system?

Test libraries contain some real data.

What distinguishes vulnerability assessment from penetration testing?

Vulnerability assessment identifies vulnerabilities, while penetration testing exploits them.

What should a security manager prioritize when managing access control for program code documentation?

Review access logs to the code libraries.

What is the primary role of a Certification Authority (CA)?

Confirm the identity of certificate holders.

Which indicator suggests a failure in an organization's security information governance?

The security department struggles with staffing.

How can the effectiveness of incident response procedures be primarily assessed?

Through an evaluation of past incident responses.

Which of the following would NOT be part of a security policy?

Defining roles for each role

What is the process of using interpersonal communication skills to gain unauthorized access to resources called?

Social engineering

To provide protection for backups stored offsite, which of the following should be ensured?

Be protected against unauthorized access

A dry pipe suppression system uses which of the following?

Water, but the water does not enter the pipes until a fire is detected

Who should make the decision on whether a risk has been reduced to an acceptable level?

Organizational requirements

What is the MAIN measure for the security of software and data in a data center?

Access controls

Which property in database management systems ensures that a transaction either executes completely or does not execute at all?

Atomicity

What does identifying risks and establishing their priorities allow project stakeholders to do?

Focus on areas of greatest impact

Which factor is least critical when selecting an identification and authentication mechanism for an information system?

The organizational culture of security

What aspect does the defined information security policy most significantly affect?

The entire organization including external users

What does the parameter known as Annual Loss Expectancy (ALE) represent?

The potential annual loss due to an event multiplied by occurrence probability

Which responsibility is NOT typically associated with a security administrator?

Approve the security policy

Area managers are primarily tasked with which responsibility regarding the data they generate?

Classify data based on business value

When determining retention periods for business information, which consideration should be the primary focus for the security manager?

Compliance with legal requirements

Which feature is NOT typically associated with Single Sign-On (SSO) authentication mechanisms?

Increased password management difficulty

What is a common misconception about the role of area managers regarding data security?

They have no say in data management decisions

Who is primarily responsible for executing the disaster recovery plan?

The information security manager

Why is it essential to analyze the situation after a denial of service attack?

To take preventive and/or corrective actions

What is the primary objective of emergency actions following a disaster?

Preventing possible personal injuries

In the context of business continuity, what does MTO refer to?

The maximum time an organization can sustain critical processes

What does the paper test associated with a disaster recovery plan typically involve?

Testing the plan on critical business units

When maintaining a warm site alternative center, which conditioning aspect is critical?

Air conditioning

Which of the following is NOT an objective to pursue when defining a disaster recovery plan?

Increase recovery costs

What should be a key focus when formulating a disaster recovery plan?

Reducing recovery time and costs

Study Notes

Simulacro I - Preguntas

• Protocol SSL (Secure Sockets Layer): Provides security by encrypting data exchanged between server and client. It encrypts data using asymmetric algorithm (typically RSA) then encrypts the session key with a symmetric algorithm (DES, triple-DES, RC2, RC4, or IDEA).

• Optimal Risk Management Methodology: The first activity in a risk management methodology should be identifying critical business information assets.

• Biometric System Reliability: Hand geometry offers the highest reliability in biometric systems.

• User Awareness Program: A fundamental characteristic of a user awareness program is regular reviews and comparison with best practices in this area.

• Hash Algorithms (Digital Hash Functions): MD4 and MD5 are not as secure and use different key lengths compared to SHA1. SHA1 is the most secure algorithm, while MD4 is the least strong.

• Intrusion Detection System (IDS): A key characteristic of an IDS is collecting evidence about attack attempts.

• Secure Electronic Payment Protocol: The protocol used to secure credit card payments in e-commerce is Secure Sockets Layer (SSL).

• Backup Center Location: A backup center should be physically separated from the main data center and not subject to the same risks.

• Sectorial Guidelines for Risk Management: The main drawback to using sectorial guidelines and best practices is the possibility that the business will be over-protected from non-existent threats.

• Risk Assessment Process: Risk assessment is objective and not subjective, not based on mathematics, nor statistics.

• Acceptable Service Level (SLA): The acceptable service level (or standard) to which a business function or resource of business will be restored to an operational state within a set period of time.

• Disaster Recovery Team: The emergency operations team is the first to respond in the event of a disaster.

• Acceptable Risk Level: The acceptable risk level should be set by senior management.

• How to Determine a Data Transmission Risk: The best technique to determine how secure data transmitted is through encryption.

• Network Device Function: A router operates on layer 3 in the OSI model.

• Initial Step in Backup Design: In a backup strategy, the first step is to identify the data to be backed up.

• Risk Management Methodology Step: The initial step in a good risk management strategy is to determine the vulnerabilities present.

• Risk Criticality Measurement: The best way to determine the criticality of an application is to perform a business impact analysis.

• Incident History Analysis/Reporting: The incident history analysis demonstrates a trend and type of event, allowing for better decision making in risk management.

• Digital Signature Attribute: Non-repudiation is the attribute of a digital signature preventing the sender from later denying its creation.

• Business Impact Analysis ("BIA"): A "BIA" determines the impact on business if a business process or operation is disrupted, interrupted, or destroyed.

• Calculating Financial Losses: In a risk assessment, if financial losses are hard to calculate quantitatively, a qualitative approach should be used.

• Fraud Probability Factors: Implementing changes to production programs (versus test programs and development programs) likely increases the risk of fraud.

• Backup Center Purpose: The purpose of a backup center alternative is to act as a separate, independent backup location for data.

• Responsibility for Risk Assessments: The board of directors or senior management need to define the process for risk assessments and the overall risk posture of the organization.

• Risk Assessment Frequency: Risk assessment processes should be performed annually, or more frequently if there are significant changes to the organisation.

• Effect of an Incident on Business: Incident impacts should be analysed to determine the effect on the business and the level of recovery needed.

• Security Control Effectiveness: Access controls for temporary access to vendors should be based on service level agreements (SLAs).

• Business Impact Analysis Benefits: Business impact analysis ("BIA") improves the understanding of a business's vulnerabilities, thus improving a company's security posture.

• Determining Risk Levels: Determining levels of risks needs criteria (and is not solely subjective, nor statistical).

• Data Protection for Vendors: When providing access to vendors, create separate accounts with limited rights and expiry dates.

• Type of Analysis: Determining the best methodology for risk analysis is dependent on the business and resources available.

• Risk Management Methodology Applicability: Qualitative risk analysis is often appropriate for organisations that are highly volatile or undergoing rapid changes.

• Classification of Information: A company has a need to assign value and categorization to its information for effective management of risks and security.

• Risk Management: Determining the best way to manage risk is based on factors including available resources to complete a risk management program.

• Data Security Criteria: The primary reason for digital signatures is to ensure data integrity and prevent tampering or unauthorized changes.

• IDS Purpose: The primary purpose of an Intrusion Detection System (IDS) is to identify security weaknesses and potential threats in an organization's IT infrastructure in order to mitigate security risks; it often works in conjunction with other cybersecurity protections and mitigations.

• Secure Data Transfer: To assure safe transfer of data, when using public key cryptography, the encryption key should be public while the decryption key is private.

Description

This quiz covers essential concepts in cybersecurity, including encryption methods, risk management, biometric characteristics, and security policies. Test your knowledge on key principles that govern secure systems and the fundamental characteristics of security measures. Perfect for students and professionals in the cybersecurity field.