Information Security Quiz

Questions and Answers

What type of attack involves the attacker altering system resources?

• Direct attack
• Indirect attack
• Active attack (correct)
• Passive attack

The rule stating that students are not allowed to bring cell phones into the exam hall is an example of what?

• Security mechanism
• Security service
• Security Policy (correct)
• Security Council

Which of the following constitutes the three pillars of information security?

• Confidentiality, integrity, availability (correct)
• Risk assessment, policy enforcement, monitoring
• Authentication, availability, access control
• Encryption, auditing, restoration

What is ransomware known for?

Encrypting data on computers and servers (A)

At which layer in the information security transformation framework is the NESSUS tool primarily used?

Vulnerability management (B)

Which standard/framework is specific to a particular type of industry?

PCI.DSS (A)

Which of the following is not a challenge of information security?

Widespread internet access (C)

What is the primary function of the next-generation firewall?

Positioning it at the network perimeter and entrance to the data center (A)

What is the primary purpose of a patch?

To fix security vulnerabilities and bugs (C)

Which type of testing involves actively attempting to exploit vulnerabilities?

Penetration testing (B)

What is the first step in an effective patch management process?

Establish baseline IT assets inventory (A)

After TCP port scanning in Qualys Guard, which test is performed to identify the operating system?

OS detection (B)

Who is responsible for implementing security controls under the Security Transformation Model?

IT teams (B)

What is the significance of validating security controls?

To confirm that controls are being used correctly (A)

Which of the following factors can contribute to insecure software?

Complexity (A)

Which activity is NOT performed during the accreditation process?

Install software (C)

What are the four layers of the transformation model in sequence?

Security hardening, vulnerability management, security engineering, security governance (C)

Which percentage of organizations in Pakistan have been found to have a deficient security posture?

90% (A)

If a system enters into which state, it indicates a security violation?

Unsecure (C)

Which factor is identified as part of a deficient program structure leading to security failures?

Ineffective Information Security Management Committee (ISMC) (C)

The PCI data security standard applies to which type of organizations?

All companies that accept, process, store, or transmit credit card data (B)

What is the maximum trial period offered by Nessus scanner?

30 days (A)

Which solution can be implemented to reduce spoofed or modified emails from valid addresses?

Domain-based message authentication (D)

How many steps are involved in a policy compliance scan of Qualys?

Four (B)

Flashcards

Active Attack

An attack where the attacker modifies system resources, potentially causing harm or disruption.

Security Policy

A set of rules or guidelines that define acceptable and unacceptable behavior within an organization's information security context.

Security Mechanism

A method or tool used to enforce security policies and protect information assets.

Ransomware

A type of malware that encrypts data on a computer or server and demands payment for its decryption.

Vulnerability Management

The process of identifying and mitigating vulnerabilities in systems and applications.

Security Governance

A set of practices and policies that ensure the effective and efficient management of an organization's security program.

Access Control

The act of preventing unauthorized access to a resource.

Perimeter Firewall

A firewall that operates at the network perimeter and acts as the first line of defense against external threats.

What is Security Validation?

Security validation involves walking through a system or device to ensure that implemented security controls are actually in place and functioning correctly.

What is Code Review?

Code review aims to identify potential security vulnerabilities and coding errors in the early phases of software development.

What is Vulnerability Assessment?

Vulnerability assessment identifies weaknesses in systems or applications that could be exploited by attackers. It is a passive process that does not involve actual attacks.

What is Penetration Testing?

Penetration testing simulates real-world attacks to evaluate the effectiveness of security controls. It involves actively attempting to exploit identified vulnerabilities.

What is a Patch?

A patch is a software update designed to address security vulnerabilities, bugs, or performance issues. It is often issued by software developers to fix flaws found in their products.

Who implements security controls?

They implement security controls to protect information assets and ensure compliance with security policies. This includes configuring firewalls, implementing access controls, and deploying security software.

Who conducts security validation?

The Information Security team, or a third-party consultant, independently evaluates the effectiveness of implemented security controls to ensure they are working as intended.

Why do we need to validate security controls?

Security validation helps ensure completeness and correctness, providing assurance that security measures are in place and functioning effectively. It reduces risks associated with security breaches and improves the overall security posture of the organization.

Security Events Dashboard

A process that involves collecting and analyzing security events from various sources to identify patterns, anomalies, and potential security threats.

Root Cause Analysis

The process of identifying and analyzing the root cause of a security incident or event, to understand how it happened and to prevent similar incidents in the future.

Security Hardening

A set of practices and policies designed to enhance the security of systems and applications by minimizing known weaknesses and vulnerabilities.

Unsecure State

A security violation that occurs when a system enters an insecure state, making it vulnerable to attacks and data breaches.

UEM tool

A tool that combines the management of multiple endpoints, such as computers, mobile devices, and servers, into a single console.

PCI DSS

A set of widely recognized security standards designed to protect credit card information.

OpenVAS

A free and open-source vulnerability assessment tool.

Information Security Management Committee (ISMC)

A component of a security program that helps to ensure effective and efficient management of security processes and resources.

Study Notes

Security

• Active attack alters system resources
• Passive attack observes system without altering
• Direct attack targets the system directly
• Indirect attack affects system indirectly

Exam Policies

• Students are not allowed to bring cell phones to exams; This is an example of a security policy.

Pillars of Information Security

• Confidentiality, Integrity, Availability

Ransomware

• A type of attack encrypting data on computers and servers.

Nessus Tool

• Used in security engineering for security analysis
• Used in vulnerability management
• Used in security hardening

Effective Security Program Management

• Security governance is the effective management of security programs
• Security engineering is the design of secure systems
• Vulnerability management is identifying and mitigating vulnerabilities
• Security hardening is the process of making systems more secure

Information Security Standards

• ISO27002.2013 is a general standard
• COBIT is a standard for IT management and governance
• PCI DSS is a standard for the payment card industry
• ISO27001.2013 applies to all industries

Information Security Challenges

• Lack of budget and insufficient resources
• Highly specialized and continually evolving technology
• Cloud and internet of things (IoT) issues
• Lack of ownership and inconsistent security practices

Information Security Life Cycle

• There are 6 to 7 steps in the information security life cycle

Cyber Security Strategy & Framework

• Malaysia is regionally well developed in cyber security strategies and frameworks; ranks 2nd or 3rd.

Resource Security

• Access control prevents unauthorized resource usage

Firewall Placement

• Next generation firewalls are placed at the network perimeter and at the entrance to the data center.

Mobile Security

• Mobile technology leads to time wastage and distractions
• Traditional security perimeters no longer exist because of mobile devices
• User locations can be tracked from mobile devices
• Apps downloaded via mobile devices can be harmful

Data Protection in VMs

• Protect sensitive data in VMs by encrypting data stored on virtual and cloud servers

Small Business Security Challenges

• A lack of funding for data centers can be a challenge for small-sized organizations in security