Risk Management and Incident Response Processes

Questions and Answers

What is the purpose of a honeypot in network security?

To detect, monitor, and sometimes tamper with the activities and vulnerabilities of an attacker

Which network security tool is designed to search a network host for open ports on a TCP/IP-based network?

Nmap

Which tool provides a graphical interface for capturing and analyzing network traffic?

Wireshark

What is the primary function of Nessus in the context of network security?

Vulnerability assessment

Which activity is part of the incident response process?

Eradication

What is the first step in the risk management process?

Identify Asset

What is the purpose of the 'Containment' step in the incident response process?

Preventing ongoing harm or damage

Why is it important for both the PC and server to authenticate each other before data transmission?

To ensure secure and trustworthy communication

What is the primary goal of the Health Insurance Rights and Privacy Act (HIPAA)?

To protect the confidentiality and integrity of personal health information

Which act is specifically designed to protect the privacy of customers' non-public personal information?

Gramm-Leach-Bliley Act (GLBA)

What is the main objective of the Children's Online Privacy Protection Act (COPPA)?

To set rules on data collection for children under 13 to protect their online privacy

What is the focus of the Payment Card Industry Data Security Standard (PCI DSS)?

Companies that process credit card payments must protect its information