Service Desk Analyst Role at Vertas Group

Questions and Answers

Which security measures were implemented to enhance system security?

• Introduction of antivirus software
• Installation of Darktrace security appliances (correct)
• Implementation of a firewall system
• Adoption of network monitoring tools

What tool was used for managing server backups?

• Veeam (correct)
• Backup Exec
• Carbonite
• Acronis True Image

What compliance frameworks were the individual involved with?

• NIST and PCI DSS
• ITIL and ISO 9001
• COBIT and GDPR
• ISO 27001 and Cyber Essentials Plus (correct)

Which qualifications have been achieved by the individual related to Cyber Security?

CompTIA A+, Network+, and Security+ (D)

What aspect of IT did the individual's previous role focus on?

IT asset disposal (B)

What type of support does a Service Desk Analyst primarily provide?

1st/2nd line support (C)

Which security control was implemented in the 365-security posture assessment?

Blocking legacy authentication methods (B)

What was one of the responsibilities held while working as an IT Analyst for Tier1 Asset Management?

Building and maintaining servers in Hyper-V and Azure (A)

What is an ongoing task related to security that the analyst participates in daily?

Responding to security alerts (B)

During previous experience, what networking equipment was the analyst responsible for installing?

Cisco Meraki access points and switches (B)

Flashcards

Multi-factor Authentication (MFA)

A security measure that requires users to provide two or more forms of authentication, such as a password and a code from a mobile app, to access an account.

Blocking Legacy Authentication

A security method that prevents users from accessing accounts using outdated authentication protocols considered less secure.

Phishing Controls

A type of security technology designed to protect against phishing attacks by detecting and blocking suspicious emails and links.

VLANs (Virtual Local Area Networks)

A technique used to configure networks, isolating traffic within different groups or segments to enhance security and control.

Network Switches

A type of network equipment that connects devices within a local area network (LAN) and provides access to the internet.

What is Darktrace?

A security tool that detects and responds to cyber threats in real-time, using AI and machine learning.

What is Windows Defender for Endpoint?

A software solution used for managing and protecting endpoints (computers, laptops, mobile devices) from threats by providing features like antivirus, anti-malware, and vulnerability assessment.

What is Cyber Essentials Plus?

A framework that outlines a set of cybersecurity standards and best practices, designed to ensure that organizations protect their information assets.

What is ITAD?

A process of safely and responsibly retiring IT equipment at the end of its lifecycle, ensuring data is securely wiped and the equipment disposed of ethically.

What is ISO 27001?

A globally recognized standard for information security management systems, outlining a set of controls and practices to ensure the confidentiality, integrity, and availability of information.

Study Notes

Service Desk Analyst Role at Vertas Group

• Current role: 1st/2nd line support for over 4000 employees, involved in technical projects (infrastructure to security).
• Example project: 365 security posture assessment, implemented technical controls (MFA, blocking legacy authentication, phishing controls).
• Security involvement: Educating users on cyber awareness, responding to security alerts (Sophos, Egress).
• Learnings: Understanding IT operations in large organizations, close collaboration with security team.
• Previous role: IT Analyst for Tier1 Asset Management (2 years).
• Infrastructure work: Building servers (on-prem Hyper-V and Azure), installing/maintaining networking equipment (Cisco Meraki access points, switches, firewalls), creating guest networks, VLANs, and configuring access control lists.
• Security appliance installation: Installed Darktrace security appliances at multiple sites.
• Backup and patching: Managed server backups (Veeam), endpoint and server patching (Endpoint Central).
• Security compliance: Involved in technical compliance for ISO 27001 and Cyber Essentials Plus, developing documentation, successful audits.
• Project role: Project services engineer for EOL IT Services.
• Field support: Travels to client sites (UK) for technical managed services and field tech support.

ITAD (IT Asset Disposal) Experience

• Previous company: IT asset disposal (ITAD) company.
• Responsibilities: Responsible decommissioning IT equipment.
• Cyber security interest: Active interest in cyber security, involvement through learning sites (TryHackMe) and podcasts (Security Now).
• Certifications: CompTIA A+, Network+, and Security+ (most recent).
• Ongoing learning: Studying for Cisco CCNA certification, looking to increase cyber security involvement.