Mitigation Strategies
Encryption
Identity Access Mgmt
Security Standards
US Laws and Auditing
100

What is the main purpose of data classification and who is responsible for doing it?


To identify what data is considered sensitive and requires protection. The data owners are responsible.

100

Which of these is the strongest wireless encryption method: WEP, WPA, WPA2

WPA2
100
Explain role-based access control (RBAC).

Access to services is determined by the position (or role) a user occupies in the organization.

100
Why are standards important?

They can be used to guarantee compatibility between products.  They provide a template for companies to use so they don’t have to reinvent the wheel.  They help customers evaluate an organization’s efforts towards securing data.

100
What information does HIPPA protect?
Health-related info
200
What is the best way to mitigate risk of ransomware?
Backup you data regularly.
200
Why does law enforcement have an issue with encryption?

Law enforcement has an on-going issue with encryption methods because they believe it keeps them from seeing information they need to protect the public.

200
What are the four parts of access control?

Identification

Authentication

Authorization

Accountability

200
What does ISO stand for?

It is the Greek word for “equal” and was chosen as the name for a set of standards created by several different countries using different languages.

200
What does FERPA stand for?
Family Educational Rights and Privacy Act
300
Name 3 of the recurring themes we keep bringing up when we talk about computer security.

- Need to have a defined security policy.

- User education is critical.

- Must keep up with patches and upgrades on OS and applications.

- Firewalls are the front line of defense.

- Encryption is critical for protecting data.

- Must have on-going monitoring.

300
What 4 security requirements/functions does encryption satisfy?

Confidentiality

Authentication

Integrity

Non-repudiation

300
What is the difference between authentication and authorization?

Authentication answers the question “Is this person who they say they are”.  Authorization answers the question “What does this person have access to?”

300

ISO 17799 and its successor ISO 27002 provide organizations with best practice recommendations for ___________?

Information security management
300
Why do security professionals need to be aware of these laws?

Security professionals need to know how the various laws impact their organization and what they must do from an IT perspective to be compliant.

400
Name the basic building blocks a CISO and his/her security group can use when developing a security program.
Functional policies

standards

procedures

baselines

guidelines

400
Explain how Sally would send an encrypted message to Bob using asymmetric keys.

Sally would use Bob’s public key (which anyone has access to) to encrypt the message. Then Bob would use his private key (which only he has access to) to decrypt the message.

400
Explain what multi-factor authentication is.

MFA requires the user to prove their identity by using multiple types of factors. Factors types include 1) something you know, 2) something you have, and 3) something you are.

400
What does PCI DSS stand for?
Payment card industry data security standard
400
What is the purpose of an audit?

An audit checks whether the security controls work as expected. Another purpose is to build customer confidence.

500
What is the degausser method and what is it used for?

It is the process of running digital media through a magnetic field for the purpose of removing any data stored on that media.

500
What is the purpose of certificate authorities?

They act as a trusted third party to vouch for the validity and ownership of public keys/certificates.

500
What do privileged account management tools do?

They provide added security for superuser accounts (aka administrator accounts) that have elevated privileges on certain computers.

500
Name 3 of the 12 major sections of ISO 27002.

Risk Assessment

Security policy

Organization of information security

Asset management

Human resources security

Physical and environmental security

Communications and operations management

Access control

Information systems acquisition development and 

maintenance

Information security incident management

Business continuity management

Compliance


500
What is FISMA designed to protect?
Federal agency IT systems
M
e
n
u