A company that remotely manages a customer's IT infrastructure and/or end-user systems, typically on a proactive basis and under a subscription model. 

Which hypervisor performs better? Type 1 or 2? 

Describes who you are in the digital world. 

A program that may be unwanted, despite the possibility that users consented to download it. ______s include spyware, adware, and dialers and are often downloaded in conjunction with programs that users actually want. 

Name one of the categories of threat sources. 

A _______ ________ _______ consists of incremental hardware and software additions implemented among existing network components. 

A ______ is a dedicated network that provides access to various types of storage devices, including tape libraries, optical juke-boxes, and disk arrays. 

This document is a predetermined set of instructions or procedures that describe how an organization's mission/business processes will be sustained during and after a significant disruption. 

Any mechanisms that bypasses a normal security check; it may allow unauthorized access to functionality. 

Name (2) types of accidental threats.

This type of cloud deployment model is shared by several organizations and supports a specific community with shared concerns. 

A __________ acts as a relay of application-level traffic. 

This NIST control family addresses the policies and procedures to protect physical facilities. 

Enables a user to access all network resources after a single authentication. 

An application or set of tools that provides the ability to gather security data from information system components and present that data as actionable information via a single interface. 

A software tool that captures keystrokes on a compromised system. 

Access points that users install without coordinating with IT. 

This NIST control family focuses on measures to protect against unauthorized access to information systems. 

______ detection involves searching for activity that is different from the normal behavior of system entities and system resources. 

A document outlining how an organization will respond to and recover from a cybersecurity incident.

A perimeter network segment that is physically or logically between internal and external networks. 

NIST 800-41 offers a five-phase firewall planning and implementation guide. Plan, configure, _______, deploy, and manage. 

What does the model IAAA stand for? 

An intruder transmits packets from the outside with a source IP address field containing an address of an internal host. The attacker hopes that the use of a spoofed address allows penetration of systems that employ simple source address security, in which packets from specified trusted internal hosts are accepted. 

The first step in incident response. 

A malware program that includes a backdoor for administrative control over the target computer. ____s are usually downloaded invisibly with user-requested programs - such as games - or sent as email attachments. 

________ works by encoding voice information into a digital format, which is carried across IP networks in discrete packets. 

THe use of two or more factors to verify an identity. 

This tool blocks communication with known or suspected hostile sources and also blocks suspicious activity or packet content. 

The process of identifying and verifying an event. 

Data transmitted over enterprise networks and between the enterprise networks and external network links. 

A ______-based IDS detects both external and internal intrusions. 

This control family ensures that third-party vendors comply with security and privacy requirements. 

True/False 

Non-malware attacks are considered more threatening than malware-based attacks. 

During this phase of the cyber attack kill chain, the attacker sends a malicious payload to the victim by one of many intrusion methods.