Rapid7 / Trivia: Cloud

Cloud... Cloud!

Acronyms

True OR False

Competitive

Bonus

100

How does ICS help with Cloud Security?

Help comply with cloud configurations best practices and identify misconfigurations in real time throughout development into the cloud

100

CSPM

Cloud Security Posture Management

100

CRC Essentials Includes AppSec

FALSE CRC essentials does NOT include InsightAppsec but CRC Advanced DOES

100

What is the name for Azure’s competitive product?

Defender for Cloud

100

What commercial sales manager won the halloween costume contest in 2023

Joe (pirate) Creed

200

What is a misconfiguration?

Unintentionally setting up a piece of IT Infrastructure in such a way that security is compromised

200

CWPP

Cloud Workload Protection Program

200

CNAPP combines CASB and CSPM

FALSE - CNAPP combines CWPP and CSPM

200

Who recently Acquired Lacework?

Fortinet

200

What two commercial reps won the babe ruth championship in Medfield 2010

Paul Adams & Josiah Lung

300

What is a VM?

VMs = Virtual Machine. They are a more efficient way of using servers - you can run multiple VIRTUAL servers on a single server

300

EASM

External Attack Surface Management

300

CRC has capabilities to help with CWPP

TRUE- InsightCloudsec/ CRC can help with CWPP (Cloud Workload Protection Platform) and CSPM and in tandem, CNAPP

300

Name 1 CAASM competitor

Axonis, JupiterOne, Armis

300

Who is the mastermind behind THE CREATION OF BEATS newsletter?

SURITA!!!!

400

What is a container?

Containers are a more efficient way of using Virtual Machines- A key difference in containers is that you don’t typically update them to remediate vulnerabilities because they are intended to be specifically defined

400

CNAPP

Cloud Native Application Protection Platform

400

CSPM (Cloud Security Posture Management) GOAL: Comply with cloud configuration best practices

True

400

What is Tenable’s comparable offering to CRC/ Exposure Command?

TenableOne

400

BOFFAS signature Vest... Whats the brand (s)

Oracle & BMW

500

What is a serverless function?

a piece of code used in the cloud without the customer needing to build or maintain it.

500

CAASM

Cyber Asset Attack Surface Management

500

The goal of CNAPP (Cloud Native Application Protection Platform) combines CWPP and CSPM capabilities to scan workloads and configurations in development and protect them at runtime

True

500

Where do we lose competitively against Crowdstrike’s cloud security?

Crowdstrike provides agent based scanning for runtime with falcon agent (Container Runtime Security) Ex. If a container image is deployed and someone modified it at runtime, we cannot look at that

500

Which Commercial SE has the biggest koi pond

Joe Ipekci!!!!!!