Garantie de satisfaction à 100% Disponible immédiatement après paiement En ligne et en PDF Tu n'es attaché à rien
logo-home
iSACA Cybersecurity Fundamentals Certification Exam with complete solutions. $10.99   Ajouter au panier

Examen

iSACA Cybersecurity Fundamentals Certification Exam with complete solutions.

 2 vues  0 fois vendu
  • Cours
  • Établissement

Confidentiality Protection from unauthorized access integrity Protection from unauthorized modification Availability protection from disruptions in access Cybersecurity the protection of information assets (digital assets) by addressing threats to information processed, stored,...

[Montrer plus]

Aperçu 3 sur 16  pages

  • 26 juin 2022
  • 16
  • 2021/2022
  • Examen
  • Questions et réponses
avatar-seller
iSACA Cybersecurity Fundamentals
Certification Exam
Confidentiality - Answer Protection from unauthorized access

integrity - Answer Protection from unauthorized modification

Availability - Answer protection from disruptions in access

Cybersecurity - Answer the protection of information assets (digital assets) by
addressing threats to information processed, stored, and transported by internetworked
information systems

NIST Functions to Protect Digital Assets - Answer IPDRR

1) Identify
2) Protect
3) Detect
4) Respond
5) Recover

Nonrepudiation - Answer Def: ensuring that a message or other piece of information is
genuine

Examples: digital signatures and transaction logs

Risk - Answer combination of the probability of an event and its consequences,
mitigated through controls

Threat - Answer Anything that is capable of acting against an asset in a harmful manner

Asset - Answer something of either tangible or intangible value that is worth protecting

Vulnerability - Answer A weakness in the design, implementation, operation or internal
control of a process that could expose the system to adverse threats from threat events

Inherent risk - Answer The risk level or exposure without taking into account the actions
that management has taken or might take (e.g., implementing controls)

Residual risk - Answer the risk that remains after management implements internal
controls or some other response to risk

Likelihood - Answer A.K.A probability

measure of frequency of which an event may occur, which depends on the threat and
vulnerability

,iSACA Cybersecurity Fundamentals
Certification Exam
Approaches to Cybersecurity Risk - Answer Dependent on:
1) Risk tolerance
2) Size & scope of the environment
3) Amount of data available

Approaches:
1) Ad hoc
2) Compliance-based
3) Risk-based

Threat Agents - Answer The actors causing the threats that might exploit a vulnerability

Types:
1) Corporations - competitive advantage
2) Cybercriminals - profit
3) Cyberterrorists - critical infrastructures/government
4) Cyberwarriors - politically motivated
5) Employees - revenge
6) Hacktivists - politically motivated
7) Nation states - government/private entities
8) Online social hackers - identity theft, profit
9) Script kiddies - learning to hack

Attack vector - Answer The path or route used to gain access to the target (asset)

Types:
1) Ingress - intrusion
2) Egress - Data removal

Attack Attributes - Answer 1) Attack Vector
2) Payload
3) Exploit
4) Vulnerability
5) Target (Asset)

Threat Process - Answer 1) Perform reconnaissance (gathering information)
2) Create attack tools
3) Deliver malicious capabilities
4) Exploit and compromise
5) Conduct an attack
6) Achieve results
7) Maintain a presence or set of capabilities
8) Coordinate a campaign

, iSACA Cybersecurity Fundamentals
Certification Exam
Malware - Answer Def: software designed to infiltrate or damage a computer system
without the user's informed consent

Examples: Viruses, network worms, Trojan horses

Policies - Answer communicate required and prohibited activities and behaviors

Standards - Answer Interpret policies in specific situations

Procedures - Answer Provide details on how to comply with policies and standards

Guidelines - Answer Provide general guidance on issues; not requirements but strongly
recommended

Defense in Depth - Answer Layering defenses to provide added protection

Types:
1) Concentric rings
2) Overlapping Redundancy
3) Segregation

Security perimeter - Answer A well-defined boundary between the organization and the
outside world. Cybersecurity emphasizes the system-centric model (placing controls at
the network level)

Internet Perimeter - Answer Secure access to the Internet for enterprise employees and
guest users, regardless of location.

It should...
1) Route traffic between enterprise & internet
2) Prevent executable files from being transferred through email attachments/browsing
3) Monitor internal/external network ports
4) Detect & block traffic from infected internal end point
5) Control user traffic bound for the internet
6) Identify and block malicious packets
7) Eliminate threats such as email spam, viruses
8) Enforce filtering policies to block access to websites containing malware
9) Provide protection for VPNs, WANs, and WLANs

Open Systems Interconnection (OSI) model - Answer a seven-layer architecture for
defining how data is transmitted from computer to computer in a network, from the
physical connection to the network to the applications that users run. It also
standardizes interactions between network computers exchanging information.

Les avantages d'acheter des résumés chez Stuvia:

Qualité garantie par les avis des clients

Qualité garantie par les avis des clients

Les clients de Stuvia ont évalués plus de 700 000 résumés. C'est comme ça que vous savez que vous achetez les meilleurs documents.

L’achat facile et rapide

L’achat facile et rapide

Vous pouvez payer rapidement avec iDeal, carte de crédit ou Stuvia-crédit pour les résumés. Il n'y a pas d'adhésion nécessaire.

Focus sur l’essentiel

Focus sur l’essentiel

Vos camarades écrivent eux-mêmes les notes d’étude, c’est pourquoi les documents sont toujours fiables et à jour. Cela garantit que vous arrivez rapidement au coeur du matériel.

Foire aux questions

Qu'est-ce que j'obtiens en achetant ce document ?

Vous obtenez un PDF, disponible immédiatement après votre achat. Le document acheté est accessible à tout moment, n'importe où et indéfiniment via votre profil.

Garantie de remboursement : comment ça marche ?

Notre garantie de satisfaction garantit que vous trouverez toujours un document d'étude qui vous convient. Vous remplissez un formulaire et notre équipe du service client s'occupe du reste.

Auprès de qui est-ce que j'achète ce résumé ?

Stuvia est une place de marché. Alors, vous n'achetez donc pas ce document chez nous, mais auprès du vendeur EvaTee. Stuvia facilite les paiements au vendeur.

Est-ce que j'aurai un abonnement?

Non, vous n'achetez ce résumé que pour $10.99. Vous n'êtes lié à rien après votre achat.

Peut-on faire confiance à Stuvia ?

4.6 étoiles sur Google & Trustpilot (+1000 avis)

79650 résumés ont été vendus ces 30 derniers jours

Fondée en 2010, la référence pour acheter des résumés depuis déjà 14 ans

Commencez à vendre!

Récemment vu par vous


$10.99
  • (0)
  Ajouter