Quiz 14 and Answers
Apart from natural disaster, what type of events threaten physical damage to assets?
Accidental damage, vandalism
war/terrorism
Which two metrics must you reduce in order to meet an MTD target?
Recovery Time Objective (RTO) and Work Recovery Time (WRT)
Previo...
Quiz 14 and Answers
Apart from natural disaster, what type of events threaten physical damage to assets? -
answer Accidental damage, vandalism
war/terrorism
Which two metrics must you reduce in order to meet an MTD target? - answer
Recovery Time Objective (RTO) and Work Recovery Time (WRT)
What metric is used to identify the expected service lifetime of a non-repairable
appliance? - answer Mean Time to Failure
The risk (as determined by impact and likelihood) compared to the cost of the control
determines the selection of security controls in terms of an overall budget - answer
True
This metric can be calculated as Return on Security Investment (ROSI)
Simple Loss Expectancy (SLE) or Annual Loss Expectancy (ALE) could be used to
make a quantitative calculation of risk due to a specific threat to a specific function or
asset. - answer False
What type of risk mitigation option is offered by purchasing insurance? - answer Risk
transference.
A document highlighting the results of risk assessments in an easily comprehensible
format is called - answer risk register
What factor is most likely to reduce a system's fault tolerance? - answer Single
points of failure
A _______________ is one that responds to increased workloads by adding
resources without exponentially increasing costs. An _____________ is able to
assign or unassign resources as needed to match either an increased workload
or a decreased workload. - answer Scalable system / Elastic System
How is system availability typically expressed? - answer Quantitatively, using uptime
statistics such as "99.99%," "99.9%," "99%," etc.
RAID provides redundancy between a group of disks, so that if one disk were to fail,
that data may be recoverable from the other disks in the array. - answer True
How does non-persistence reduce risk? - answer maintaining access to a
compromised host.
mitigates against the risk of malware continuing to infect a system
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Pogba119. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $12.99. You're not tied to anything after your purchase.