Cissp stuvia - Study guides, Class notes & Summaries

*baseline - Answer NIST SP 800-53 discusses security control baselines as a list of security controls. CIS releases security baselines, and a baseline is a useful part of a threat management strategy and may contain a list of acceptable configuration items. *Content Distribution Network (CDN) - Answer is designed to provide reliable, low-latency, geographically distributed content distribution. In this scenario, a CDN is an ideal solution. A P2P CDN like BitTorrent isn't a typical choice for...

CIA Triangle - Answer Cornerstone of infosec. Confidentiality, Integrity, Availability Confidentiality (CIA Triangle) - Answer prevention of unauthorized disclosure of information; prevention of unauthorized read access to data Integrity (CIA Triangle) - Answer prevention of unauthorized modification of data; prevention of unauthorized write access to data Availability (CIA Triangle) - Answer ensures data is available when needed to authorized users Opposing forces to CIA - Answer DA...

What is a Cache? - ANSWER is a local store of information that a system uses to operate. Caches store frequently used records to save clients the time of performing repeated looks us and reduce the burden on servers. Define client-server model - ANSWER Client-server model is a distributed application structure that partitions tasks or workloads between the providers of a resource or service, called servers, and service requesters, called clients. ... A server host runs one or more server prog...

Strategy documents that provide detailed procedures that ensure critical business functions are maintained and that help minimize losses of life, operations, and systems. -ANSWER Business Continuity Plan (BCP) Contents Procedures for emergency responses, extended backup operations, and post-disaster recovery. -ANSWER BCP Provisions Should reach enterprise-wide, with individual organizational units each having their own detailed continuity and contingency plans. -ANSWER BCP Structure Req...

The objectives of security are: - ANSWER provide availability, integrity, and confidentiality protection to data and resources. Vulnerability - ANSWER is a weakness in a system that allows a threat source to compromise its security. Threat - ANSWER is the possibility that someone or something would exploit a vulnerability, either intentionally or accidentally, and cause harm to an asset. Risk - ANSWER is the probability of a threat agent exploiting a vulnerability and the loss potential...

CISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And Answers

Which attack is used to understand the type of network topology implemented at the target? - ANSWER Scanning The primary goal of a security awareness program is: - ANSWER To make everyone aware of potential risk and exposure Fault tolerance safeguards help us to combat threats to - ANSWER Data Reliability What is the term used to describe a component, which in case of failure automatically responds in way that causes no or minimum harm? - ANSWER Fail Safe Which one of the following i...

1. Which of the following best describes the relationship between COBIT and ITIL? A. COBIT is a model for IT governance, whereas ITIL is a model for corporate governance. B. COBIT provides a corporate governance roadmap, whereas ITIL is a customizable framework for IT service management. C. COBIT defines IT goals, whereas ITIL provides the process-level steps on how to achieve them. D. COBIT provides a framework for achieving business goals, whereas ITIL defines a framework for achieving IT ...

1. Which of the following best describes the relationship between COBIT and ITIL? A. COBIT is a model for IT governance, whereas ITIL is a model for corporate governance. B. COBIT provides a corporate governance roadmap, whereas ITIL is a customizable framework for IT service management. C. COBIT defines IT goals, whereas ITIL provides the process-level steps on how to achieve them. D. COBIT provides a framework for achieving business goals, whereas ITIL defines a framework for achieving IT ...

CISSP Exam- Security Architecture and Engineering Correct 100%(RATED A)What is a Cache? - ANSWER is a local store of information that a system uses to operate. Caches store frequently used records to save clients the time of performing repeated looks us and reduce the burden on servers. Define client-server model - ANSWER Client-server model is a distributed application structure that partitions tasks or workloads between the providers of a resource or service, called servers, and service req...