FedVTE Cyber Risk Management for Technicians – Flashcards

Unlock all answers in this set

Unlock answers
question
In order to automate host characteristic monitoring you can compare baselines and snapshots with syslog.
answer
False
question
The following should be taken into account when accepting the residual risk inherent in the project.
answer
All of the above
question
What is the high water mark for an information system?
answer
Highest Potential Impact value assigned to each Security Objective (AIC) for all Security Categories resident on the system and the overall classification of the system.
question
Which of the following describes NetScan Tools Pro?
answer
B. A powerful command line packet analyzer C. A tool that provides advanced network trace routing D. A collection of Internet information gathering and network troubleshooting utilities
question
FIPS 200 is:
answer
A short document that describes the minimum security requirements for information and information systems
question
Which risk comes from a failure of the controls to properly mitigate risk?
answer
A. Inherent risk C. Control Risk D. All of the above
question
Open Source Security (OSSEC) is what?
answer
A host based security system that monitors for changes
question
What tool would be best to automatically detect your network and construct a complete and easy to view network map?
answer
LANsurveyor
question
Which NIST special publication is a guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life Cycle Approach?
answer
NIST SP 800 37
question
Which of the following is a part of the Examine Method?
answer
Inspecting the physical security measures
question
If the cost of controls exceeds the benefit the organization may choose to accept the risk instead.
answer
True
question
Which of the following families of controls belongs to the technical class of controls?
answer
Identification and Authentication
question
Which tier of Risk Management is associated with Enterprise Architecture?
answer
Tier 2 Mission (Business Process)
question
In NIST SP 800 53 the security control structure consists of all the following components except for:
answer
All of these are in the security control structure: - Priority and baseline allocation - Supplemental guidance - Control enhancements
question
Kismet is different from a normal network sniffer such as Wireshark or tcpdump because it separates and identifies different wireless networks in the area.
answer
True
question
What is the order of the Change Control Process?
answer
A. Request : Approval : Build : Impact Assessment : If successful Implement B. Request : Impact Assessment : Approval : Build and or Test : Implement D. Request : Impact Assessment : Build and or Test : Approval : Implement
question
The threat source is highly motivated and sufficiently capable and controls to prevent the vulnerability from being exercised are ineffective. Which likelihood rating does this describe?
answer
High
question
Which of the following is not part of the process for assessing security controls according to NIST SP 800 53A 1?
answer
A. Study C. Conduct D. Analyze
question
Which step of a risk assessment uses the history of system attacks?
answer
Step 2: Threat Identification
question
In risk management people and information and technology are examples of?
answer
Assets
question
What type of analysis involves using scales to suit circumstances and allows for quick identification of potential risks as well as vulnerable assets and resources?
answer
B. Audit Analysis C. Qualitative Analysis D. Cost/benefit analysis
question
NIST SP 800 30 defines risk as a function of the likelihood of a given threat source exercising a particular potential vulnerability and the resulting impact of that adverse event on the organization.
answer
True
question
One strategy for determining the proper level of acceptable risk is to:
answer
Determine a point where cost of mitigation is less than cost of loss
question
Which OCTAVE process involves collecting information about important assets and security requirements and threats and current organizational strengths and vulnerabilities from managers of selected operational areas?
answer
Identify Operational Area Knowledge
question
Which of the following is a step in detecting and analysing host changes?
answer
All of the above : - Create a current snapshot of your host - Create a baseline of your host - Compare your snapshot to your baseline
Get an explanation on any task
Get unstuck with the help of our AI assistant in seconds
New