Docsity
Log inSign up
Docsity
Prepare for your exams
Prepare for your exams

Study with the several resources on Docsity

Earn points to download
Earn points to download

Earn points by helping other students or get them with a premium plan

Guidelines and tips
Guidelines and tips
Sell on Docsity
Sell on Docsity
Log inSign up

Prepare for your exams

Study with the several resources on Docsity

Find documents

Prepare for your exams with the study notes shared by other students like you on Docsity

Search Store documents

The best documents sold by students who completed their studies

Search through all study resources
Docsity AINEW

Summarize your documents, ask them questions, convert them into quizzes and concept maps

Explore questions

Clear up your doubts by reading the answers to questions asked by your fellow students

Earn points to download

Earn points by helping other students or get them with a premium plan

Share documents
download point icon20 Points

For each uploaded document

Answer questions
download point icon5 Points

For each given answer (max 1 per day)

All the ways to get free points
Get points immediately

Choose a premium plan with all the points you need

Study Opportunities

Choose your next study program

Get in touch with the best universities in the world. Search through thousands of universities and official partners

Community

Ask the community

Ask the community for help and clear up your study doubts

University Rankings

Discover the best universities in your country according to Docsity users

Free resources

Our save-the-student-ebooks!

Download our free guides on studying techniques, anxiety management strategies, and thesis advice from Docsity tutors

From our blog

Exams and Study
Go to the blog

Cybersecurity Operations Review: Questions and Answers, Exams of Human Resource Management

Dallas Nursing InstituteHuman Resource Management

A series of questions and answers related to cybersecurity operations, covering topics such as vpns, risk management, internal audits, physical security, cloud computing, and agile methodologies. It provides insights into best practices and common challenges in cybersecurity, making it a valuable resource for students and professionals in the field.

Typology: Exams

2024/2025

Available from 02/11/2025

dillon-cole
dillon-cole 🇺🇸

4.3

(6)

1.9K documents

1 / 4

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
FedVTE Enterprise Cyber security Operations Review
Questions and Answers
The acronym VPN stands for: - Correct AnswersVirtual Private Network
Executives are responsible for managing and overseeing enterprise risk management. -
Correct AnswersTrue
The internal audit department is investigating a possible accounting breach. One of the
auditors is sent to interview the following employees: Employee A works in the accounts
receivable office and is in charge of entering data into the finance system; Employee B
works in the accounts payable office and is in charge of approving purchase orders;
Employee C is the manager of the finance department, supervises Employee A and
Employee B, and can perform the functions of both Employee A and Employee B. Which of
the following should the auditor suggest be done to avoid future security breaches? -
Correct AnswersThe manager should only be able to review the data and approve
purchase orders.
An electrical utility has employed a consultant to perform a controls assessment of the
personnel system, backend business operations, and the SCADA system used in their
facility. Which of the following correctly states the risk management options that the
consultant should use during the assessment? - Correct AnswersAvoid, transfer, mitigate,
and accept.
The acronym SOA stands for: - Correct AnswersStatement of Applicability
Which of the following are steps in the risk management process? - Correct AnswersAll of
the Above
Cybersecurity should be involved throughout the entire system development life cycle. -
Correct AnswersTrue
pf3
pf4

Partial preview of the text

Download Cybersecurity Operations Review: Questions and Answers and more Exams Human Resource Management in PDF only on Docsity!

FedVTE Enterprise Cyber security Operations Review

Questions and Answers

The acronym VPN stands for: - Correct AnswersVirtual Private Network Executives are responsible for managing and overseeing enterprise risk management. - Correct AnswersTrue The internal audit department is investigating a possible accounting breach. One of the auditors is sent to interview the following employees: Employee A works in the accounts receivable office and is in charge of entering data into the finance system; Employee B works in the accounts payable office and is in charge of approving purchase orders; Employee C is the manager of the finance department, supervises Employee A and Employee B, and can perform the functions of both Employee A and Employee B. Which of the following should the auditor suggest be done to avoid future security breaches? - Correct AnswersThe manager should only be able to review the data and approve purchase orders. An electrical utility has employed a consultant to perform a controls assessment of the personnel system, backend business operations, and the SCADA system used in their facility. Which of the following correctly states the risk management options that the consultant should use during the assessment? - Correct AnswersAvoid, transfer, mitigate, and accept. The acronym SOA stands for: - Correct AnswersStatement of Applicability Which of the following are steps in the risk management process? - Correct AnswersAll of the Above Cybersecurity should be involved throughout the entire system development life cycle. - Correct AnswersTrue

A Physical Security Manager is ready to replace 30 analog surveillance cameras with IP cameras with built in web management. There are several security guard desks on different networks that must be able to view the cameras without unauthorized people viewing the video as well. The selected IP camera vendor does not have the ability to authenticate users at the camera level. Which of the following should be used to BEST secure this environment? - Correct AnswersCreate an IP camera network and deploy a proxy to authenticate users prior to accessing the cameras. What is an advantage of cloud computing? - Correct AnswersImproved performance Cybersecurity is primarily about implementing a checklist of requirements. - Correct AnswersFalse A retail merchant has had a number of issues in regards to the integrity of sensitive information across all of its customer databases. This has resulted in the merchants share price decreasing in value by more than one third and the merchant has been threatened with losing their ability to process credit card transactions. The new Chief Information Security Officer (CISO) as a result has initiated a program of work to solve the issues. The business has specified that the solution needs to be enterprise grade and meet the following requirements: Work across all major platforms, applications and infrastructure; Tracks activity of all users, including administrators; Operates without negatively impacting the performance of production platforms, applications, and infrastructures; Provides real-time incident reporting; Displays incidents in a dashboard view for easy recognition; Includes a report generator where business - Correct AnswersImplement an enterprise-based SIEM solution to process the logs of the major platforms, applications, and infrastructure. Open source material is a good resource for gathering substantial information on a desired target. - Correct AnswersTrue The agile process emphasizes which of the following over processes and tools? - Correct AnswersIndividuals and Interactions Jurisdiction and Breach Notification are examples of what type of potential risk? - Correct AnswersLegal

occur based on best practices? - Correct AnswersEach data center should contain separate virtual environments for the web servers and for the domain controllers. Which of the following is an agreement between two or more organizations to work together to allow information exchange? - Correct AnswersInteroperability The DoD has specific mandatory requirements for data encryption. - Correct AnswersTrue A new IDS appliance is generating a very large number of events, most of which are not security-related. Select the approach which best resolves this issue. - Correct AnswersAdjust IDS filters that are creating false positives. Good metrics are SMART. The M in the acronym SMART stands for: - Correct AnswersMeasurable Which of the following can be useful in information gathering? - Correct AnswersAll of the Above File Transfer Protocol (FTP) is secure. - Correct AnswersFalse Impact measures are inherently organization specific. - Correct AnswersTrue A Security Manager is selecting web conferencing systems for internal use. The system will only be used for internal employee collaboration. All of the following should be priority issues for the security manager EXCEPT: - Correct AnswersPBX integration of the service The firm's CISO has been working with the Purchasing and the Project Management Office on soliciting bids for a series of HIDS and NIDS products for a major installation in the firm's new Hong Kong office. After reviewing RFQs received from three vendors, the company has not gained any real data regarding the specifications about any of the solutions and want that data before the procurement continues. Which of the following will the CISO do at this point to get back on track in this procurement process? - Correct AnswersContact the three submitting vendor firms and have them submit supporting RFIs to provide more detailed information about their product solutions.