D488 Cybersecurity Architecture and Engineering - Set 2 - Part 1

Correct Answer: To align cybersecurity strategies with business objectives

Cybersecurity governance ensures that security efforts support the overall goals of the organization, balancing risk management with business needs.

Correct Answer: Implementing multiple layers of security controls

Defense in Depth is a security strategy that uses multiple layers of defense to protect assets, making it harder for attackers to compromise systems.

Correct Answer: To collect and analyze security data from across the organization

A SIEM system aggregates logs and security events, enabling organizations to detect, analyze, and respond to security incidents effectively.

Correct Answer: Regularly, at least annually or after significant changes

Regular training helps ensure that employees are aware of current threats and security practices, fostering a security-conscious culture.

Correct Answer: Phishing

Phishing is a social engineering technique that deceives individuals into revealing sensitive information, often through fraudulent emails or messages.

Correct Answer: To ensure software updates are applied to fix vulnerabilities

Patch management addresses security vulnerabilities by ensuring that software updates and patches are applied promptly to reduce risks.

Correct Answer: Data Loss Prevention

DLP refers to strategies and tools that help prevent the unauthorized access and transfer of sensitive information.

Correct Answer: Denial of Service (DoS)

A Denial of Service attack aims to render a service unavailable by flooding it with excessive traffic or requests.

Correct Answer: It ensures data confidentiality and integrity.

Encryption protects data by making it unreadable to unauthorized users, maintaining confidentiality during transmission.

Correct Answer: Chief Information Security Officer (CISO)

The CISO leads the organization's security initiatives, ensuring that security policies and practices align with business objectives.

Correct Answer: It combines public and private cloud services.

A hybrid cloud model allows organizations to utilize both public and private cloud environments, optimizing flexibility and resource management.

Correct Answer: To block or prevent detected threats

An IPS actively monitors network traffic and can take immediate action to block identified threats, unlike an IDS which only alerts.

Correct Answer: Vulnerability to exploitation

Outdated software may have unpatched vulnerabilities that attackers can exploit to compromise systems or data.

Correct Answer: HIPAA

The Health Insurance Portability and Accountability Act (HIPAA) sets standards for protecting sensitive patient information in the healthcare sector.

Correct Answer: It adds an extra layer of security against unauthorized access.

MFA enhances security by requiring users to verify their identity using multiple methods, making unauthorized access more difficult.

Correct Answer: To outline procedures for responding to data breaches

A data breach response plan provides a structured approach to managing and mitigating the impact of data breaches when they occur.

Correct Answer: Human behavior

Social engineering exploits human psychology to manipulate individuals into divulging confidential information or performing actions that compromise security.

Correct Answer: Conducting code reviews and security testing

Integrating security practices, such as code reviews and testing, helps identify and mitigate vulnerabilities in software before deployment.

Correct Answer: Limiting user permissions to the minimum necessary

The PoLP minimizes potential security risks by ensuring users have only the access required to perform their job functions.

Correct Answer: Ransomware

Ransomware locks users out of their files or systems, demanding a ransom for the decryption key to regain access.