4. Security Operations

What are secure baselines?

defined security configurations established (often by manufacturer), deployed via centrally administered consoles, and maintained over time

How are baselines deployed?

usually through centrally managed tools like Active Directory and Group Policy

How do you harden workstations?

apply monthly patches/updates, connect to a policy management system, and remove unnecessary software

How do you harden network infrastructure devices?

secure switches and routers by configuring strong passwords and accounts

How do you harden cloud infrastructure?

apply least privilege, use EDR, and maintain backups

How do you harden servers?

apply updates and configure secure user accounts with password requirements and limited network access

What is SCADA/ICS?

Supervisory Control and Data Acquisition / Industrial Control Systems, large-scale multi-site systems that manage onsite equipment and require extensive segmentation

What are embedded systems?

hardware/software designed for a specific function that are difficult to upgrade; should be patched, segmented, and firewalled

What is an RTOS?

Real-Time Operating System, an OS with a deterministic processing schedule, isolated from the network and run with minimum services

How do you harden IoT devices?

change weak default credentials, deploy updates quickly, and segment them on their own VLAN

What is a site survey?

mapping the wireless landscape of your network

What are wireless survey tools?

tools used to measure signal coverage and identify interference

What is MDM?

Mobile Device Management, centralizes management of company/user-owned mobile devices including apps, data, camera, and access control

What is BYOD?

Bring Your Own Device, employee-owned devices that are very difficult to secure

What is COPE?

Corporate Owned, Personally Enabled, company buys the device but allows personal use while keeping full control

What is CYOD?

Choose Your Own Device, like COPE but the user picks which device they want

What are cellular network security concerns?

traffic monitoring, location tracking, and worldwide access to a mobile device

What are Wi-Fi security concerns?

data capture, on-path attacks, and denial of service

What is Bluetooth?

high-speed communication over short distances (PAN); can lead to security concerns if random devices connect

How do you secure a wireless network?

authenticate users before granting access, ensure communication is confidential, and verify integrity of all communication