Domain 1 security principles

0.0(0)
studied byStudied by 0 people
GameKnowt Play
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
Card Sorting

1/13

encourage image

There's no tags or description

Looks like no tags are added yet.

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

14 Terms

1
New cards

What does the CIA Triad stand for in cybersecurity?

Confidentiality, Integrity, Availability.

2
New cards

What is the role of a CISO?

The Chief Information Security Officer oversees an organization's information security strategy and implementation.

3
New cards

What does a SOC do?

A Security Operations Center monitors, detects, and responds to cybersecurity incidents.

4
New cards

What is an insider threat?

A security risk originating from within the organization, such as employees or contractors.

5
New cards

What is an outsider threat?

A threat from external sources like hackers or competitors.

6
New cards

What are the three types of security controls?

Administrative, Technical, and Physical.

7
New cards

What is Defense in Depth?

A layered security approach that uses multiple controls to protect assets.

8
New cards

What is risk management in cybersecurity?

The process of identifying, assessing, and mitigating risks to information assets.

9
New cards

What is the principle of Least Privilege?

Users should have only the access necessary to perform their job functions.

10
New cards

What is Separation of Duties?

Dividing responsibilities among different individuals to reduce risk of fraud or error.

11
New cards

What does STRIDE stand for in threat modeling?

Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, Elevation of Privilege.

12
New cards

Why is asset classification important?

It helps determine the level of protection needed for different types of data.

13
New cards

What is the difference between a policy, standard, and procedure?

A policy is a high-level statement of intent, a standard is a mandatory control, and a procedure is a detailed step-by-step guide.

14
New cards