Cyber Security Chapter 2

0.0(0)
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
Card Sorting

1/17

encourage image

There's no tags or description

Looks like no tags are added yet.

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

18 Terms

1
New cards
Adverse Events
Events with a negative consequence, such as system crashes, network packet floods, unauthorized use of system privileges, defacement of a web page or execution of malicious code that destroys data
2
New cards
Breach 
Unauthorized access, disclosure, or acquisition of personally identifiable information by an unauthorized user or when an authorized user misuses the information
3
New cards
Business Continuity (BC)
Actions, processes and tools for ensuring an organization can continue critical operations during a contingency
4
New cards
Business Continuity Plan (BCP)
The documentation of a predetermined set of instructions or procedures that describe how an organization’s mission/business processes will be sustained during and after a significant disruption.
5
New cards
Business Impact Analysis (BIA)
An analysis of an information system’s requirements, functions, and interdependencies used to characterize system contingency requirements and priorities in the event of a significant disruption
6
New cards
Disaster Recovery (DR) 
In information systems terms, the activities necessary to restore IT and communications services to an organization during and after an outage, disruption or disturbance of any kind or scale
7
New cards
Disaster Recovery Plan (DRP)
The processes, policies and procedures related to preparing for recovery or continuation of an organization's critical business functions, technology infrastructure, systems and applications after the organization experiences a disaster
8
New cards
Disaster
when an organization’s critical business function(s) cannot be performed at an acceptable level within a predetermined period following a disruption
9
New cards
Event 
Any observable occurrence in a network or system
10
New cards
Exploit 
A particular attack. It is named this way because these attacks exploit system vulnerabilities
11
New cards
Incident 
An event that actually or potentially jeopardizes the confidentiality, integrity or availability of an information system or the information the system processes, stores or transmits
12
New cards
Incident Handling
The mitigation of violations of security policies and recommended practices
13
New cards
Incident Response (IR)
The mitigation of violations of security policies and recommended practices
14
New cards
Incident Response Plan (IRP)
The documentation of a predetermined set of instructions or procedures to detect, respond to and limit consequences of a malicious cyberattack against an organization’s information systems(s)
15
New cards
Intrusion 
A security event, or combination of security events, that constitutes a security incident in which an intruder gains, or attempts to gain, access to a system or system resource without authorization
16
New cards
Security Operations Center
A centralized organizational function fulfilled by an information security team that monitors, detects and analyzes events on the network or system to prevent and resolve issues before they result in business disruptions
17
New cards
Vulnerability 
Weakness in an information system, system security procedures, internal controls or implementation that could be exploited or triggered by a threat source
18
New cards
Zero Day 
A previously unknown system vulnerability with the potential of exploitation without risk of detection or prevention because it does not, in general, fit recognized patterns, signatures or methods