Question 1

In information security,which of the following is an example of a threat actor?

Accepted Answer

A) a force of nature such as a tornado that could destroy computer equipment 
B) a virus that attacks a computer network 
C) a person attempting to break into a secure computer network 
D) all of the above 
A) a force of nature such as a tornado that could destroy computer equipment 
B) a virus that attacks a computer network 
C) a person attempting to break into a secure computer network 
D) all of the above

Question 2

What class of attacks use innovative attack tools and once a system is infected it silently extracts data over an extended period?

Accepted Answer

A) Inside Attacks 
B) Advanced Persistent Threat 
C) Embedded Attacks 
D) Modified Threat 
A) Inside Attacks 
B) Advanced Persistent Threat 
C) Embedded Attacks 
D) Modified Threat

Question 3

Select the term that best describes automated attack software?

Accepted Answer

A) open-source utility 
B) insider software 
C) open-source intelligence 
D) intrusion application 
A) open-source utility 
B) insider software 
C) open-source intelligence 
D) intrusion application

Question 4

Which term is used to describe individuals who want to attack computers yet lack the knowledge of computers and networks needed to do so?

Accepted Answer

A) cybercriminal 
B) hacker 
C) script kiddies 
D) cyberterrorist 
A) cybercriminal 
B) hacker 
C) script kiddies 
D) cyberterrorist

Question 5

Describe the security principle of simplicity.

Accepted Answer

Because attacks can come from a variety

Question 6

In what kind of attack can attackers make use of millions of computers under their control in an attack against a single server or network?

Accepted Answer

A) centered 
B) local 
C) remote 
D) distributed 
A) centered 
B) local 
C) remote 
D) distributed

Question 7

Successful attacks are usually not from software that is poorly designed and has architecture/design weaknesses.

Accepted Answer

A) True 
 B)False

Question 8

What type of theft involves stealing another person's personal information,such as a Social Security number,and then using the information to impersonate the victim,generally for financial gain?

Accepted Answer

A) cyberterrorism 
B) identity theft 
C) phishing 
D) social scam 
A) cyberterrorism 
B) identity theft 
C) phishing 
D) social scam

Question 9

What type of diversity is being implemented if a company is using multiple security products from different manufacturers?

Accepted Answer

A) multiple-product security 
B) manufacturer diversity 
C) vendor diversity 
D) vendor-control security 
A) multiple-product security 
B) manufacturer diversity 
C) vendor diversity 
D) vendor-control security

Question 10

What term refers to an action that provides an immediate solution to a problem by cutting through the complexity that surrounds it?

Accepted Answer

A) unicorn 
B) approved action 
C) secure solution 
D) silver bullet 
A) unicorn 
B) approved action 
C) secure solution 
D) silver bullet

In information security,which of the following is an example of a threat actor?

What class of attacks use innovative attack tools and once a system is infected it silently extracts data over an extended period?

Select the term that best describes automated attack software?

Which term is used to describe individuals who want to attack computers yet lack the knowledge of computers and networks needed to do so?

Describe the security principle of simplicity.

In what kind of attack can attackers make use of millions of computers under their control in an attack against a single server or network?

Successful attacks are usually not from software that is poorly designed and has architecture/design weaknesses.

What type of theft involves stealing another person's personal information,such as a Social Security number,and then using the information to impersonate the victim,generally for financial gain?

What type of diversity is being implemented if a company is using multiple security products from different manufacturers?

What term refers to an action that provides an immediate solution to a problem by cutting through the complexity that surrounds it?

Malware and Social Engineering Attacks

Basic Cryptography

Advanced Cryptography and PKI

Networking and Server Attacks

Network Security Devices, Design, and Technology

Administering a Secure Network

Wireless Network Security

Client and Application Security

Mobile and Embedded Device Security

Authentication and Account Management

Access Management

Vulnerability Assessment and Data Security

Business Continuity

Risk Mitigation

Filters

Exam 1: Introduction to Security

In information security,which of the following is an example of a threat actor?

What class of attacks use innovative attack tools and once a system is infected it silently extracts data over an extended period?

Select the term that best describes automated attack software?

Which term is used to describe individuals who want to attack computers yet lack the knowledge of computers and networks needed to do so?

Describe the security principle of simplicity.

In what kind of attack can attackers make use of millions of computers under their control in an attack against a single server or network?

Successful attacks are usually not from software that is poorly designed and has architecture/design weaknesses.

What type of theft involves stealing another person's personal information,such as a Social Security number,and then using the information to impersonate the victim,generally for financial gain?

What type of diversity is being implemented if a company is using multiple security products from different manufacturers?

What term refers to an action that provides an immediate solution to a problem by cutting through the complexity that surrounds it?

Malware and Social Engineering Attacks

Basic Cryptography

Advanced Cryptography and PKI

Networking and Server Attacks

Network Security Devices, Design, and Technology

Administering a Secure Network

Wireless Network Security

Client and Application Security

Mobile and Embedded Device Security

Authentication and Account Management

Access Management

Vulnerability Assessment and Data Security

Business Continuity

Risk Mitigation

Filters