Written by students who passed Immediately available after payment Read online or as PDF Wrong document? Swap it for free 4.6 TrustPilot
logo-home
Exam (elaborations)

WGU C727_Cybersecurity Management I - Strategic_ Latest Updates, Verified. Rated A+

Rating
-
Sold
-
Pages
63
Grade
A+
Uploaded on
23-08-2023
Written in
2023/2024

WGU C727_Cybersecurity Management I - Strategic_ Latest Updates, Verified. Rated A+ Pillars of Cyber Security Confidentiality, Integrity, Availability, and Safety (Introduced to address issues related to Internet of Things (IoT)) How do you measure any cyber security effort's success? Success in cybersecurity will be the absence of impact on confidentiality, integrity, and availability of digital information no matter where it is (stationary/stored, traveling/transmitted, or processed). Identity Function The identify function is where you develop an understanding of what your risks are, what your assets are, and what your capabilities are. Protect Function Protect is your set of plans and actions that put in place the right controls (remember: controls do stuff) to protect the assets. Detect Function Detect is the set of plans and actions that you will use to identify, classify, etc., an attack against your assets. Respond Function Respond is the set of activities that you engage in response to an attack. Recover Function Recover refers to whatever plans or protocols you have in place to bring things back to normal after an attack. Deterrence Function Deterrence is not a question of education alone. It is also built on reducing what's called your attack surface. As part of the deter function you need to take a close look at your business. What do you do, who are your partners, what are the threats, and how have they changed over time? Preventive Controls Designed to prevent the attack from reaching the asset in the first place. Detective Controls Designed to identify that an attack is occurring, including what kind of an attack, where it came from, what it used, and, if you're lucky, who may be behind it. Corrective Controls Designed to minimize the damage from an attack. Examples include restoring from backup, patching the systems with the latest security fixes, upgrading to the latest version of applications and operating systems, and the like. Compensating Controls Designed to compensate for the failure or absence of other controls and mitigate the damage from an attack. Examples include having a hot failover site (a geographically separate site that mirrors your environment, available the instant you need it), isolating critical systems from the Internet (aka air-gapping), and, in general, backup and disaster recovery plans that can keep the lights on while everyone else is in the dark. Defense in Depth Putting multiple and diverse barriers (controls) between the attacker and the asset. Examples of Threat Agents Cybercriminals, Insiders (e.g., employees), Nation-States, Corporations, Hacktivists, Cyber-Fighters, Cyberterrorists, Script Kiddies. Key Trends Influencing Threat Agents Consumerization of cybercrime, Low barriers to entry for technical novices, Dark net mystique, Low rates of attributions. Attack Vector The path that the attacker takes to compromise your asset. Although most attack vectors are pointing inward (ingress) toward systems and assets, there are attacks that point outward (egress). Those outward attacks focus on ways to extract data and assets as opposed to gaining access and potentially damaging data. Attack Payload Think of this as a container (e.g., the outside of a bomb) that delivers the exploit (the explosives) that take advantage of one or more vulnerabilities exposing the target to the attacker. Advanced persistent threat (APT) An APT says what it does and does what it says—it's a coordinated, persistent, resilient, adaptive attack against a target. APTs are primarily used to steal data. They can take a long time to research, plan, coordinate, and execute, but when they succeed, they are frequently devastating. Brute Force Attack If there is any elegance in hacking a system, then this method lacks it. A brute force attack, much like a brute, doesn't use any brains, only force—in this case, computing force. So, if I wanted to guess your password with a brute force attack, I would use a very fast computer to try every single combination possible of the number—a task that can take a large amount of time or a startlingly brief amount, depending on the complexity of the password. Denial of Service (DoS) Attack DoS attacks come in two flavors: single-source and distributed. A single-source DoS attack occurs when one computer is used to drown another computer with so many requests that the targeted one can't function while a distributed DoS (DDoS) attack achieves the same result through many (meaning thousands or millions of) computers. Man-in-the-Middle Attack In this type of an attack, the hacker intercepts the communication between two systems, replacing it with his own, eventually leading to his gaining control of both systems.

Show more Read less











Whoops! We can’t load your doc right now. Try again or contact support.

Document information

Uploaded on
August 23, 2023
Number of pages
63
Written in
2023/2024
Type
Exam (elaborations)
Contains
Questions & answers

Subjects

$10.99
Get access to the full document:

Wrong document? Swap it for free Within 14 days of purchase and before downloading, you can choose a different document. You can simply spend the amount again.
Written by students who passed
Immediately available after payment
Read online or as PDF


Also available in package deal

Thumbnail
Package deal
WGU C727- Cybersecurity Management, EXAMS BUNDLE.
-
18 2023
$ 36.99 More info

Get to know the seller

Seller avatar
Reputation scores are based on the amount of documents a seller has sold for a fee and the reviews they have received for those documents. There are three levels: Bronze, Silver and Gold. The better the reputation, the more your can rely on the quality of the sellers work.
PassPoint02 Chamberlain School Of Nursing
View profile
Follow You need to be logged in order to follow users or courses
Sold
176
Member since
4 year
Number of followers
105
Documents
4576
Last sold
1 month ago

4.1

39 reviews

5
22
4
6
3
5
2
4
1
2

Recently viewed by you

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

Student with book image

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Working on your references?

Create accurate citations in APA, MLA and Harvard with our free citation generator.

Working on your references?

Frequently asked questions