WGU C795 CYBER SECURITY MANAGEMENT II|WITH CORRECT ANSWERS

Common Vulnerabilities and Exposures (CVE) Correct Answer Provides a naming system for describing security vulnerabilities. Common Vulnerability Scoring System (CVSS) Correct Answer provides a standardized scoring system for describing the severity of security vulnerabilities. Common Configuration Enumeration (CCE) Correct Answer provides a naming system for system configuration issues. Common Platform Enumeration (CPE) Correct Answer provides a naming system for operating systems, applications, and devices. Extensible Configuration Checklist Description Format (XCCDF) Correct Answer provides a language for specifying security checklists. Open Vulnerability and Assessment Language (OVAL) Correct Answer provides a language for describing security testing procedures. Vulnerability scans automatically Correct Answer probe systems, applications, and networks, looking for weaknesses that may be exploited by an attacker. Differential backup Correct Answer A type of partial backup that involves copying all changes made since the last full backup. Thus, each new differential backup file contains the cumulative effects of all activity since the last full backup. Electronic Vaulting Correct Answer A storage scenario in which database backups are transferred to a remote site in a bulk transfer fashion. The remote location may be a dedicated alternative recovery site (such as a hot site) or simply an offsite location managed within the company or by a contractor for the purpose of maintaining backup data full backup Correct Answer A complete copy of data contained on the protected device on the backup media. Full-interruption tests Correct Answer operate like parallel tests, but they involve actually shutting down operations at the primary site and shifting them to the recovery site. Parallel tests Correct Answer represent the next level in testing and involve relocating personnel to the alternate recovery site and implementing site activation procedures.