Cyber security Fundamentals Part 1
(Week4)
An event that can negatively impact an organization's information assets or operations
is termed an ______. - answer Adverse Event
The process involving senior management's definition of actions in the face of potential
incidents, including preparation and remedial steps, is called ______. - answer
Contingency Planning (CP)
The team comprised of senior managers and members tasked with carrying out all
contingency planning activities is known as the ______. - answer Contingency Planning
Management Team (CPMT)
The group tasked with creating and administering the organization's protocol for
preparedness, reaction, and recuperation from incidents is the ______. - answer
Incident Response Planning Team (IRPT)
The team in charge of orchestrating the organization's strategy for preparation,
response, and recovery from disasters is the ______. - answer Disaster Recovery
Planning Team (DRPT)
The team assigned to manage the business continuity plan, which involves relocating
operations to an alternate site post-disaster, is the ______. - answerBusiness Continuity
Planning Team (BCPT)
The collection of individuals from different areas within the organization who are
responsible for the crisis management plan is called the ______. - answerCrisis
Management Planning Team (CMPT)
The specific time before a disruption from which data must be recovered is known as
the ______. - answerRecovery Point Objective (RPO)
The maximum duration an organization can withstand a process outage is referred to as
the ______. - answerMaximum Tolerable Downtime (MTD)
The time required to restore business operations after the technological components
are back online is termed the ______. - answerWork Recovery Time (WRT)
The process by which the IR team examines an incident candidate and determines
whether it constitutes an actual incident. - answerIncident Classifcation
, These are the three categories of incident indicators. - answerPossible, Probable, and
Definite
The term for investigation of wrongdoing in the arena of information security. -
answerDigital Forensics
This type of planning encompasses preparation for handling and recovering from a
disaster, whether natural or human-made. - answerDisaster Recovery (DR)
This type of planning ensures that critical business functions continue if a catastrophic
incident or disaster occurs. - answerBusiness Continuity (BC)
A high-level manager that supports, promotes, and endorses the findings of a project. -
answerChampion
An adverse event that begins to manifest as a real threat to information. -
answerIncident
The work recovery time (WRT) is the amount of effort (expressed as elapsed time)
needed to make business functions work again after the technology element is
recovered.
True
False - answerTrue
The sworn testimony that certain facts are in the possession of an investigating officer
and that they warrant the examination of specific items located at a specific place is
called a(n) _____.
sworn warrant
writ of habeus corpus
search warrant
affidavit - answeraffidavit
A fundamental difference between a BIA and risk management is that risk management
focuses on identifying threats, vulnerabilities, and attacks to determine which controls
can protect information, while the BIA assumes _____.
All of the above
controls have been bypassed
controls have failed
controls have proven ineffective - answerAll of the above
An incident is an adverse event that could result in a loss of information assets and
threatens the viability of the entire organization.
(Week4)
An event that can negatively impact an organization's information assets or operations
is termed an ______. - answer Adverse Event
The process involving senior management's definition of actions in the face of potential
incidents, including preparation and remedial steps, is called ______. - answer
Contingency Planning (CP)
The team comprised of senior managers and members tasked with carrying out all
contingency planning activities is known as the ______. - answer Contingency Planning
Management Team (CPMT)
The group tasked with creating and administering the organization's protocol for
preparedness, reaction, and recuperation from incidents is the ______. - answer
Incident Response Planning Team (IRPT)
The team in charge of orchestrating the organization's strategy for preparation,
response, and recovery from disasters is the ______. - answer Disaster Recovery
Planning Team (DRPT)
The team assigned to manage the business continuity plan, which involves relocating
operations to an alternate site post-disaster, is the ______. - answerBusiness Continuity
Planning Team (BCPT)
The collection of individuals from different areas within the organization who are
responsible for the crisis management plan is called the ______. - answerCrisis
Management Planning Team (CMPT)
The specific time before a disruption from which data must be recovered is known as
the ______. - answerRecovery Point Objective (RPO)
The maximum duration an organization can withstand a process outage is referred to as
the ______. - answerMaximum Tolerable Downtime (MTD)
The time required to restore business operations after the technological components
are back online is termed the ______. - answerWork Recovery Time (WRT)
The process by which the IR team examines an incident candidate and determines
whether it constitutes an actual incident. - answerIncident Classifcation
, These are the three categories of incident indicators. - answerPossible, Probable, and
Definite
The term for investigation of wrongdoing in the arena of information security. -
answerDigital Forensics
This type of planning encompasses preparation for handling and recovering from a
disaster, whether natural or human-made. - answerDisaster Recovery (DR)
This type of planning ensures that critical business functions continue if a catastrophic
incident or disaster occurs. - answerBusiness Continuity (BC)
A high-level manager that supports, promotes, and endorses the findings of a project. -
answerChampion
An adverse event that begins to manifest as a real threat to information. -
answerIncident
The work recovery time (WRT) is the amount of effort (expressed as elapsed time)
needed to make business functions work again after the technology element is
recovered.
True
False - answerTrue
The sworn testimony that certain facts are in the possession of an investigating officer
and that they warrant the examination of specific items located at a specific place is
called a(n) _____.
sworn warrant
writ of habeus corpus
search warrant
affidavit - answeraffidavit
A fundamental difference between a BIA and risk management is that risk management
focuses on identifying threats, vulnerabilities, and attacks to determine which controls
can protect information, while the BIA assumes _____.
All of the above
controls have been bypassed
controls have failed
controls have proven ineffective - answerAll of the above
An incident is an adverse event that could result in a loss of information assets and
threatens the viability of the entire organization.