Data Security and Protection Knowledge Check ( Practice Quiz )
Q1) A student's grades should be visible to that student when she logs in to her university account. Her ability to see her grades is an example of which aspect of the CIA Triad ?
- Availability
Q2) A university has implemented practices that ensures all student data is encrypted while stored on university servers. Which aspect of the CIA Triad does this practice support ?
- Confidentiality
Q3) The Student Portal of a university issues a confirmation code with a hash value each time a student submits an assignment using the portal. This is an example of which aspect of the CIA Triad ?
- Integrity
Q4) True or False. An organization has "air gapped" its small network of critical data servers so they are accessible internally but not to any external system. These systems are now safe from a deliberate attack.
- False
Q5) C-level executives face 4 challenges when assuring their organizations maintain a comprehensive, workable data security solution. The proliferation of smartphones used for work would impact which two (2) of these concerns the most ? (Select 2)
- Explosive data growth
- New privacy regulations
Q6) True or False. An organization is subject to both GDPR and PCI-DSS data security regulations and has dedicated all of its efforts in remaining in compliance with these 2 sets of regulations. They are correct in believing that their data is safe.
- False
Q7) True or False. A newly hired CISO made the right choice when he moved the Known Vulnerabilities list to a high priority for his team to resolve even though none of these had ever been exploited on the company's network to-date.
- True
Q8) All industries have their own unique data security challenges. Which of these industries has a particular concern with HIPAA compliance and the highest cost per breached record ?
- Healthcare
Q9) All industries have their own unique data security challenges. Which of these industries has a particular concern with being targeted more than any other by cybercriminals "because that is where the money is" ?
- Financial
Q10) Which three (3) of these are among the top 12 capabilities that a good data security and protection solution should provide ? (Select 3)
- Data discovery
- Data risk analysis
- Blocking, masking and quarantining
Q11) Parsing discovered data against known patterns or key words is a process known as what ?
- Data classification
Q12) Which data protection process takes data activity monitoring output and uses it to generate insights about threats ?
- Active analytics
Q13) True or False. The Guardium administrator needs to be someone with the highest level of access to the data being protected ?
- False
- iOS
- Android
- iOS
- True
- Antivirus software can "see" the apps that are running on a mobile device but cannot see the data that is associated with each app.
- System based
- Android
- iOS
- Android
- False
- Antivirus software can "see" the apps that are running on a mobile device but cannot see the data that is associated with each app.
- App based
- Availability
- Confidentiality
- Integrity
- True
- New privacy regulations
- False
- Failure to move beyond compliance
- Failure to address known vulnerabilities
- Failure to prioritize and leverage data activity monitoring
- Transportation
- Data and file monitoring
- Data classification
- Encryption
- Vulnerability assessment
- Tokenization
- Similar security capabilities can be applied to different sort of data repositories
*****************************************************************************************************
Cyber Threat Intelligence
0 Comments