How does business continuity enable an organization to maintain everyday productivity?

By establishing risk disaster recovery plans

By ensuring return on investment

By outlining faults to business policies

Fill in the blank: According to the concept of shared responsibility, employees can help lower risk to physical and virtual security by _____. Select two answers.

recognizing and reporting security concerns

limiting their communication with team members

Which of the following are steps of implementing security controls? Select three answers.

Assessing the effectiveness of current safeguards

Setting up multi-factor authentication

Regularly reviewing security information

Which of the following statements accurately describe risk? Select all that apply.

Organizations often rate risks at different levels: low, medium, and high.

If compromised, a medium-risk asset may cause some damage to an organization's finances.

Website content or published research data are examples of low-risk assets.

If compromised, a high-risk asset is unlikely to cause financial damage.

How do security frameworks enable security professionals to help mitigate risk?

They are used to establish guidelines for building security plans.

They are used to create unique physical characteristics to verify a person’s identity.

They are used to establish laws that reduce a specific security risk.

They are used to refine elements of a core security model known as the CIA triad.

What is the CIA triad?

A foundational security model used to set up security policies and systems

Ongoing validation processes involving all employees in an organization

A set of security controls used to update systems and networks

A mandatory security framework involving the selection of appropriate controls

What is the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF)?

Standards, guidelines, and best practices that organizations follow voluntarily in order to manage cybersecurity risk

A required business framework for ensuring security updates and repairs are successful

A set of security controls that help analysts determine what to do if a data breach occurs

A collection of security principles focused on maintaining confidentiality, integrity, and availability

What does a security analyst’s work involve during the CSF recover function?

Return affected systems back to normal operation

Pinpoint threats and improve monitoring capabilities

Contain, neutralize, and analyze security incidents

Protect an organization through the implementation of employee training

A security professional is asked to communicate the results of an internal security audit to stakeholders. What should be included in that communication? Select three answers.

A summary of the audit's scope and goals

A recommendation about how to improve the organization’s security posture

A list of risks and compliance requirements that need to be addressed

A list of questions for stakeholders to answer

What is the purpose of a security framework?

Build plans to help mitigate risks and threats to data and privacy

Develop procedures to help identify productivity goals

Establish policies to expand business relationships

Create security controls to protect marketing campaigns

Which of the following statements accurately describe the CSF? Select all that apply.

The protect function of the CSF involves implementing policies, procedures, training, and tools to mitigate threats.

Investigating an incident to determine how the threat occurred, what was affected, and where the attack originated is part of the respond function of the CSF.

The CSF is a voluntary framework that consists of standards, guidelines, and best practices to manage cybersecurity risk.

The detect function of the CSF involves making sure proper procedures are used to contain, neutralize, and analyze security incidents.

What are some of the primary objectives of an internal security audit? Select three answers.

Avoid fines due to a lack of compliance

Help security teams identify organizational risk

Develop a guiding security statement for the business

Fill in the blank: In an internal security audit, _____ refers to identifying people, assets, policies, procedures, and technologies that might impact an organization’s security posture.

completing a controls assessment

implementing administrative controls

What information is typically communicated to stakeholders after completion of an internal security audit? Select three answers.

Strategies for improving security posture

Compliance regulations to be adhered to

Comprehensive details about each part of the process

Cybersecurity модуль 2 квиз

Authored by Talgar JIggaz

Science

University

Used 4+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

76 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Fill in the blank: The _____ domain is focused on access and authorization to keep data secure by making sure that users follow established policies to control and manage assets.

asset security

identity and access management

communication and network security

security operations

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the focus of the security and risk management domain?

Optimize data security by ensuring effective processes are in place

Define security goals and objectives, risk mitigation, compliance, business continuity, and regulations

Manage and secure wireless communications

Secure physical networks and wireless communications

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

In which domain would a security professional conduct security control testing; collect and analyze data; and perform security audits to monitor for risks, threats, and vulnerabilities?

Identity and access management

Security assessment and testing

Communication and network engineering

Security architecture and engineering

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Fill in the blank: The _____ domain concerns conducting investigations and implementing preventive measures.

security operations

communications and networking engineering

software development security

asset security

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is a vulnerability?

Anything that can impact the confidentiality, integrity, or availability of an asset

A weakness that can be exploited by a threat

Any circumstance or event that can negatively impact assets

An organization’s ability to manage its defense of critical assets and data and react to change

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Fill in the blank: Information protected by regulations or laws is a _____. If it is compromised, there is likely to be a severe negative impact on an organization’s finances, operations, or reputation.

new-risk asset

low-risk asset

medium-risk asset

high-risk asset

MULTIPLE SELECT QUESTION

45 sec • 1 pt

What are the key impacts of threats, risks, and vulnerabilities? Select three answers.

Employee retention

Financial damage

Identity theft

Damage to reputation

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Popular Resources on Wayground

20 questions

Math Review

Quiz

•

3rd Grade

15 questions

Fast food

Quiz

•

7th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

19 questions

Classifying Quadrilaterals

Quiz

•

3rd Grade

20 questions

Figurative Language Review

Quiz

•

6th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

10 questions

Identify Fractions, Mixed Numbers & Improper Fractions

Quiz

•

3rd - 4th Grade

Discover more resources for Science

20 questions

Guess The App

Quiz

•

KG - Professional Dev...

11 questions

NFL Football logos

Quiz

•

KG - Professional Dev...

19 questions

Minecraft

Quiz

•

6th Grade - Professio...

40 questions

8th Grade Math Review

Quiz

•

8th Grade - University

20 questions

Block Buster Movies

Quiz

•

10th Grade - Professi...

10 questions

Would you rather...

Quiz

•

KG - University

40 questions

Flags of the World

Quiz

•

KG - Professional Dev...

14 questions

Superhero

Quiz

•

1st Grade - University

Cybersecurity модуль 2 квиз

Fill in the blank: The _____ domain is focused on access and authorization to keep data secure by making sure that users follow established policies to control and manage assets.

What is the focus of the security and risk management domain?

In which domain would a security professional conduct security control testing; collect and analyze data; and perform security audits to monitor for risks, threats, and vulnerabilities?

Fill in the blank: The _____ domain concerns conducting investigations and implementing preventive measures.

What is a vulnerability?

Fill in the blank: Information protected by regulations or laws is a _____. If it is compromised, there is likely to be a severe negative impact on an organization’s finances, operations, or reputation.

What are the key impacts of threats, risks, and vulnerabilities? Select three answers.

Fill in the blank: The steps in the Risk Management Framework (RMF) are prepare, _____, select, implement, assess, authorize, and monitor.

Fill in the blank: Security posture refers to an organization’s ability to react to change and manage its defense of _____ and critical assets.

Which of the following examples are key focus areas of the security and risk management domain? Select three answers.

Access all questions and much more by creating a free account

Popular Resources on Wayground

Discover more resources for Science