D488 Cybersecurity Architecture and Engineering - Set 5 - Part 1

Correct Answer: To control incoming and outgoing network traffic

A firewall acts as a barrier between trusted and untrusted networks, regulating traffic to prevent unauthorized access.

Correct Answer: It adds an additional layer of security beyond just a password

MFA requires users to provide multiple forms of verification, significantly enhancing security against unauthorized access.

Correct Answer: It is faster than asymmetric encryption

Symmetric encryption uses the same key for both encryption and decryption, making it faster, but key management can be challenging.

Correct Answer: An attempt to acquire sensitive information by masquerading as a trustworthy entity

Phishing attacks often use deceptive emails or websites to trick users into providing confidential information.

Correct Answer: Distributed Denial of Service

A DDoS attack overwhelms a service with traffic from multiple sources, making it unavailable to legitimate users.

Correct Answer: To establish procedures for responding to cybersecurity incidents

An incident response plan outlines how to detect, respond to, and recover from security breaches effectively.

Correct Answer: Software designed to cause harm to computer systems

Malware encompasses various types of malicious software aimed at disrupting, damaging, or gaining unauthorized access to systems.

Correct Answer: It encrypts internet traffic to protect user privacy

A VPN creates a secure connection over the internet, encrypting data to safeguard against eavesdropping.

Correct Answer: To detect and respond to security incidents in real time

The SOC is responsible for continuously monitoring and analyzing security incidents to protect an organization’s information assets.

Correct Answer: Data encryption

Data encryption is a broad term that can refer to any encryption method, whereas symmetric and asymmetric are specific types.

Correct Answer: To evaluate security weaknesses in systems and networks

A vulnerability assessment identifies and prioritizes vulnerabilities for remediation to improve security posture.

Correct Answer: Manipulating individuals into divulging confidential information

Social engineering attacks rely on human psychology to deceive individuals into revealing sensitive information.

Correct Answer: Virtual Private Network

A VPN creates a secure, encrypted connection over a less secure network, such as the internet.

Correct Answer: An employee stealing sensitive data

Insider threats originate from individuals within an organization who exploit their access to harm the organization.

Correct Answer: To identify, assess, and prioritize risks to minimize impact

Risk management focuses on understanding risks and implementing measures to mitigate potential damage.

Correct Answer: A newly discovered vulnerability that has not been patched

Zero-day vulnerabilities are exploited by attackers before the software vendor has a chance to address them.

Correct Answer: Offering malware tools and services to other attackers

Malware-as-a-service allows cybercriminals to rent or buy malware tools, making it easier for less skilled attackers to execute attacks.

Correct Answer: To simulate attacks to identify vulnerabilities in systems

Penetration testers assess security by attempting to exploit vulnerabilities, helping organizations strengthen their defenses.

Correct Answer: To restrict access to sensitive information and resources

Access control systems determine who can access specific data and resources within an organization.

Correct Answer: Manipulating people into divulging confidential information

Social engineering exploits human psychology to gain unauthorized access to sensitive information.