Network security exam 1 flashcards ch1
Flavia is reading about insider threats. Which of the following is NOT true about insider threats?
Insider threats are usually dismissed as not being a serious risk
Which of the following is false about the CompTIA Security+ certification?
Professionals who hold the security+ certification earn about the same or slightly less than security professionals who have not achieved this certification
Vittoria is working on her computer information systems degree at a local college and has started researching information security positions. Because she has no prior experience, which of the following positions would Vittoria most likely be offered?
Security Technician
Ginevra is explaining to her roommate the relationship between security and convenience. Which statement most accurately indicates this relationship
Security and convenience are inversely proportional
What is another name for "attack surface"?
Threat Vector
Which tool is most commonly associated with nation-state actors?
advanced persistent threat or APT
Which of the following AAA elements is applied immediately after a user has logged into a computer with their username and password?
authorization
Serafina is studying to take the Security+ certification exam. Which of the following of the CIA elements ensures that only authorized parties can view protected information?
confidentiality
Which specific type of control is intended to mitigate (lessen) damage caused by an attack?
corrective control
Which of the following controls is NOT implemented before an attack occurs?
detective control
Which control is designed to ensure that a particular outcome is achieved by providing incentives?
directive control
Which of the following is not considered an attribute of threat actors?
educated/uneducated
Which of the following is NOT a message-based attack surface?
network protocols
Gia has been asked to enhance the security awareness training workshop for new hires. Which category of security control would Gia be using?
operational
Which of the following groups have the lowest level of technical knowledge for carrying out cyberattacks
unskilled attackers
Complete this definition of information security: That which protects the integrity, confidentiality, and availability of information _____.
through products, people, and procedures on the devices that store, manipulate, and transmit the information
Which of the following is NOT true about supply chains?
vendors are the first step in the supply chain
Ilaria is explaining to her parents why information security is the preferred term when talking about security in the enterprise. Which of the following would Ilaria NOT say?
Cybersecurity is a subset of information security
what is the primary motivation of hacktivists?
Disruption/Chaos
