Aspects of Organizational Security - CORRECT ANSWER IT Security;
Physical Security;
Financial Security;
Legal Security;
IT Security - CORRECT
... [Show More] ANSWER Consists of:
Application security;
Computing security:
Data security:
Information security;
Network security;
Application Security [IT Security] - CORRECT ANSWER Applications should be secured to overcome security weaknesses, vulnerabilities, and threats. Any loopholes in Web-based and other custom applications serve as opportunities for attackers.
Computing Security [IT Security] - CORRECT ANSWER Computers should be secured from threats like viruses, Trojans, and intruders. organizations must have an effective security policy which involves security management, systems engineering, protection against insider threats, and general workplace policies, standards, guidelines, and procedures.
Data Security [IT Security] - CORRECT ANSWER important information about the organization. It is important to secure data to avoid any manipulation of data, data loss, or threats to data secrecy. Any change in the identity of data or any loss of data causes a huge amount of damage, financial loss, and loss of goodwill for the organization.
Information Security [IT Security] - CORRECT ANSWER Securing information protects information and information systems from illegal access, use, modification, or destruction. It ensures confidentiality, integrity, and availability of data.
Network Security [IT Security] - CORRECT ANSWER Networks are used to send important and private data from one system to another. Networks should be secured for safe transfer of data. Damage to the network makes the data transfer vulnerable and may crash the system.
Physical Security - CORRECT ANSWER Consists of:
Facilities security:
Human security:
Border security;
Biometric security;
Facilities Security [Physical Security] - CORRECT ANSWER Facilities and an organization's equipment should be properly and highly secured. Damage to facilities can cause physical harm such as a system crash or power failure.
Human Security [Physical Security] - CORRECT ANSWER The employees of an organization should be given security awareness training and be involved in the entire business security process in order to gain their trust and acceptance of the security policy. Ignoring human security concerns can cause employees to leave, leading to loss of business.
Financial Security - CORRECT ANSWER Consists of:
Security from frauds;
Phishing attacks;
Botnets;
Threats from cyber criminals;
Credit card fraud;
Security from fraud [Financial Security] - CORRECT ANSWER To function properly and negate losses, an organization must be financially secure from both internal and external threats. Security breaches may be caused by data manipulations, system vulnerabilities and threats, or data theft.
Legal Security - CORRECT ANSWER Consists of:
National security;
Public security;
Defamation;
Copyright information;
Sexual harassment;
National security [Legal Security] - CORRECT ANSWER National security is threatened if there are any governmental problems, improper management, economic slowdown, or other nationwide issues.
Public Security [Legal Security] - CORRECT ANSWER Public security is threatened if there are any internal riots, strikes, or clashes among the people of the country.
Forensic Readiness - CORRECT ANSWER involves an organization having specific incident response procedures in place, with designated trained personnel assigned to handle any investigation. It enables an organization to collect and preserve digital evidence in a quick and efficient manner with minimal investigation costs
First Responder: - CORRECT ANSWER Is responsible for protecting, integrating, and preserving the evidence obtained from the crime scene. The first responder must investigate the crime scene in a lawful matter so that any obtained evidence will be acceptable in a court of law
Computer Forensics or Forensic Computing: - CORRECT ANSWER Computer forensics is the application of investigation and analysis techniques to gather and preserve evidence from a particular computing device in a way that is suitable for presentation in a court of law.
Computer Forensics [goals] - CORRECT ANSWER The goal of computer forensics is to perform a structured investigation while maintaining a documented chain of evidence to find out exactly what happened on a computing device and who was responsible for it
Forensic Investigator: - CORRECT ANSWER an Investigator who helps organizations and law enforcement agencies in investigating and prosecuting cyber crimes. He is responsible for the acquisition, identification, preservation, documentation and the creation of an image back-up [bit by bit] of the evidence without affecting or changing same
Forensic Science: - CORRECT ANSWER It's the application of physical sciences to law in search for truth in civil, criminal, and social behavioral matters for the purpose of ensuring injustice shall not be done to any member of society
Network Forensics: - CORRECT ANSWER Network Forensics is the capturing, recording, and analysis of network events in order to discover the source, path and Intrusion techniques of security attacks
Chain of Custody: - CORRECT ANSWER A method for documenting the history and possession of a sample from the time of collection, though analysis and data reporting, to its final disposition
Bit Stream copy: - CORRECT ANSWER A bit by bit copy of the original storage medium and or evidence
Ext3: - CORRECT ANSWER Ext3 or third extended file system, is a journaled file system that is commonly used by the Linux kernel. It is the default file system for many popular Linux distributions
Logical block addressing [LBA]: - CORRECT ANSWER used for specifying the location of blocks of data stored on computer storage devices such as hard disks. LBA is a particularly simple linear addressing scheme, blocks are located by an integer index, with the first block being LBA 0, the second LBA 1, and so on in a sequential matter
Cluster: - CORRECT ANSWER Is the smallest logical unit on a hard drive
Lost Cluster: - CORRECT ANSWER The operating system assigns a unique number to each cluster and then keeps track of files according to which clusters they use. Occasionally, the operating system marks a cluster as being used even though it is not assigned to any file. This is called a lost cluster
Bad Cluster: - CORRECT ANSWER Is a sector on a computer's disk drive or flash memory that is either inacessible or unwriteable due to permanent damage, such as physical damage to the disk surface or failed flash memory transistors
Event Logs: - CORRECT ANSWER Windows event log is a record of a computer's alerts and notifications. Microsoft defines an event as "any significant occurrence in the OS or in a program that requires users to be notified or an entry added to a log."
Tracking user logon activity via Audit Event ID's: - CORRECT ANSWER 512 Start-up
513 Shutdown
528 Logon
531 Disabled Account
538 Logoff
Audit Policy Event ID's: - CORRECT ANSWER Event ID 4904: An attempt was made to register a security event source.
Event ID 4902: The Per-user audit policy table was created.
E-mail Protocols - CORRECT ANSWER POP3: Port 110;
SMTP: Port 25;
IMAP: Port 143
POP3: - CORRECT ANSWER A protocol for receiving e-mail by downloading it to your computer from a mailbox on the server of an Internet service provider
SMTP: - CORRECT ANSWER A protocol for sending e-mail messages between servers over the Internet use. The messages can then be retrieved with an e-mail client using either POP3 or IMAP. SMTP is also generally used to send messages from a mail client to a mail server.
Net Commands - CORRECT ANSWER Net Config;
Net file;
Net Use;
Net View;
Net Name;
Net start;
Net sessions;
Net Config: - CORRECT ANSWER Use the net config command to show information about the configuration of the Server or Workstation service
Net File: - CORRECT ANSWER Displays the names of all open shared files on a server and the number of file locks, if any, on each file
Net Use: - CORRECT ANSWER The net use command is used to display information about shared resources on the network that you're currently connected to, as well as open sessions on other systems
Net View: - CORRECT ANSWER Net view is used to show a list of computers and network devices on the network [Show Less]