Question 1

Users should be given access only to resources required to do their job.

Accepted Answer

This principle is known as the Principle of Least Privilege (PoLP), which states that users should only have access to the resources necessary for their roles to minimize potential security risks.

Question 2

Separation of Duties is considered a detective administrative control.

Accepted Answer

Separation of Duties is considered a preventative administrative control.

Question 3

All default administrator passwords on the devices should be left in place.

Accepted Answer

You should change all default administrator passwords on the devices.

Question 4

RAID 1 is also called disk striping.

Accepted Answer

RAID 0 is also called disk striping.

Question 5

HSM is a type of backup management system that provides a continuous online backup.

Accepted Answer

The answer of HSM is a type of backup management...

Question 6

Data purging uses a method such as degaussing to make the old data unavailable even with forensics.

Accepted Answer

Data purging involves permanently erasing or destroying data from storage devices in such a way that it cannot be recovered, even with advanced forensic techniques. Degaussing, which demagnetizes the magnetic medium, is one method used in data purging to ensure the data is completely inaccessible.

Question 7

MTBF describes the average amount of time it takes to get a device fixed and back online.

Accepted Answer

Mean Time Between Failure (MTBF), which describes how often a component fails on average

Question 8

The first step in the incident response process is respond.

Accepted Answer

The first step is to detect the incident.

Question 9

All changes should be formally requested.

Accepted Answer

In project management and many business contexts, formal change requests are necessary to ensure that all changes are documented, evaluated, and approved before implementation, maintaining project scope and integrity.

Question 10

Trusted Recoveries set a baseline for normal user errors, and violations exceeding that threshold will be recorded for analysis of why the violations occurred.

Accepted Answer

Clipping levels set a baseline for normal user errors, and violations exceeding that threshold will be recorded for analysis of why the violations occurred.

Question 11

Which principle is valuable in deterring fraud?&#10;A) Need to Know&#10;B) Least Privilege&#10;C) Separation of Duties&#10;D) DAC

Accepted Answer

The answer of Which principle is valuable in deterring fraud?&#10;A)...

Question 12

Which form of RAID requires at least three hard drives?&#10;A) RAID 0&#10;B) RAID 1&#10;C) RAID 3&#10;D) RAID 5

Accepted Answer

The answer of Which form of RAID requires at least...

Question 13

Which of the following is composed of high-capacity storage devices connected by a high-speed private network?&#10;A) NAS&#10;B) SAN&#10;C) HSM&#10;D) RPM

Accepted Answer

The answer of Which of the following is composed of...

Question 14

Which of the following describes how often a component fails on average?&#10;A) MTBF&#10;B) HSM&#10;C) MTTR&#10;D) NAS

Accepted Answer

The answer of Which of the following describes how often...

Question 15

What is the final step in the incident response process?&#10;A) Report&#10;B) Detect&#10;C) Respond&#10;D) Recover

Accepted Answer

The answer of What is the final step in the...

Question 16

Which of the following is NOT a part of system hardening?&#10;A) Unnecessary applications should be removed.&#10;B) All services should be enabled.&#10;C) Unrequired ports should be blocked.&#10;D) External storage devices and media should be tightly controlled.

Accepted Answer

The answer of Which of the following is NOT a...

Question 17

Which of the following protocols is recommended for remote management?&#10;A) Telnet&#10;B) SSH&#10;C) FTP&#10;D) ICMP

Accepted Answer

The answer of Which of the following protocols is recommended...

Question 18

At what temperature does damage start occurring to magnetic media?&#10;A) 80 degrees&#10;B) 85 degrees&#10;C) 90 degrees&#10;D) 100 degrees

Accepted Answer

The answer of At what temperature does damage start occurring...

Question 19

Which of the following is an agreement about the capability of the support system to respond to problems within a certain time frame?&#10;A) SLA&#10;B) MTBF&#10;C) RAID&#10;D) PCP

Accepted Answer

The answer of Which of the following is an agreement...

Deck 8: Operations Security