FedVTE Cyber Risk Management for Technicians Questions and Answers Graded A

Document Content and Description Below

FedVTE Cyber Risk Management for Technicians Questions and Answers Graded A The threat source is highly motivated and sufficiently capable and controls to prevent the vulnerability from being exer ... cised are ineffective. Which likelihood rating does this describe? A. High B. Medium C. Low D. None of the above ✔✔A. High Kismet is different from a normal network sniffer such as Wireshark or tcpdump because it separates and identifies different wireless networks in the area. A. True B. False ✔✔A. True Which step of a risk assessment uses the history of system attacks? A. Step 2: Threat Identification B. Step 3: Vulnerability Identification C. Step 4: Control Analysis D. Step 5: Likelihood Determination ✔✔A. Step 2: Threat Identification Open Source Security (OSSEC) is what? A. A host based security system that monitors for changes B. A network based security system that sends alert messages C. An email based security system that scans emails for vulnerabilities. D. None of the above ✔✔A. A host based security system that monitors for changes Which of the following families of controls belongs to the technical class of controls? A. Physical and Environmental Protection B. System and Information Integrity C. System and Services Acquisition D. Identification and Authentication ✔✔D. Identification and Authentication Which of the following describes NetScan Tools Pro? A. A network debugging and exploration tool B. A powerful command line packet analyzer C. A tool that provides advanced network trace routing D. A collection of Internet information gathering and network troubleshooting utilities ✔✔D. A collection of Internet information gathering and network troubleshooting utilities In NIST SP 800 53 the security control structure consists of all the following components except for: A. Priority and baseline allocation B. Supplemental guidance C. Control enhancements D. All of these are in the security control structure ✔✔D. All of these are in the security control structure Which OCTAVE process involves collecting information about important assets and security requirements and threats and current organizational strengths and vulnerabilities from managers of selected operational areas? A. Identify Operational Area Knowledge B. Create Threat Profiles C. Identify Senior Management Knowledge D. Identify Staff Knowledge ✔✔A. Identify Operational Area Knowledge NIST SP 800 30 defines risk as a function of the lik [Show More]

Last updated: 2 years ago

Preview 1 out of 17 pages

Buy Now

Instant download

We Accept: