Domain 5 Compliance and Operational security

Card Set Information

Author:
brittanychapman
ID:
306614
Filename:
Domain 5 Compliance and Operational security
Updated:
2015-08-20 11:34:56
Tags:
security
Folders:

Description:
compliance and operational securtiy
Show Answers:

Home > Flashcards > Print Preview

The flashcards below were created by user brittanychapman on FreezingBlue Flashcards. What would you like to do?


  1. Name the control categories.
    • Preventive
    • deterrent
    • detective
    • corrective
    • recovery
    • directive
    • compensating
  2. Explain Preventive Control.
    It means to stop unwanted or unauthorized activity.
  3. What control discourages a potential hacker.
    Deterrent
  4. What are two major risk analysis types?
    Quantitative and Qualitative
  5. What does Qualitative analysis do?
    Uses scenarios to identify risk and responses
  6. Explain Quantitative Analysis.
    Assigns real numbers
  7. What are the four cost benefit formulas?
    • Exposure factor EF
    • Single Loss Expectancy SLE
    • Annualized Rate of occurrence ARO
    • Annualized loss of expectancy ALE
  8. What is Exposure factor?
    % of loss experienced by a realized risk
  9. How do you find your SLE?
    Asset value X Exposure factor
  10. How do you find ALE?
    SLE X ARO
  11. What is ARO?
    annualized rate of occurence
  12. Name the types of evidence.
    • best
    • secondary
    • direct
    • conclusive
    • opinion
    • circumstantial
    • hearsay
    • Evidence life cycle
  13. How many steps are in a Incident Response?
    six
  14. Name the steps in a Incident Response
    • preparation
    • Identification
    • containment
    • eradication
    • recovery
    • follow up

What would you like to do?

Home > Flashcards > Print Preview