Created 2 years ago
Students also viewed
Terms in this set (44)
What are the features of the Patch Management (PM) application
What are the steps for Patch Management as a response to vulnerability findings
What is asset management?
Step 1 in the VMDR lifecycle
What is vulnerability management?
Step 2 in the VMDR lifecycle
What is threat detection and prioritization?
Step 3 in the VMDR lifecycle
What is response (patch deployment?)
Step 4 in the VMDR lifecycle
What should you ask your business, IT, and security managers regarding cyberhygine?
1. Do we know what assets we have and what is connected to our systems and networks?
2. Do we know what's running (or trying to run) on our systems and networks?
3. Are we limiting and managing the number of people with administrative privileges to change, bypass, or override the security settings on our systems and networks?
4. Do we have in place continuous processes backed by security technologies that would allow us to prevent most breaches, rapidly detect all that do succeed, and minimize damage to our business and our customers?
5. Can we demonstrate that we have an effective monitoring strategy in place to our Board, our shareholders, and customers today?
2. Do we know what's running (or trying to run) on our systems and networks?
3. Are we limiting and managing the number of people with administrative privileges to change, bypass, or override the security settings on our systems and networks?
4. Do we have in place continuous processes backed by security technologies that would allow us to prevent most breaches, rapidly detect all that do succeed, and minimize damage to our business and our customers?
5. Can we demonstrate that we have an effective monitoring strategy in place to our Board, our shareholders, and customers today?
What are the major steps to take in "Inventory and Control Enterprise Assets?"
1. Establish and Maintain Detailed Enterprise Asset Inventory
2. Address Unauthorized Assets
2. Address Unauthorized Assets
What are the major steps to take in "Inventory and Control Software Assets?"
1. Establish and Maintain a Software Inventory
2. Ensure Authorized Software Is Currently Supported
3. Address Unauthorized Software
2. Ensure Authorized Software Is Currently Supported
3. Address Unauthorized Software
What are the major steps to take in "Protect Data?"
1. Establish and Maintain a Data Management Process
2. Establish and Maintain a Data Inventory
3. Configure Data Access Control Lists
4. Enforce Data Retention
5. Securely Dispose of Data
6. Encrypt Data on End-User Devices
2. Establish and Maintain a Data Inventory
3. Configure Data Access Control Lists
4. Enforce Data Retention
5. Securely Dispose of Data
6. Encrypt Data on End-User Devices
What should be addressed during Establish and Maintain a Data Management Process?
1. What type of data does the university process or store?
2. Where is the data processed or stored?
3. Who has access to each type of data?
2. Where is the data processed or stored?
3. Who has access to each type of data?
What is CIA?
Confidentiality, Integrity, and Availability
What are the steps for secure configuration and baseline image?
1. Determine the risk classification of the data handled or stored on the asset.
2. Create a security configuration script that sets system security settings to meet the requirements to protect the data used on the asset.
3. Install the base operating system software.
4. Apply appropriate operating system and security patches.
5. Install appropriate application software packages, tools, and utilities.
6. Apply appropriate updates to operating systems.
Install local customization scripts to this image.
7. Run the security script created earlier to set the appropriate security level.
8. Run a Security Content Automation Protocol (SCAP) compliant tool to record and score the system setting of the baseline image.
9. Perform a security quality assurance test.
10. Save this base image in a secure location.
2. Create a security configuration script that sets system security settings to meet the requirements to protect the data used on the asset.
3. Install the base operating system software.
4. Apply appropriate operating system and security patches.
5. Install appropriate application software packages, tools, and utilities.
6. Apply appropriate updates to operating systems.
Install local customization scripts to this image.
7. Run the security script created earlier to set the appropriate security level.
8. Run a Security Content Automation Protocol (SCAP) compliant tool to record and score the system setting of the baseline image.
9. Perform a security quality assurance test.
10. Save this base image in a secure location.
What are the Safeguards?
1. Establish and Maintain a Secure Configuration Process
2.Establish and Maintain a Secure Configuration Process for Network Infrastructure
3. Configure Automatic Session Locking on Enterprise Assets
4. Implement and Manage a Firewall on Servers
5. Implement and Manage a Firewall on End-User Devices:
6. Securely Manage Enterprise Assets and Software:
7. Manage Default Accounts on Enterprise Assets and Software:
2.Establish and Maintain a Secure Configuration Process for Network Infrastructure
3. Configure Automatic Session Locking on Enterprise Assets
4. Implement and Manage a Firewall on Servers
5. Implement and Manage a Firewall on End-User Devices:
6. Securely Manage Enterprise Assets and Software:
7. Manage Default Accounts on Enterprise Assets and Software:
What are Remote Scanners?
internet-facing and ideal for scanning internet-facing assets around the globe.