Game Preview

CBS700

  • Game Code: 4219822
  •  English    21     Public
    1st Chapter
  •   Study   Slideshow
  • What does CIA stand for in cybersecurity
    Confidentiality, Integrity, Availability
  •  5
  • Which ISO standard can an organization get CERTIFIED against?
    ISO 27001
  •  10
  • What is the correct definition of a "vulnerability"
    A flaw or weakness that could be exploited
  •  15
  • Which framework organizes cybersecurity around: Identify, Protect, Detect, Respond, Recover?
    NIST CSF
  •  15
  • PCI DSS applies to which organizations
    Any organization that stores, processes, or transmits cardholder data
  •  20
  • What language does ISO 27001 use, and what does it mean?
    "Shall" — mandatory requirements
  •  10
  • Which is a cybersecurity DILEMMA described in the chapter?
    User needs vs. security requirements
  •  15
  • Which organization publishes the ISO/IEC 27000 family of standards
    ISO and IEC jointly
  •  15
  • What is the definition of "availability" in the CIA Triad
    The system is accessible and usable upon demand by authorized entities
  •  10
  • What does NIST stand for
    National Institute of Standards and Technology
  •  15
  • Which body publishes COBIT
    ISACA
  •  15
  • The CIS Critical Security Controls are based on what
    Real-world attack data and proven defences
  •  20
  • What is "non-repudiation"
    Ensuring neither sender nor recipient can deny their involvement
  •  10
  • ISO 27002 uses which type of language?
    "Should" — advisory
  •  10
  • Which NIST CSF function involves identifying what assets you have and what risks exist?
    Identify
  •  5
  • What is the difference between a standard and a regulation?
    Standards are voluntary best practices; regulations are legally mandated
  •  15
    • Your experience on this site will be improved by allowing cookies.