WGU C727_Cybersecurity Management I - Strategic_ Latest Updates, Verified. Rated A+
WGU C727_Cybersecurity Management I - Strategic_ Latest Updates, Verified. Rated A+ Pillars of Cyber Security Confidentiality, Integrity, Availability, and Safety (Introduced to address issues related to Internet of Things (IoT)) How do you measure any cyber security effort's success? Success in cybersecurity will be the absence of impact on confidentiality, integrity, and availability of digital information no matter where it is (stationary/stored, traveling/transmitted, or processed). Identity Function The identify function is where you develop an understanding of what your risks are, what your assets are, and what your capabilities are. Protect Function Protect is your set of plans and actions that put in place the right controls (remember: controls do stuff) to protect the assets. Detect Function Detect is the set of plans and actions that you will use to identify, classify, etc., an attack against your assets. Respond Function Respond is the set of activities that you engage in response to an attack. Recover Function Recover refers to whatever plans or protocols you have in place to bring things back to normal after an attack. Deterrence Function Deterrence is not a question of education alone. It is also built on reducing what's called your attack surface. As part of the deter function you need to take a close look at your business. What do you do, who are your partners, what are the threats, and how have they changed over time? Preventive Controls Designed to prevent the attack from reaching the asset in the first place. Detective Controls Designed to identify that an attack is occurring, including what kind of an attack, where it came from, what it used, and, if you're lucky, who may be behind it. Corrective Controls Designed to minimize the damage from an attack. Examples include restoring from backup, patching the systems with the latest security fixes, upgrading to the latest version of applications and operating systems, and the like. Compensating Controls Designed to compensate for the failure or absence of other controls and mitigate the damage from an attack. Examples include having a hot failover site (a geographically separate site that mirrors your environment, available the instant you need it), isolating critical systems from the Internet (aka air-gapping), and, in general, backup and disaster recovery plans that can keep the lights on while everyone else is in the dark. Defense in Depth Putting multiple and diverse barriers (controls) between the attacker and the asset. Examples of Threat Agents Cybercriminals, Insiders (e.g., employees), Nation-States, Corporations, Hacktivists, Cyber-Fighters, Cyberterrorists, Script Kiddies. Key Trends Influencing Threat Agents Consumerization of cybercrime, Low barriers to entry for technical novices, Dark net mystique, Low rates of attributions. Attack Vector The path that the attacker takes to compromise your asset. Although most attack vectors are pointing inward (ingress) toward systems and assets, there are attacks that point outward (egress). Those outward attacks focus on ways to extract data and assets as opposed to gaining access and potentially damaging data. Attack Payload Think of this as a container (e.g., the outside of a bomb) that delivers the exploit (the explosives) that take advantage of one or more vulnerabilities exposing the target to the attacker. Advanced persistent threat (APT) An APT says what it does and does what it says—it's a coordinated, persistent, resilient, adaptive attack against a target. APTs are primarily used to steal data. They can take a long time to research, plan, coordinate, and execute, but when they succeed, they are frequently devastating. Brute Force Attack If there is any elegance in hacking a system, then this method lacks it. A brute force attack, much like a brute, doesn't use any brains, only force—in this case, computing force. So, if I wanted to guess your password with a brute force attack, I would use a very fast computer to try every single combination possible of the number—a task that can take a large amount of time or a startlingly brief amount, depending on the complexity of the password. Denial of Service (DoS) Attack DoS attacks come in two flavors: single-source and distributed. A single-source DoS attack occurs when one computer is used to drown another computer with so many requests that the targeted one can't function while a distributed DoS (DDoS) attack achieves the same result through many (meaning thousands or millions of) computers. Man-in-the-Middle Attack In this type of an attack, the hacker intercepts the communication between two systems, replacing it with his own, eventually leading to his gaining control of both systems.
Written for
- Institution
- Western Governors University
- Course
- WGU C727
Document information
- Uploaded on
- August 23, 2023
- Number of pages
- 63
- Written in
- 2023/2024
- Type
- Exam (elaborations)
- Contains
- Questions & answers
Subjects
-
wgu c727cybersecurity management i strategic l
Also available in package deal