WGU C795- Cybersecurity Management II (Tactical), Questions and answers, 100% Accurate. Verified. (2024/2025 Exam UIPDATE. APPROVED)

WGU C795- Cybersecurity Management II (Tactical), Questions and answers, 100% Accurate. Verified. What is a vulnerability? a weakness in an information system What is a penetration test? a simulated cyber attack against your systems or company What are the typical steps for a vulnerability test? Identify asset classification list, identify vulnerabilities, test assets against vulnerabilities, and recommend solutions to either eliminate or mitigate vulnerabilities What is the first thing an organization should do before defining security requirements? define its risk appetite. What is defense in depth? adding relevant layer of controls (e.g., access control, encryption, and monitoring) What are COTS applications? Applications developed by vendors and installed on the organization's information systems What are SaaS applications? Applications developed by service providers or vendors and installed on the provider or vendor information system. What is the goal of a security test? Verify that a control is functioning properly. What is a security assessment? comprehensive reviews of the security of a system, application, or other tested environment What is the NIST SP 800-53A? describes best practices in conducting security and privacy assessments. What is COBIT? describes the common requirements that organizations should have in place surrounding their information systems. What does ISO 27001 describe? A standard approach for setting up an information security management system What does ISO 27002 describe? It details specifics of information security controls What does a vulnerability scan do? automatically probe systems, applications, and networks, looking for weaknesses that may be exploited by an attacker. What are the four main categories of vulnerability scans? Network discovery scans, network vulnerability scans, web application vulnerability scans, and database vulnerability scans What is NMAP? The most common tool used for network discovery scanning What does a network vulnerability scanner do? Probe a targeted system or network for the presence of known vulnerabilities. What is a false positive? The scanner may not have enough information to conclusively determine that a vulnerability exists and it reports a vulnerability when there really is no problem.