ACAS (Assured Compliance Assessment Solution) Questions with Answers
ACAS (Assured Compliance Assessment Solution) - cORRECT sOLUTION is a network-based security compliance and assessment capability designed to provide awareness of the security posture and network health of DoD networks SecurityCenter - cORRECT sOLUTION is the central console for the ACAS system tools and data ACAS components - cORRECT sOLUTION SecurityCenter Nessus- active scanner PVS (passive vulnerability scanner) - sniffs the network 3D tool/optional - port 443 ACAS components perform these main functions: - cORRECT sOLUTION - Discover assets - Detect vulnerabilities and data leaks - Conduct configuration and compliance audits - Publish findings to Continuous Monitoring and Risk Scoring (CMRS) Plug-in - cORRECT sOLUTION displays a list of script files used by Nessus/PVS scanners to collect and interpret vulnerability, compliance, and configuration data Things that can be scanned for security data - cORRECT sOLUTION servers, workstations, peripherals, Mobile device Management Servers, network servers PVS (Passive Vulnerability Scanner) - cORRECT sOLUTION watches and determines vulnerabilities based on network traffic, instead of actively scanning Compliance - cORRECT sOLUTION a state of being in accordance with established guidelines, specifications or legislation, or the process of becoming so CMRS ( Continuous Monitoring and Risk Scoring) - cORRECT sOLUTION a tool to provide DoD component - and enterprise-level situational awareness by quantitatively displaying an organization's security posture Task Order 13-670 - cORRECT sOLUTION Implementation of ACAS What is the 1st screen you see when you log in to SecurityCenter? - cORRECT sOLUTION Dashboard SecurityCenter Building Blocks - cORRECT sOLUTION -Organization -Role, Group, and User Definition -Scan Zone (and Nessus Scanners) -Repository -Plugin Organization - cORRECT sOLUTION groups of individuals responsible for a set of common assets Scan Zones - cORRECT sOLUTION a defined static range of IP addresses that can be scanned by one or more Nessus Scanners Repositories - cORRECT sOLUTION are proprietary data files, residing on the Security Center, that store scan results Passive scanning plugins Range - cORRECT sOLUTION 1-10,000 Active (Nessus) plugin Range - cORRECT sOLUTION 10,001-900,000 Custom plugins created by users Range - cORRECT sOLUTION 900,001-999,999
Written for
- Institution
- ACAS
- Course
- ACAS
Document information
- Uploaded on
- July 27, 2024
- Number of pages
- 9
- Written in
- 2023/2024
- Type
- Exam (elaborations)
- Contains
- Questions & answers
Subjects
-
acas assured compliance assessment solution
Also available in package deal
