GSEC 401.2 Defense In Depth EXAM WITH QUESTIONS AND CORRECT VERIFIED ANSWERS
GRADED A+ GUARANTEED 100% PASS
Inbound Network Traffic - (answer)* Monitor Inbound network prevention
Outbound Network Traffic - (answer)* Monitor Outbound network detection
* Majority of problems are outbound
defense in depth - (answer)* Diversify to keep the vulnerabilities at a minimum
Risk (Formula) - (answer)Threat x Vulnerability (to that threat)
Three TOP 20 Lists (Outbound Traffic) - (answer)1) Number Connections
2) Length of Connections
3) Amount of Data
------------------------
(High false positives, but increase the accuracy of Vulnerabilities)
4a) Percent of Encrypted Traffic
4b) Destination IP Address
Risk Analysis Questions - (answer)* Before a company spends a dollar of it's money or a minute of its
time; answer the 3 questions
-------------
1) What is the *Risk*
2) Is it the *Highest Priority* risk
3) *Cost Effective* way of reducing the risk
Top 5 List of Threats - (answer)Critical Data and Process that support it
Likely Threats
Most likely Vulnerabilities
,GSEC 401.2 Defense In Depth EXAM WITH QUESTIONS AND CORRECT VERIFIED ANSWERS
GRADED A+ GUARANTEED 100% PASS
Questions for CEOs - (answer)What are the things that worry you most?
What could cause you to be removed from the board?
What keeps you up at night?
Reduce Risk - (answer)To reduce risk lets reduce Vulnerabilities
3 Goals of Security (CIA Triad) - (answer)1) Confidentiality / Disclosure
2) Integrity / Alteration
3) Availability / Destruction
Confidentiality vs Disclosure - (answer)Only shared among authorized persons or organisations
Integrity vs Alteration - (answer)Authentic an complete.
Sufficient and Accurate
Trustworthy and reliable
Availability vs Destruction - (answer)Accessible when needed by those who need it
Network Visibility Tree - (answer)* Breakdown by IP Address and Port
ex 10.0.0.X
/\
10.0.0.3 10.0.0.10
/|\/|\
23 110 5150 43 210 443
* Identify unnecessary use of ports
, GSEC 401.2 Defense In Depth EXAM WITH QUESTIONS AND CORRECT VERIFIED ANSWERS
GRADED A+ GUARANTEED 100% PASS
4 approaches to Defense In Depth - (answer)1) Uniform Protection
2) Protected Enclaves
3) Information Centric
4) Threat Vector Analysis
Uniform Protection - (answer)1) Most common approach to DiD
2) Firewall, VPN, Intrusion, Detection, Antivirus, Patching
3) All parts of the organization receive equal protection
4) Treats all the systems the same
Protected Enclaves - (answer)1) Work groups that require additional protection are segmented from the
rest of the internal organization
2) Restricting access to critical segments
3) Internal Firewalls
4) VLANs and ACLs
Information Centric - (answer)1) Identify critical assets and provide layered protection
2) Data is accessed by applications
3) Applications reside on hosts
4) Hosts operate on networks
Vector-Oriented - (answer)1) The threat requires a vector to cross the vulnerability
2) Stop the ability of th threat to use the vector:
a) USB Thumb drives - Disable USB
b) Auto Answer Modems - Digital Phone PBX
GRADED A+ GUARANTEED 100% PASS
Inbound Network Traffic - (answer)* Monitor Inbound network prevention
Outbound Network Traffic - (answer)* Monitor Outbound network detection
* Majority of problems are outbound
defense in depth - (answer)* Diversify to keep the vulnerabilities at a minimum
Risk (Formula) - (answer)Threat x Vulnerability (to that threat)
Three TOP 20 Lists (Outbound Traffic) - (answer)1) Number Connections
2) Length of Connections
3) Amount of Data
------------------------
(High false positives, but increase the accuracy of Vulnerabilities)
4a) Percent of Encrypted Traffic
4b) Destination IP Address
Risk Analysis Questions - (answer)* Before a company spends a dollar of it's money or a minute of its
time; answer the 3 questions
-------------
1) What is the *Risk*
2) Is it the *Highest Priority* risk
3) *Cost Effective* way of reducing the risk
Top 5 List of Threats - (answer)Critical Data and Process that support it
Likely Threats
Most likely Vulnerabilities
,GSEC 401.2 Defense In Depth EXAM WITH QUESTIONS AND CORRECT VERIFIED ANSWERS
GRADED A+ GUARANTEED 100% PASS
Questions for CEOs - (answer)What are the things that worry you most?
What could cause you to be removed from the board?
What keeps you up at night?
Reduce Risk - (answer)To reduce risk lets reduce Vulnerabilities
3 Goals of Security (CIA Triad) - (answer)1) Confidentiality / Disclosure
2) Integrity / Alteration
3) Availability / Destruction
Confidentiality vs Disclosure - (answer)Only shared among authorized persons or organisations
Integrity vs Alteration - (answer)Authentic an complete.
Sufficient and Accurate
Trustworthy and reliable
Availability vs Destruction - (answer)Accessible when needed by those who need it
Network Visibility Tree - (answer)* Breakdown by IP Address and Port
ex 10.0.0.X
/\
10.0.0.3 10.0.0.10
/|\/|\
23 110 5150 43 210 443
* Identify unnecessary use of ports
, GSEC 401.2 Defense In Depth EXAM WITH QUESTIONS AND CORRECT VERIFIED ANSWERS
GRADED A+ GUARANTEED 100% PASS
4 approaches to Defense In Depth - (answer)1) Uniform Protection
2) Protected Enclaves
3) Information Centric
4) Threat Vector Analysis
Uniform Protection - (answer)1) Most common approach to DiD
2) Firewall, VPN, Intrusion, Detection, Antivirus, Patching
3) All parts of the organization receive equal protection
4) Treats all the systems the same
Protected Enclaves - (answer)1) Work groups that require additional protection are segmented from the
rest of the internal organization
2) Restricting access to critical segments
3) Internal Firewalls
4) VLANs and ACLs
Information Centric - (answer)1) Identify critical assets and provide layered protection
2) Data is accessed by applications
3) Applications reside on hosts
4) Hosts operate on networks
Vector-Oriented - (answer)1) The threat requires a vector to cross the vulnerability
2) Stop the ability of th threat to use the vector:
a) USB Thumb drives - Disable USB
b) Auto Answer Modems - Digital Phone PBX
