Explain why it is important to know the current state of the security system at all times.
What will be an ideal response?
One of the best ways to stay on top of change is knowing the current state of the security system at all times. That knowledge is gained through a series of regularly scheduled network security evaluations, formal exercises that verify designs, configurations, and operations. Hands-on penetration tests and ethical hacks can also be done to test the network resiliency against known attack vectors. In addition, a regular set of penetration tests can be used to certify the state of the network for both upper management and organizational stakeholders. The results of those tests would also be reported to the board of directors and shareholders.
You might also like to view...
Which of the following is one of the requirements for a system to receive a B1 security rating?
a. Discretionary access control b. Mandatory access control for all operations c. Hierarchical device labels d. Zero design flaws in the TCB
Which of the following terms describes the category of cloud computing in which a customer develops applications using development tools and infrastructure provided by the service provider?
A. Infrastructure as a service B. Software as a service C. Platform as a service D. Network as a service
A(n) ____ in Android is the mechanism that one app uses to signal another app that its cooperation is requested to accomplish something.
A. intent B. activity C. request D. synch
Which of the following is an SELinux OS security mechanism that enforces access rules based on privileges for interactions between processes, files, and users?
A. Mandatory Access Control B. SE Access Control C. Access Control D. Mandatory Control