Premium Essay

Cyber Security Fundamentals

In: Computers and Technology

Submitted By hithisisthis
Words 1164
Pages 5
|Name: |

UTD MIDTERM EXAM

MIS 6311-501 Cyber Security Fundamentals

*** PLEASE READ AND FOLLOW INSTRUCTIONS CAREFULLY ***

ANSWER A TOTAL OF 20 QUESTIONS BELOW.

THIS MIDTERM EXAM HAS BEEN ADJUSTED TO COVER 20% OF THE GRADE.

THE FINAL WILL COVER 30%.

• This is open book. You may use any source as long as you cite the source.

• You may use the materials from the class, Internet, or other sources.

• Cite your source in simple format – (e.g. “http://...”, “Class slides”, etc.)

• Please write your answers directly inline inside this word document.

*** IMPORTANT NOTE ON EXAM INTEGRITY ***

Please do not share this exam with other students. Your choice to preserve the integrity of this exam helps ensure others get the opportunity to have the same testing experience.

This Midterm Exam Covers the Following Topics:

• Building the Security Program

• Access Control

• Network Security

• GRC

About the Midterm Exam:

The purpose of this exam is to give you real life questions and business problems encountered every day during the professional application of information security and risk management to world-class organizations.

The learning process does not stop after the lectures. Given the foundational base of the course information, I encourage you to spend the next few hours pulling this information together as you answer these questions.

Your achievable and realistic objective in this course is to learn enough to remember some details, and look the rest up. This is how I exercise my job every day, and why I feel this exam is the most appropriate means for testing your knowledge. Good luck!

What to do if you

Similar Documents

Premium Essay

Cybersecurity

...Me and cyber security I strongly believe that cyber security will be my profession. The reasons to say cyber security will be my profession are: First, I have a good experience of reading. Second, I am incredibly interested in cyber security profession. However, my friends believe that cyber security is going to be difficult for me. Even though my associates frustrated me that cyber security is challenging, my reading practice and interest in cyber security empowered me to attend cyber security program. I have ability of reading various reading materials that encouraged me to go for cyber security program. When I was in Jimma University, I was both student and assistant lecturer. Due to that, I used to read a lot of materials to teach my students. For example books, journals, newspapers and video lectures. In addition to that, I was also reading different resources to score good grade on my own courses. Some of these materials are textbooks of physiology, anatomy and biochemistry, online materials and different researches. To sum up, I used to read day and night to cover both my students’ and my own courses. So, my reading skill will contributes a lot to successfully accomplish cyber security program. Also, I attracted by cyber security profession. The first reason that makes me interested in cyber security discipline is its high demand. Nowadays the uses of Internet and cyber crime are growing in parallel. As a result, our world is in high demand of qualified cyber...

Words: 520 - Pages: 3

Premium Essay

What Is Your Name in Vietnam

...Information and Cyber-Security Questionnaire 2014: v9.2 2014-2015 STT Information Systems Analysis and Design Business Systems Analysis Systems & Information Systems Copyright © Peter Bednar. 2014 peter.bednar@port.ac.uk STT: Inf. And Cyber-Security Q 2014-15 Page 2/5 Information and Cyber Security Questionnaire All answers in questionnaires are to be kept anonymous. Department (e.g. section): Grade (e.g. category of work): Information and Cyber Security Questionnaire - Part 1 Planning 1. What information assets are critical to your work? 2. What kinds of risks could they be exposed to? 3. What legal and compliance requirements is your work and organization subject to? 4. How could you continue to do your job if your information requirements could not be fulfilled with your IT support? 5. How can you manage risks and threats to your information assets on an ongoing basis? Implementing 6. Have you put in place the right security controls to protect your equipment, information, IT system and external (or outsourced) services? 7. Do you and your co-workers know what your responsibilities related to IS and Cyber Security are? 8. Do you and your co-workers know what good IS and Cyber Security practices are? 9. If there is a IS Security threat or Cyber-attack, or something goes wrong with related to your Information Assets – how will you deal with it and get back to normal practices again? ...

Words: 331 - Pages: 2

Premium Essay

Cyber Security

...INTRODUCTION: This research report conducts analysis on security. Technology these days is going up very fast and technology has been changed the route business administered by giving online services to their customers, to secure data in to “cloud” and allowing them to get their data from smart phones and tablets. This process of securing data has given many benefits to small and large business alike. But where the benefits are there will be some risk present. Risk will be like lost of data or to protect data by any attack of security. According to a survey which took place in 2012 about security, the graph of crimes and security attacks is gradually going up every year. As we talk about security it’s a very huge field to do research on it. Security has many different units in a field. One can’t do a research on this topic. The topic I am going to discuss in my research is cyber security. Cyber security these days is important everywhere. Where ever the data is, we need cyber security to protect and maintain our data according to our requirements Cyber crime is far reaching, general and continually joined with different parts of the criminal natural gathering. It runs from the thievery of a specific's character to the complete interruption of a nation's Internet compromise in light of a huge trap against its masterminding and taking care of assets. The definite focus of cybercrime divisions is on information-the information which is stored electronically for resulting and...

Words: 1426 - Pages: 6

Premium Essay

Executivememo

...responsible for safeguarding such information from modification, unauthorized access, disclosure and destruction. This Policy provides a minimum level of security requirements that will provide the confidentiality, integrity and availability of Maryland IT asset, when implemented. For this reason a comprehensive Information Security standard and system ought to be implemented so that there can be suitable management of security across all the present functions and to provide the required security and guarantees with the regards to information requirements. This would include aspects of confidentiality, integrity, and availability which are crucial aspect of any security standard. A comprehensive review of the Information Security implementation within the State of Maryland will make it possible to establish how this has been impacted by the set forth security standards in addition to changes introduced by legislative developments and processes. In essence, this will deliver the outcome of a comprehensive cyber security profile with respect to MD. Recently there have been several legislative adjustments introduced as a result specifically to the changing nature of Information Security inside the political environment with the administration accepting that vital national infrastructure be sustained by the most suitable security...

Words: 634 - Pages: 3

Free Essay

Cybersecurity and Cyberwar

...Cyberwar: What the world needs to know After everything that has been happening in the world, from the 9/11 takedown of the twin towers, to the shooting in Paris almost a month ago, the world has been drawn to attention to the extent of surveillance and cyber-espionage practiced by the US government, not only in relation to suspected terrorists but also in relation to the ordinary citizen. After reading Cybersecurity and Cyberwar, I feel like it comes at an interesting time in the history of security services world-wide, when the extent of inter-connectivity of every agency, corporation and individual makes cyber-surveillance easier to put into effect. The authors are experts in their field: Peter Singer is Senior Fellow and Director of the Center for 21st Century Security and Intelligence at the Brookings Institution, a former coordinator of Obama's defence policy task-force during the 2008 campaign and author of three other books on aspects of warfare. Allan Friedman is also a well-known expert in the field of information security and cyber-security, formerly Research Director for the Center for Technology Innovation at the Brookings Institution, and currently Visiting Scholar at George Washington University's Cyber Security Policy Research Institute. In other words, this is an authoritative text. In Cybersecurity and Cyberwar, Singer and Friedman attempt to fill this worrisome knowledge gap. The book is divided into three sections: “How it All Works,” “Why it Matters...

Words: 1488 - Pages: 6

Premium Essay

Cyber Security in Business

...Case Study 1: Cyber Security in Business Organizations Abstract This paper examines the importance of cyber security in business organizations and discovering better methods to combat cyber terrorism in the future. Data breaches in the work place have become an increased threat to personal privacy as well as to the economic livelihood of many organizations. In this paper we will further examine how a simple data breach almost brought the retail giant Target to the brink of destruction and provide detailed accounts of other recent data security breaches that have effected other business organizations and discuss what could be done to prevent them. Cyber Security in Business Organizations Modern global industries rely heavily on the data that they acquire to stay relevant in order to compete in a constantly moving world of technology. Protecting present and future data from potential cyber theft has become a vital need to the economic livelihood of today’s organizations. In today’s business world, organizations must prepare themselves for not only increased vulnerability attacks from exterior threats of cyber terrorist seeking to gain access to a company’s private data and resources but also have to take in account and be mindful of the interior threat of disgruntled employees whose mission is to expose or sale company sensitive or secret data for their own profitable gain. In today’s era of computing, cyber security can be described and defined in several ways...

Words: 1143 - Pages: 5

Premium Essay

Secuirty Term Paper

...Cyber Security Project Marci James Liberty University BMIS 520 DR. Delano May 29, 2016 Scope The world of technology is advancing ever year and people are just trying to stay up to date, but there are those in the world that make it there life to stay up on technology but in all the wrong ways. The people that are just every day users of technology do not see the people in the background hoping to gain access to their private information. As technology advances so must the ways people protect their private information; even in places that they think are new and untouchable to the normal person. Even the most technology educated person can fall victim to cyber-attacks and lose of personal data. As technology advances the world of computer security will also change; the word computer is not just referring to a desktop computer that sits a desk but now refers to your tablet, smart phone, and even smart watch. The way that personal data is saved is not just limited to a floppy disc or even a CD-ROM anymore, but now a day there is clouds that will have personal data stored from all over the world sometimes in one location. The discussion in the review below will give more detail on what is coming for technology and as well as how technology is being used against people to receive their personal data. Literature Review Technology is estimated to move even more rapidly within the next twenty years and this all new growth starts this year; with this happening it means that...

Words: 1825 - Pages: 8

Premium Essay

Wgu Est1 Task 2

...FOR IMMEDIATE RELEASE (222 E VAN BUREN AVE SUITE 615) R3ST Healthcare Cyber Compliance Solutions announces they are making the HIPAA compliance process easier, faster and less expensive for healthcare providers. A fundamental requirement of the HIPAA Security Rule #69 involves conducting an annual HIPAA Security Risk Assessment. R3ST Healthcare Cyber Compliance Solutions has made risk assessment and Cyber Security Compliance easier and less complicated for their clients. Whether a client needs assistance with mobile security solutions, application and data security or another task, this company can be of help. "Technology advances at a rapid pace, thus healthcare providers must continually review the HIPAA requirements to ensure they remain in compliance. Furthermore, as more providers implement new tools, such as applications for mobile devices, they need to ensure these tools aren't in violation of any regulations. Compliance remains of concern to many in healthcare, thus they now turn to third party providers to ensure they don't unintentionally violate one or more of these regulations. R3ST is here to help healthcare providers in this situation," Tareq Allan, spokesperson for R3ST Healthcare Cyber Compliance Solutions, announces....

Words: 604 - Pages: 3

Free Essay

Trends of Cybercrimes

...one's voice. Digital equipment that were unheard of just five years ago now inundates both professional and personal arenas. As a result, organizations, as well as their employees, have begun to feel the pressure placed on them to address current and potential threats to the security of their systems and clients (CloudTweaks, 2013). Cybercriminals can retrieve and analyze information gained through technological access from a single business or entity and use such confidential data to give competitive advantages to other organizations, to satisfy the requests of influential individuals, or to benefit national security. The World Wide Web permits immediate and boundless communication and the ability to interface on a global level, which can have its downfalls just as much as its benefits. Unapproved access to, and abuse of, information, technology and fundamental systems can irreparably damage a person or organization’s character, financial status, sense of stability and, in specific instances, physical well-being. Cyber attacks are becoming more frequent, more complex and more effective as hackers develop new ways to reach a greater number of victims. Due to the anonymous nature of crimes related to cyber attacks, every person, organization and nation are potential victims. It is unavoidable. What would we be able to do to secure ourselves? What can...

Words: 1962 - Pages: 8

Premium Essay

Response Profile

...RESPONSE PROFILE Table of Contents INTRODUCTION 3 PROFILE 3 CYBER ATTACKS 4 REDUCING THE IMPACTS OF CYBER THREATS 6 COUNTER MEASURES TO THREATS 8 LAW 10 INTERNATIONAL SCOPE 11 CONCLUSION 12 References 13 INTRODUCTION With the rapid growth of technology in the past few decades have brought forward major aspects that actually helped the mankind in many ways. The birth of technology is a prolific boon to the mankind. Technology has made our world a better and safe place bringing forward unknown facts and also helping with many new ways to take up unidentified, difficult tasks at ease and complete it within seconds (Alston, 1987). Technology has totally changed the whole scenario of our world, starting from business to science every field; every sector has been boosted with the rapid change in technology in the past few decades. The era of this technology can be termed as the technological revolution that has potentially brought forward major prospects for the mankind. But, this evolution of this technology has also brought forward major drawbacks and curse. In one word we understand technology means computers, cell phones, Information technology (IT) etc. All along with this one major thing that technology has brought along with it is cyber crime and cyber-attacks. These cyber attacks are very dangerous in terms of information technology. These cyber-attacks cause huge damages which cannot be described in words. These damages are so prolific and potentially...

Words: 4844 - Pages: 20

Free Essay

Change Managment

...Cyber Terrorism Mahesh kanneboina Wilmington University Abstract The Internet is the global connection of interconnected computer networks where information can be shared among users around the world. But these days the Internet is not secure as the fundamental mechanics of the Internet are well known to many people and leading to long-standing security issues caused by the bad people who could build a “cyber nuke” to take down the network. This paper discusses about the cyber terrorism where a hacker or terrorist attacks the confidential websites of the nation and gets the important information for their activities. This cyber terrorism came into light after the 9/11 attack on WTC and from then the media focused its attention on Cyber security that has reflected public policy concerns worldwide about this topic. Security of Internet and BGP The Internet is where every network is able to reach every other network. According to industry analysts, there are 794 million people online world-wide and it is expected to be more in the coming years. This represents a lot of data interchange. But many small businesses, and even large organizations, do not know how to protect their sensitive data, thus making it easy for criminals. Online Security is a growing concern for governments around the world. Border Gateway Protocol (BGP) is the protocol which makes core routing decisions on the Internet, but unfortunately, BGP is not secure because some network administrator...

Words: 2007 - Pages: 9

Free Essay

Cyber Ethics

...Cyber Ethics CSEC 620 As one of the most uncertain and muddled aspects of any organization or company, Cyber Ethics are undoubtedly one of the most important in today’s technological age. Every organization or company operates with a Code of Conduct for its employees. This Code of Conduct outlines the “dos and don’ts” for an organization in hopes for “ethical” and “moral” operation of business. A typical code of conduct will outline an Acceptable Use policy, Internet Use policy, Security policy, and acceptable conduct policy for its employees that is supposed to be required reading. Like with any law, in cyber security there are always law-breakers waiting for the chance to exploit a weak firewall, a patch in the system, or a careless employee who leaves login information open for the wrong eyes to see. For this reason government and private sector alike must constantly update security measures and do thorough investigations of employees upon hiring. The internet is so large and open that it is a serious security threat for individual corporations and especially government agencies. The US government defends against countless internet attacks every day and because of the vast connections between private companies and government it is both the responsibility of private and public sector to insure everyone’s safety. Developing a widespread Code of Ethics in regards to Cyber Security is an increasingly difficult task. New advances in technology make it difficult to...

Words: 2222 - Pages: 9

Free Essay

Cybercrime

...of fear with this type of network being a risk to our national security. While most of us find the internet to be a great tool of information, and unlimited capabilities, it can devastate us personally and financially. The internet can increase the risk of theft, fraud and even the possibility to suffer from a cyber-attack or even worse a cyber-terrorism, leaving our country at risk especially for those who work in the government defense agencies and private corporations. In 2003, the conflict with Iraq created a round of speculations that the United States was going to experience cyber-attacks in revenge (Clarke). But, since 1995 there haven’t been any reports of cyber-attacks that would produce panic or damage to U.S. infrastructure or that affects our military operations. By any means this is not a result of idleness by terrorist groups. Between 1996 and the end of 2001 there was 1,813 international terrorist attacks performed. To mention a few that involved citizen targets, there is the Khobar Tower Bombing in June 1996, the Embassy Bombing in East Africa in August 1998, and the USS Cole attack in October 2000. Between 1996 and 2003, to compare between terrorist attacks around 1,813, computer security incidents around 217,394 and cyber-attacks on infrastructure which they were 0, reporters have noted that the cyber terror on infrastructure are an unlikely threat to the security of the United States. In 2005, Cyber-attacks cost were $48 billion to businesses and $680 million...

Words: 2224 - Pages: 9

Premium Essay

Information Security Policy in Malaysia.

...Information security means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction. The terms information security, computer security and information assurance are frequently used interchangeably. These fields are interrelated and share the common goals of protecting the confidentiality, integrity and availability of information; however, there are some subtle differences between them. These differences lie primarily in the approach to the subject, the methodologies used, and the areas of concentration. Information security is concerned with the confidentiality, integrity and availability of data regardless of the form the data may take: electronic, print, or other forms. Governments, military, financial institutions, hospitals, and private businesses amass a great deal of confidential information about their employees, customers, products, research, and financial status. Most of this information is now collected, processed and stored on electronic computers and transmitted across networks to other computers. Should confidential information about a businesses customers or finances or new product line fall into the hands of a competitor, such a breach of security could lead to lost business, law suits or even bankruptcy of the business. Protecting confidential information is a business requirement, and in many cases also an ethical and legal requirement. For the individual, information security has a significant...

Words: 6195 - Pages: 25

Free Essay

Cyber Law

...09898839289 EMAIL-ID: nupuragarwal201995@yahoo.com CO-AUTHOR’S NAME: NUPUR JOSHI AFFILIATION: UNITED WORLD , SCHOOL OF LAW MAILING ADDRESS: 67, SWAGAT CITY , GANDHINAGAR – MEHSANA ROAD ADALAJ GANDHINAGAR PHONE NO: 9408968686 EMAIL-ID: nupurjoshi184@gmail.com TITLE OF THE PAPER: CYBER SPACE MASS SURVEILLANCE PROGRAMS,INFRINGEMENT OF PRIVACY OF INDIVIDUALS, BY STATE IN THE NAME OF NATIONAL SECURITY. ABSTRACT: In this present era of cyber revolution and globalization, citizens have turned into “Netizens”. The advancements in the field of technology is also accompanied with the development of various methods of surveillance and intervention by the State into individuals’ private information. Governments are keeping an eagle eye by monitoring individual's movements, businesses transactions and also the means of communication, which includes cyberspace. It is alleged that the United States of America’s National Security Agency runs a program known as PRISM, which enables the US government to gain access to e- mails , conversations, pictures, voice calls and even sign in details of people using websites and applications associated with 1|Page Facebook, Yahoo, Microsoft, to name a few. Failure of cyber law mechanisms and national authorities to advance legislation and frameworks along with the technological developments and the increasing trends on States’ surveillance practices has created an environment in which citizen’s right to privacy is easily violated, leading to human...

Words: 6245 - Pages: 25