Sec+ Day1 Security Concepts & Threat Types

Immediately shut down all network operations to prevent further damage.

Conduct a network traffic analysis to identify unusual patterns and isolate affected systems.

Inform all employees to change their passwords immediately.

Wait for the malware to reveal itself before taking any action.

Send a company-wide email warning about phishing.

Develop a comprehensive training program that includes simulated phishing exercises and regular updates on new phishing tactics.

Block all external emails to prevent phishing attempts.

Rely on antivirus software to catch phishing emails.

FTP, because it is widely used and easy to implement.

HTTP, because it is the standard protocol for web traffic.

HTTPS, because it provides encryption and secure identification of the network server.

Telnet, because it allows remote access to servers.

Focus only on external threats as they are more unpredictable.

Use a qualitative risk assessment method to prioritize risks based on their potential impact and likelihood.

Assess only the financial risks to the organization.

Rely on historical data to predict future risks.

A list of all employees and their contact information.

Detailed procedures for detection, containment, eradication, recovery, and lessons learned.

A single point of contact for all incidents.

A focus on preventing incidents rather than responding to them.

By installing the latest antivirus software.

By implementing strict access control measures and conducting regular employee training on recognizing social engineering attempts.

By monitoring all employee communications.

By focusing on physical security measures.

ISO/IEC 27001, because it provides a comprehensive set of controls for information security management.

COBIT, because it focuses on IT governance.

ITIL, because it is widely used for IT service management.

PRINCE2, because it is a project management methodology.