Quiz Module 5 Module #5 What does not Cyber Resilience Mean? A - The ability of a company to enhance business acceleration (enterprise resiliency) through the prevention of cyber threats is known as cyber resilience. B - The ability of a company to enhance business acceleration (enterprise resiliency) through the mitigation of cyber threats is known as cyber resilience. C - The ability of a company to enhance business acceleration (enterprise resiliency) through the ignoring of cyber threats is known as cyber resilience. D - The ability of a company to enhance business acceleration (enterprise resiliency) through the recovery of cyber threats is known as cyber resilience. Which of the given premises of Cyber Resilience is not true? A - The concept refers to the ability to carry on achieving targets in the face of challenging cyber events such as cyberattacks, natural disasters, or economic crises B - An organization's cyber resilience is its capacity to defend itself against, detect, respond to, and recover from cyberattacks. C - Cyber resiliency's main goal is to aid an organization to flourish in challenging situations (such as financial volatility, crisis, pandemic, etc.). D - A cyber-resilient company cannot improve its competitive advantage by maximizing the value it generates for its clients and operating efficiently and effectively. Why cyber resilience is important? A - Mitigating financial loss B - Decreasing customer trust and business C - Increasing competitive advantage and maintaining business continuity D - Keeping customer data safe Which are the followings are the benefits of cyber resilience?I.Reduce financial losses; II.Meet legal and regulatory requirements; III.Improve your security culture and internal processes; and IV.Protect your brand and reputation. A - I and II B - II and IV C - I, III and IV D - All of them What does operational security consist?I.Patch and update management II.Vulnerability monitoring III.Fraud prevention IV.Cyber intelligence A - I and II B - II and IV C - I, III and IV D - All of them How can not an organization achieve cyber resilience? A - Enhancing security B - Taking no notice for attacks C - Responding to attacks D - Recovering from attacks Who are in a business should be responsible for cybersecurity? A - Business owners. B - IT specialists C - Managers D - All staff members should know some cybersecurity basics to reduce the risk of cyber attacks. Which is not the types of cybersecurity?I.Network security II.Building Security III.Internet of Things (IoT) security IV.Application Security A - Only I B - II and IV C - I, III and IV D - All of them Which of the given promises is not true about the key difference between cybersecurity and cyber resilience? A - Cybersecurity is the capacity of a business to ward off and mitigate the growing threat posed by cybercrime B - They are exactly the same concepts C - Cyber resilience is the capacity to avert damage (to its systems, procedures, and reputation) and continue operations after data or systems are compromised. D - Cyber resilience means accepting the fact that no cybersecurity solution is perfect or can protect against all cyber threats Which is not belong to the top 5 cybersecurity threats to manage? A - Malware B - Phishing C - Insider threats D - Earthquake Which should not be in the cybersecurity checklist? A - User Education B - Application Security C - Building Trust D - Network Security Which of the given promises about cyber resilience and cyber security is not true? A - Cyber resilience and cyber security are only an issue for big companies. B - Businesses must develop resilience against a variety of calamities besides just pandemics. C - Cyber security is responding to cyber-attacks, whereas cyber resilience is more about anticipating potential attacks. D - Cyber security relates to technologies and procedures aimed to safeguard computer systems, networks, and data against cyber risks. «The practice of preventing digital attacks on programs, networks, and systems is known as cybersecurity.» A - True B - False A cyber resilience assessment supposes that an organization deploys its resources, what are these resources? People Data Technology Equipment A - I and II B - II and IV C - I, III and IV D - All of them A four-part method for cyber resilience is proposed by the common cyber resilience framework, which is not ? A - Manage and protect B - Identify and detect C - Ignore and Delete D - Develop risk treatment strategies E - Respond and recover Which of the following indicators can not be used to determine the organization's culture and leadership's adaptive capacity? A - Leadership B - Staff engagement C - Planning strategies D - Situation awareness The organization's ability to leverage internal and external relationships when needed; isnot identified by the indicators listed below? A - Effective partnerships B - Stress testing plans C - Leveraging knowledge D - Breaking silos «Plans, policies, and procedures for cybersecurity are evaluated on a regular basis to guarantee that cybersecurity programs are effective and prepared for use in the event of an attack.» A - True B - False An improved comprehension of an organization's cybersecurity posture is provided by a cyber resilience review. The evaluation does not offer A - Enhanced awareness of the need for efficient cybersecurity management across the entire organization B - A look at the capabilities that are most crucial to ensuring the continuity of essential services in times of crisis C - A proof of managerial problems and failure D -A driver of conversation between participants from various organizational functional areas A checklist can be used to prepare a cyber-resilience assessment, which of the following should be in it ?I.Identify dangers and Examine your network for vulnerabilities and threats II.Find out about possible cyberattacks III.Examine the organization's current attack response IV.Secure current networks, software, and systems. A - Only I B - II, III and IV C - I, III and IV D - All of them Ready to send GO BACK to module #5
