Home
Blog
Hobbies
Movies
Recipes
Dogs
Videos
CCNA Security
Engineering
Forum
Submit
CCNA Security
Home
Chapters
Search
Security Fundamentals Quiz
Course Introduction
Question 1 of 12
The CIA triad in information security stands for:
Select the best answer:
Confidentiality, Integrity, Availability
Confidentiality, Identity, Authentication
Control, Integrity, Availability
Confidentiality, Integration, Authorization
Which CIA triad principle ensures information is only accessible to authorized parties?
Select the best answer:
Integrity
Availability
Confidentiality
Non-repudiation
The principle of least privilege states that:
Select the best answer:
Users should have all access rights by default
Users are granted only the minimum access required for their job function
Administrators should share a single privileged account
All network traffic is permitted unless explicitly denied
In security terminology, "risk" is formally defined as:
Select the best answer:
The probability that a threat will exploit a vulnerability to cause harm
The presence of a malicious actor on the network
A weakness in a system that can be exploited
A deployed countermeasure that reduces exposure
A "vulnerability" in security is best defined as:
Select the best answer:
A deliberate attack on a network
A weakness in a system or process that could be exploited
The likelihood of a system being attacked
A security control that reduces risk
The primary purpose of an organizational security policy is to:
Select the best answer:
Configure specific firewall rules and ACLs
Define rules and expectations for protecting organizational assets
Physically secure all network hardware
Monitor network traffic for intrusions in real time
"Defense in depth" is best described as:
Select the best answer:
Relying on a single, very powerful security control
Using multiple, layered security controls so that failure of one leaves others intact
Encrypting all data both at rest and in transit
Physically protecting all network infrastructure from unauthorized access
Non-repudiation in information security means:
Select the best answer:
A message cannot be modified while in transit
The sender cannot deny having sent a message
Data is always available when needed
Access is restricted to authorized users only
Which security model is based on the concept of "never trust, always verify"?
Select the best answer:
Defense in depth
Zero Trust
Role-based access control (RBAC)
Traditional perimeter security
The process of verifying the identity of a user or device is called:
Select the best answer:
Authorization
Accounting
Authentication
Access control
A security audit is conducted primarily to:
Select the best answer:
Patch software vulnerabilities immediately
Assess compliance with security policies and identify weaknesses
Train employees on phishing awareness
Configure network devices according to vendor best practices
A Security Operations Center (SOC) is primarily responsible for:
Select the best answer:
Writing and approving corporate security policies
Continuously monitoring networks and responding to security events
Procuring and budgeting for security hardware
Conducting penetration tests on client networks
Previous
Next
Submit Quiz