Question 1What does a security professional use to create guidelines and plans that educate employees about how they can help protect the organization? 1 pointSecurity postureSecurity auditSecurity frameworkSecurity hardening

Question 1What does a security professional use to create guidelines and plans that educate employees about how they can help protect the organization? 1 pointSecurity auditSecurity postureSecurity frameworkSecurity hardening2.Question 2Fill in the blank: A security professional uses _____ to verify that an employee has permission to access a resource.1 pointencryptionadmissionauthorizationintegrity3.Question 3What type of social engineering attack attempts to exploit biometrics?1 pointWhaling VishingSpear phishing Cryptographic attack4.Question 4You work as a security analyst for a supply chain organization and need to confirm all inventory data is correct, authentic, and reliable. Which core principle of the CIA triad are you using?1 pointCredibilityConfidentialityIntegrityAvailability

Question 3Fill in the blank: A security professional has been tasked with implementing safeguards to reduce suspicious activity on their company's network. They use _____ to help them reduce this type of risk.1 pointsecurity controlssecurity ethics private informationpublic websites

How do security frameworks enable security professionals to help mitigate risk?1 pointThey are used to create unique physical characteristics to verify a person’s identity. They are used to establish guidelines for building security plans.They are used to establish laws that reduce a specific security risk.They are used to refine elements of a core security model known as the CIA triad.2.Question 2Competitor organizations are the biggest threat to a company’s security.1 pointTrueFalse3.Question 3Fill in the blank: Security controls are safeguards designed to reduce _____ security risks. 1 pointgeneralbroadscalespecificpublic4.Question 4A security analyst works on a project designed to reduce the risk of vishing. They develop a plan to protect their organization from attackers who could exploit biometrics. Which type of security control does this scenario describe?1 pointClassificationEncryptionAuthenticationCiphertextCoursera Honor Code  Learn more

A security professional closely examines their organization’s network, then evaluates potential risks to the network. Their goal is to ensure internal safeguards and processes are effective. What security concept does this scenario describe?1 pointCompliance regulationsSecurity recommendationsControls assessmentCommunicating results

Question 1Fill in the blank: A security _____ is a set of guidelines used for building plans to help mitigate risk and threats to data and privacy.1 pointlifecycleregulationframeworkcontrol2.Question 2An organization requires its employees to complete a new data privacy training program each year to reduce the risk of a data breach. What is this training requirement an example of?1 pointPersonally identifiable information (PII)Security controlData confidentialityCybersecurity Framework (CSF)3.Question 3What is a foundational model that informs how organizations consider risk when setting up systems and security policies?1 pointCybersecurity Framework (CSF)General Data Protection Regulation law (GDPR)Sensitive personally identifiable information (SPII)Confidentiality, integrity, and availability (CIA) triad4.Question 4Security teams use the NIST Cybersecurity Framework (CSF) as a baseline to manage short and long-term risk.1 pointTrueFalse