🔐
Cyber Security Medium

Cybersecurity for Students and Exam Preparation

A cybersecurity quiz for students and exam preparation — 15 medium-level questions on core security principles.

15 Questions
30s Per Question
0+ Plays
← All Cyber Security Quizzes 📚 Study Guide for this category →
💡 Create account to save scores & earn XP
📋 View All 15 Questions & Answers

1. What does 'risk' represent in cybersecurity, combining threat and vulnerability?

  • A. The potential for loss or damage when a threat exploits a vulnerability ✓
  • B. A guaranteed security breach
  • C. A type of encryption
  • D. A type of firewall rule

💡 'Risk' represents the potential for loss or damage that occurs when a threat successfully exploits a vulnerability.

2. What does 'vulnerability' refer to in cybersecurity?

  • A. A weakness that could be exploited by a threat to gain unauthorized access ✓
  • B. A type of encryption
  • C. A type of firewall rule
  • D. A type of antivirus software

💡 A 'vulnerability' is a weakness in a system that could potentially be exploited to gain unauthorized access.

3. What does 'least privilege' principle mean in cybersecurity?

  • A. Granting users only the access necessary to perform their job functions ✓
  • B. Granting all users full access to everything
  • C. A type of encryption
  • D. A type of firewall rule only

💡 The 'least privilege' principle grants users only the minimum access necessary to perform their specific job functions.

4. What is 'risk assessment' in cybersecurity?

  • A. The process of identifying and evaluating potential security risks ✓
  • B. Ignoring potential security risks
  • C. A type of encryption
  • D. A type of firewall rule

💡 Risk assessment is the systematic process of identifying, analyzing, and evaluating potential security risks.

5. What does 'confidentiality' ensure in the CIA triad?

  • A. Information is accessible only to those authorized to access it ✓
  • B. Information is always publicly available
  • C. Information is never deleted
  • D. Information is always encrypted regardless of need

💡 'Confidentiality' ensures that information is only accessible to those who are authorized to view it.

6. What is 'penetration testing'?

  • A. An authorized simulated cyberattack to evaluate a system's security ✓
  • B. An unauthorized attack on a system
  • C. A type of encryption
  • D. A type of firewall rule

💡 Penetration testing is an authorized, simulated cyberattack conducted to evaluate a system's real-world security.

7. What does 'availability' ensure in the CIA triad?

  • A. Authorized users can access information and resources when needed ✓
  • B. Information is never accessible
  • C. Information is always encrypted
  • D. Information is always deleted after use

💡 'Availability' ensures that authorized users can reliably access information and resources whenever they need them.

8. What is a 'threat' in cybersecurity terminology?

  • A. A potential danger that could exploit a vulnerability ✓
  • B. A type of encryption
  • C. A type of firewall rule
  • D. A type of antivirus software

💡 A 'threat' refers to any potential danger capable of exploiting a vulnerability to cause harm.

9. What is a 'security policy' in an organization?

  • A. A documented set of rules and practices governing how security is managed ✓
  • B. A type of encryption algorithm
  • C. A type of firewall hardware
  • D. A type of antivirus software

💡 A security policy is a documented set of rules and practices that govern how an organization manages its security.

10. What does 'CIA triad' stand for in cybersecurity?

  • A. Confidentiality, Integrity, and Availability ✓
  • B. Central Intelligence Agency
  • C. Computer Information Access
  • D. Cyber Intelligence Analysis

💡 The CIA triad stands for Confidentiality, Integrity, and Availability, three core principles of information security.

11. What does 'integrity' ensure in the CIA triad?

  • A. Data remains accurate and unaltered except by authorized actions ✓
  • B. Data is always publicly available
  • C. Data is always encrypted
  • D. Data is never backed up

💡 'Integrity' ensures that data remains accurate and is only altered through legitimate, authorized actions.

12. What does 'incident response' refer to in cybersecurity?

  • A. The organized approach to addressing and managing the aftermath of a security breach ✓
  • B. Ignoring security breaches
  • C. A type of encryption
  • D. A type of firewall rule

💡 Incident response is the organized approach used to identify, contain, and manage the aftermath of a security breach.

13. What does 'compliance' mean in a cybersecurity context?

  • A. Adhering to established laws, regulations, and standards related to security ✓
  • B. Ignoring security regulations
  • C. A type of encryption
  • D. A type of firewall rule

💡 'Compliance' refers to adhering to established laws, regulations, and industry standards related to security and privacy.

14. What is 'disaster recovery planning' in cybersecurity?

  • A. Preparing strategies to restore systems and data after a significant disruption ✓
  • B. Ignoring potential disruptions
  • C. A type of encryption
  • D. A type of firewall rule

💡 Disaster recovery planning prepares strategies and procedures for restoring systems and data after a significant disruption.

15. What is a 'security audit'?

  • A. A systematic evaluation of an organization's information system security ✓
  • B. A type of encryption
  • C. A type of firewall rule
  • D. A type of antivirus software

💡 A security audit is a systematic evaluation of an organization's overall information system security posture.

More Cyber Security Quizzes

View all Cyber Security quizzes →