Quiz: Identifying Systems and Associated Risks

Question 1

SOLUTION:

assess risks relevant to a given system

Question 2

Which of the following risks are relevant to this system description: Associate architects may occasionally download blueprints for secure facilities to their work laptops so that work may be completed while at home. The laptops are equipped with special software for viewing and modifying the blueprints although it is commercially available.

Corporate databases are deployed in the same vlan as all user systems which may allow unauthorized access to sensitive data

User systems are unencrypted which may lead to unauthorized individuals accessing sensitive data in the event a laptop is lost or stolen

Users may be able to transfer data from their laptops to cloud-based sharing services which may allow disgruntled employees to abscond with sensitive data

On premise wireless networks are unencrypted which may allow bad actors to eavesdrop on network traffic and uncover sensitive data

SOLUTION:

User systems are unencrypted which may lead to unauthorized individuals accessing sensitive data in the event a laptop is lost or stolen
Users may be able to transfer data from their laptops to cloud-based sharing services which may allow disgruntled employees to abscond with sensitive data