Answer Posted / nimesh maru

This is answered with the CISSP perspective.
implement 1] Seperation of Duties : This will make sure that
one individual cannot complete a critical task by himself.
so we would have 2 ,3 or 4 people doing the 1 task.
Now if they want to do something malicious or unathorized
they all would have to come together to perform the task,
which detters the person from doing it. This act of all
people coming together to complete the task is also called
Collusion.

Further Seperation of duties shall be broken down in to
Split Know ledge and Dual Control.
Split Knowledge : No one person has complete knowledge of
performing one task or required information.
Dual control : here 2 or more individuals must be present
and active in participation to complete the task.

2]Job rotation : No One person should stay in one position
for long period of time as they would then have good
knowledge and would know inside out of entire process and
would be able to bypass or circumvent controls put in place
for the santity of the process and compliance.

What is slowloris?

918

---

Where do you get updates on security?

990

---

What are manageable and non manageable switches?

1012

---

What is the difference between ripv1 & ripv2?

936

---

explain how do we do authentication with message digest(md5)? (Usually md is used for finding tampering of data)

892

---

Difference between bit rate and baud rate.

1070

---

Explain what is difference between arp & rarp? How both of these protocols will work, and where it will use?

953

---

What is secure remote access?

1050

---

What is malware?

972

---

What is an arp?

1092

---

How does arp works?

1061

---

How does ransomware work?

1018

---

What is threat-focused ngfw?

908

---

How does dlp work?

1053

---

What is Cross Site Request Forgery and how to defend against it?

1002

---