Cybersecurity Knowledge Test - ITS Joint Stock Company

Cyber security test

1. What is cybersecurity?

A) Protecting computers and networks from cyber attacks such as hacking, malware or phishing.

B) Programming games and applications on the computer.

C) Data centre and hardware management in IT companies.

D) The process of weather monitoring using digital technologies.

2. What does the term "zero trust" mean?

A) A strategy that allows all users within an organization to be automatically granted access.

B) Network protocol to secure data transfer between servers.

C) A security model that assumes that no one can be trusted and requires authentication for every access, regardless of whether the user is inside or outside the network.

D) Software to remove malicious code from computers and mobile devices.

3. What is meant by privileged access rights?

A) Access to all devices and applications without restrictions.

B) Limited rights to read data on the network.

C) Special permissions to manage and configure critical systems and data.

D) Automatic access permissions for all employees.

4. What is the difference between authentication and authorization?

A) Authentication confirms identity, authorization determines access permissions.

B) Authentication is password only, authorization is biometrics only.

C) Authorization is the process of identifying a user, authentication checking his data.

D) Authentication and authorization are two names for the same thing.

5. What is meant by "secure authentication"?

A) Using weak passwords that can be easily changed.

B) The process of verifying identity using multiple layers of security.

C) Access to the system without entering a password.

D) Use only one-time passwords.

6. What does the term "capacity management" mean?

A) Storing old data on backup servers.

B) Resource and performance planning in IT systems.

C) Discarding obsolete hardware and deleting old data.

D) Measuring the speed of the Internet in the network.

7. What does the term "redundancy" mean in IT?

A) Excess system components that can be removed.

B) Provision of backup components or systems in case of failure.

C) The process of automatically deleting unnecessary data and moving it to a redundant medium.

D) Strategies for increasing data transfer speeds.

8. What is a firewall and what are its main functions in protecting the network?

A) Humidity monitoring device in server rooms.

B) Software or hardware that blocks unauthorized access to the network.

C) An antivirus program that protects files from malware.

D) Automatic data backup system.

9. What is meant by vulnerability?

A) The ability of the system to withstand all types of cyber attacks.

B) Software that protects your computer from malicious programs.

C) A weakness in the system that can be exploited for an attack.

D) Data recovery process after a cyber attack.

10. What does the term security incident mean?

A) An event that does not compromise system operation or data.

B) A successful attempt to breach the security of the system.

C) Automatic update of security protocols.

D) A successful or unsuccessful attempt to breach the security of the system.

11. What is ransomware?

A) Automatic data backup program.

B) A firewall that protects the system from malware.

C) Malicious software that encrypts data and demands a ransom to unlock it.

D) Security application used to manage passwords.

12. What is IPS and IDS?

A) Data backup and recovery systems.

B) IPS monitors traffic, IDS protects against physical access.

C) IPS and IDS provide detection and prevention of cyber attacks.

D) User access management tools.

13. What are the measures to prevent data leakage?

A) Data encryption, access restrictions and regular security audits.

B) Increasing server performance and regular hardware updates.

C) Install an antivirus and firewall.

D) Automatic data storage on local disks.

14. What are logos for?

A) To monitor, record and analyse activity on the system.

B) To automatically correct errors in network communication.

C) To regularly back up data to external storage.

D) To directly prevent cyber attacks in real time.

15. What is a SOC (Security Operations Center)?

A) IT department responsible for data backup and system recovery.

B) A central department for monitoring, detecting and responding to security threats in the organization.

C) Software used to block phishing attacks.

D) Central security management system.

16. What does the term "penetration test" mean?

A) High load server performance test.

B) Antivirus software update process.

C) Simulated attack on the system to identify its weaknesses.

D) Access control to the server room using biometric data.

17. What is the difference between a proactive and reactive security strategy?

A) A proactive strategy involves responding to incidents; a reactive strategy involves prevention.

B) Proactive strategy focuses on threat prevention, reactive on dealing with incidents that have already occurred.

C) Both strategies focus exclusively on the prevention of security incidents.

D) The reactive strategy is used only for server maintenance.

18. What is multi-factor authentication (MFA)?

A) Use only a strong password to access the system.

B) Automatically log into the system from a trusted device.

C) Forgotten password recovery process.

D) Verification of the user's identity using multiple methods, such as passwords and biometrics.

19. Why should the latest software versions be installed?

A) Installation is not required if the system is functional and updates do not introduce new features.

B) Because older versions are automatically deleted by the manufacturer.

C) To fix known vulnerabilities and improve system functionality.

D) To allow users to use legacy security protocols.

20. What is "data masking"?

A) Permanent removal of all data from the database.

B) The process of replacing sensitive data with non-real values to protect it.

C) Encryption of data during transmission over the network.

D) Automatic updating of databases of sensitive information.

21. Does the obligation to carry out electrical inspections also apply to IT equipment in the server room?

A) Revisions are only required for servers, not accessories.

B) No, IT equipment is exempt from revisions if it is used by a professional.

C) Yes, all equipment connected to the electricity grid is subject to mandatory inspections.

D) Only if the devices are older than 5 years.

22. What is the main goal of Distributed Denial of Service (DDoS) attacks?

A) Cause server overload and make its services unavailable to legitimate users.

B) Blocking software updates on the target device.

C) Installing malware on the target server.

D) Gaining access to sensitive data on the server.

23. What is the optimum temperature and humidity in the server room?

A) Temperature 10-15 °C and humidity 20-30 %.

B) Temperature 18-27 °C and humidity 40-60 %.

C) Temperature 20-22 °C and humidity 50-60 %.

D) Temperature 25-35 °C and humidity 10-20 %.

24. How often should UPS be reviewed and inspected?

A) No checks are required if the system is working smoothly.

B) Only during a power failure.

C) Every 5 years during regular server room maintenance.

D) At least once a year, including battery testing.

25. What is the difference between SSL and TLS in the context of communication encryption?

A) SSL is an obsolete protocol and TLS is a newer and more secure version

B) SSL is only for email encryption, while TLS only encrypts web communications.

C) TLS is for VPN connections, SSL for data encryption in cloud systems.

D) SSL and TLS are two names for the same protocol

26. What is "sandboxing" in cybersecurity?

A) Set system rights for users on the corporate network.

B) Testing new applications in a real-life environment before deploying them into production.

C) Automatic removal of dangerous files from the computer without human intervention.

D) The process of isolating suspicious code or applications in a secure environment to prevent damage to the rest of the system.

Thank you for your participation in the knowledge quiz :-)! Wondering how you succeeded? Simply click on the button below to see the percentage score. But if you would like to know where your strengths are, where you answered poorly, what you still need to work on - leave us your contact details below. We will send you the results of the test by e-mail and will interpret them in detail during a short consultation (free of charge). If you are not interested in a consultation, we will at least let you know what you need to focus on.

Evaluating ...