Online 712-50 Questions Video

The consultant followed an employee into a restricted area without authorization, which is a classic example of tailgating.

Tailgating Attack:

Relies on exploiting social norms, such as holding the door open for someone.

Avoids the need for authentication.

Other Options:

Shoulder Surfing: Observing someone entering credentials.

Social Engineering: Broader term encompassing manipulation tactics.

Mantrap: A countermeasure to prevent tailgating.

Preventive Measures:

Implement anti-tailgating policies and physical controls like turnstiles or mantraps.

Physical Security Policies: Emphasizes training and technical controls to prevent tailgating.

EC-Council CISO References:

The Privacy Act governs the protection of personally identifiable information (PII) collected during investigations. It mandates safeguards to ensure PII is not misused or improperly disclosed. Regulations like Sarbanes-Oxley (C) focus on financial disclosures, PCI-DSS (D) on payment card data security, and ITIL (A) on IT service management, making them unrelated to user data protection in cyber investigations.

Stages of Identity and Access Management (IAM)

IAM systems ensure that the right individuals access the right resources at the right time. The three key stages are:

Provision: Creating, managing, and de-provisioning user accounts and roles to ensure access is appropriate.

Administration: Ongoing management of access rights, including updates to permissions and roles.

Enforcement: Ensuring policies are applied correctly, typically involving authentication and authorization mechanisms to verify users and grant access.

Explanation of Other Options

A. Authentication, Authorize, Validation:These terms relate to access control functions rather than the stages of an IAM system.

C. Administration, Validation, Protect:While administration is part of IAM, validation and protect are not recognized stages within IAM systems.

D. Provision, Administration, Authentication:While provision and administration are correct, authentication is part of enforcement rather than a distinct stage.

Alignment with EC-Council CISO Standards

The EC-Council CISO framework highlights the lifecycle approach to IAM, emphasizing the importance of provisioning (creating identities), administration (managing permissions), and enforcement (ensuring compliance with policies)​​​.

 Best Fit for a Security Baseline

ISO 27000 provides a robust framework for building an information security management system (ISMS), applicable to organizations of any size and industry.

PCI DSS is specifically tailored for organizations handling credit card transactions, ensuring secure payment processing and compliance.

 Why Not Other Options?

A. NIST and Privacy Regulations: NIST provides detailed controls but lacks a global focus and industry-specific guidelines like PCI DSS.

C. NIST and Data Breach Notification Laws: Data breach laws are reactive, not foundational for a security baseline.

D. ISO 27000 and Human Resources Best Practices: HR practices are not a direct fit for a security program baseline.

 EC-Council References

EC-Council emphasizes ISO 27000 for ISMS and PCI DSS for payment-related security in retail environments.