NSVT TEST 1 UPDATED ACTUAL Questions and CORRECT Answers, Exams of Medicine

NSVT TEST 1 UPDATED ACTUAL Questions and CORRECT Answers

Typology: Exams

2025/2026

Available from 02/21/2026

timothy-watuka
timothy-watuka šŸ‡ŗšŸ‡ø

10K documents

1 / 5

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
NSVT TEST
1 UPDATED ACTUAL Questions and CORRECT Answers
Terms in this set (112)
Enclave A computer environment connected by one or more internal networks under the
control of a single authority and security policy.
Network
Environment(NE)
The
network
backbone
of
an
enclave
responsible
for
connecting
systems.
Computing
Environment(CE)
LAN,
Servers,
Hosts,
the
OS,
Peripherals,
and
applications
1.
Approved Military Training
Foundational
knowledge
can
be
obtained
in
these
four
ways.
2.
Academic
Degrees
3.
Commercial CyberSecurity Certs
4...
Entry/ Apprentice 0-3 years
Intermediate/journeyman 4-6 years
Expert/Master
7+
Years
ISSM Advises their AO of any changes to the cybersecurity posture, cost benefits, and
risks of the security programs.
Biggest threat Your own system administrators.
Threat Object, Person, or entry that is a danger to an information system.
Enviro nment al
Threats
Natural disasters,
and
other
natural threats.
Vulnerabilities Weakness that can be exploited in an information system or its components.
Risks Likelihood that a vulnerability can or will be exploited.
Residual Risk Amount of risk left over after risk response.
Mission
assurance
Category(CAT 1)
Systems
deemed
VITAL
Mission
assurance
Category(CAT 2)
Systems
deemed
IMPORTANT
Mission
assurance
Category(CAT 3)
Systems
deemed
NECESSARY
DISA SEVERITY CODE (CAT 1) Causes total loss of sys info -IMMEDIATE
DISA SEVERITY CODE (CAT 2) Very likely to provide intruder access - 90 DAYS
DISA SEVERITY CODE (CAT 3) Potential system compromise - 180 DAYS
pf3
pf4
pf5

Partial preview of the text

Download NSVT TEST 1 UPDATED ACTUAL Questions and CORRECT Answers and more Exams Medicine in PDF only on Docsity!

NSVT TEST 1 UPDATED ACTUAL Questions and CORRECT Answers

Terms in this set (112)

Enclave A computer environment connected by one or more internal networks under the control of a single authority and security policy. Network Environment(NE) The network backbone of an enclave responsible for connecting systems. Computing Environment(CE) LAN, Servers, Hosts, the OS, Peripherals, and applications

  1. Approved Military Training Foundational knowledge can be obtained in these four ways.
  2. Academic Degrees
  3. Commercial CyberSecurity Certs 4... Entry/ Apprentice 0 - 3 years Intermediate/journeyman 4 - 6 years Expert/Master 7+ Years ISSM Advises their AO of any changes to the cybersecurity posture, cost benefits, and risks of the security programs. Biggest threat Your own system administrators. Threat Object, Person, or entry that is a danger to an information system. Environmental Threats Natural disasters, and other natural threats. Vulnerabilities Weakness that can be exploited in an information system or its components. Risks Likelihood that a vulnerability can or will be exploited. Residual Risk Amount of risk left over after risk response. Mission assurance Category(CAT 1) Systems deemed VITAL Mission assurance Category(CAT 2) Systems deemed IMPORTANT Mission assurance Category(CAT 3) Systems deemed NECESSARY DISA SEVERITY CODE (CAT 1) Causes total loss of sys info - IMMEDIATE DISA SEVERITY CODE (CAT 2) Very likely to provide intruder access - 90 DAYS DISA SEVERITY CODE (CAT 3) Potential system compromise - 180 DAYS

DISA SEVERITY CODE (CAT 4) NOTES - 1 YEAR

Information assurance vuln. alerts(IAVA) High Priority and alerts Information assurance vulnerabilities Bulletins (IAVB) Bulletins and medium priority Information assurance vulnerabilities T(IAVT NOTES Vulnerabilities remediation Asset Manager(VRAM) A web-based network vulnerability data repository and continuous monitoring visual analysis tool. Virus Self replicating, can corrupt or delete data, and requires user action. WORM Self propagating and does not require user action. TROJAN Disguised as legitimate software, does not replicate, and requires interaction with hacker. LOGIC BOMB Piece of code designed to execute when conditions are met. SPYWARE Collects user info without knowledge. ADWARE Displays advertisements based upon its spying on you. SPLLAGE Leak of higher classified material. Malicious Code Software designed to damage a system or cause unwanted behaviors. Dictionary attack Fastest method for generating hashes. Brute Force The most powerful cracking method

  1. Data Leaks/spillage Threats associated with embarkables.
  2. Malware from untrusted networks SPAM Unsolicited Electronic...?(NOTES) Statement of Actions To be taken before during and after a disaster or emergency.
  3. Mitigate security risks in a cost-effective manner Goals of Risk management
  4. enable timely and effective mission accomplishment ATO(Authorization to operate) 3 Years IATO(Interim Authority to operate) 6 Months IATT(Interim Authority to test) Limited time

Path Ping Same as traceroute but the windows equivalent

  1. Initial Casualty reports
  2. Updates
  3. Corrects
  4. Cancel Remediation Fixing Alleviation Temporary Fix CHMOD change permission modifiers /var/log Linux log file location Downgrading Occurs as specified by the original classification authority (OCA) Confidential Unauthorized release could cause DAMAGE to national security. SECRET SERIOUS DAMAGE TOP SECRET EXCEPTIONAL GRAVE DAMAGE UNCLASSIFIED Info that can be released officially to the public. FOUO Official govt info SF-706(TS) Orange SF-707(S) RED SF-708(C) BLUE SF-709(CLASSIFIED LEVEL) PURPLE SF-710(U) GREEN Refraction Bending or curving of wavelength when it meets a medium. Reflection Wavelength direction is reversed 180 degrees when it meets a medium. EMCON Encompasses opsec(Operations security) and OPDEC(operations Deception) STIG Viewer Application that allows admins, security techs and network certifiers ability to use benchmarks. PG 151 Scan then upload then investigate then patch the reboot the scan again!

SCCVI Cannot push patches(IAVA) NVD(National vulnerability database) Government repository of standards-based vulnerability management data uses scap. DCS(Defense Courier Service) Only authorized shipment point for doc that have the highest classification. ACAS COMPONENT NESSUS SECURITY CENTER Centralized console that provides admins with a series of monitors and dashboards which show results of compliance scans, ACAS COMPONENT #2 NESSUS PRO SCANNER Provides active vulnerability scanning active scanner examines data at rest on scanned assets. BLUE ICON NOTIFICATIONS - Indicates that there are unread notifications Nessus IAVA scan Tracks patch compliance NESSUS STIG Scan Scan verifies system baseline NESSUS Discovery Scan Scan does a sweep to see which IP addresses are active on the net Attribute Set Used to fill in fields like unit name, region, and AOR SITE SCAN UPLOAD METHOD #1 An operator manually uploads the vms export file generated by retina SITE SCAN UPLOAD METHOD #2 Files are automatically published to bram from ACAS SECURITYCENTER upon scan completion. #service nessusd status this CMD will reflect the RUN state of the service