Consider a bank ATM that allows users to access bank account balances. What measures can the ATM incorporate to cover the principles of the CIA triad?

• By keeping software and firmware up-to-date is crucial to address any potential vulnerabilities.

Name three best practices that support the CIA triad.

• Confidentiality: Encryption, Integrity: Data Validation and Verification, and Availability: Redundancy and Disaster Recovery.

What are the three stages of the risk management lifecycle? What is each stage’s main goal or objective?

• Risk Identification: The main goal of this stage is to identify and document potential risks that may affect the project, organization, or system.
• Risk Assessment or Analysis: The goal is to prioritize risks based on their significance and develop an understanding of the potential consequences if they were to materialize.
• Risk Mitigation or Treatment: Develop and implement strategies to mitigate, control, or manage the impact of these risks.

Resources: https://resources.infosecinstitute.com/certifications/cissp/security-risk-management/

Chat GPT CompTIA SYBEX Security+ Study Guide