Course 3 – CONNECT AND PROTECT: NETWORKS AND NETWORK SECURITY

Module 4: Security Hardening

GOOGLE CYBERSECURITY PROFESSIONAL CERTIFICATE

Coursera Study Guide

Enroll in Coursera Google Cybersecurity Professional Certificate

TABLE OF CONTENT

INTRODUCTION – Security Hardening

In this comprehensive overview, participants will delve into the essential domain of network hardening practices, gaining proficiency in strategies that fortify and strengthen network systems against potential threats. The course is designed to familiarize learners with the intricacies of security hardening, elucidating how this proactive approach serves as a robust defense mechanism against the ever-evolving tactics employed by malicious actors and intrusion methods. Moreover, participants will explore the nuanced application of security hardening in addressing the distinctive security challenges posed by cloud infrastructures. By delving into real-world scenarios and practical case studies, this module ensures that learners not only comprehend theoretical concepts but also acquire actionable skills needed to implement effective security hardening measures. This comprehensive exploration serves as an invaluable resource for those aspiring to navigate the complex landscape of network security and safeguard digital infrastructures against potential vulnerabilities.

Learning Objectives

  • Describe OS hardening techniques
  • Describe network and cloud hardening techniques that target network vulnerabilities
  • Describe network hardening techniques
  • Explain cloud security practices

TEST YOUR KNOWLEDGE: OS HARDENING

1. Fill in the blank: The _____ acts as an intermediary between software applications and computer hardware.

  • baseline
  • operating system (CORRECT)
  • authorized user
  • access system

The operating system acts as an intermediary between software applications and computer hardware.

2. Which of the following activities are security hardening tasks? Select all that apply.

  • Exploiting an attack surface
  • Making patch updates (CORRECT)
  • Enforcing password policies (CORRECT)
  • Disposing of hardware and software properly (CORRECT)

Making patch updates, disposing of hardware and software properly, and enforcing password policies are security hardening tasks. Security hardening is the process of strengthening a system to reduce its vulnerability and attack surface.

3. Multifactor authentication (MFA) is a security measure that requires a user to verify their identity in at least two ways before they can access a system or network.

  • True (CORRECT)
  • False

MFA is a security measure that requires a user to verify their identity in at least two ways before they can access a system or network.

4. What are examples of physical security hardening? Select all that apply.

  • Installing security cameras (CORRECT)
  • Hiring security guards (CORRECT)
  • Removing or disabling unused applications
  • Reducing access permissions across devices

Physical security is also a part of security hardening and may include securing a physical space with security cameras and security guards.

5. Fill in the blank: ____ refers to all the potential vulnerabilities a threat actor could potentially exploit in a system.

  • Configuration testing
  • Security hardening
  • Penetration testing
  • Attack surface (CORRECT)

An attack surface is all the potential vulnerabilities a threat actor could potentially exploit in a system.

6. In network security, why is it important to secure operating systems (OS) on each device?

  • To prevent the whole network being compromised by one insecure OS (CORRECT)
  • To provide employees the latest programs and features
  • To identify all vulnerabilities present in systems, networks, websites, applications, and processes
  • To reduce human error across an organization

It’s important to secure the OS on each device because one insecure OS could lead to the whole network being compromised.

TEST YOUR KNOWLEDGE: NETWORK HARDENING

1. Fill in the blank: Security teams can use _____ to examine network logs and identify events of interest.

  • port filtering
  • network segmentation
  • baseline configuration
  • security information and event management (SIEM) tools (CORRECT)

Security teams can use security information and event management (SIEM) tools to examine network logs and identify events of interest. SIEM tools collect and analyze log data to monitor critical activities in an organization.

2. What is a basic principle of port filtering?

  • Allow ports that are used by normal network operations. (CORRECT)
  • Disallow ports that are used by normal network operations.
  • Block all ports in a network.
  • Allow users access to only areas of the network that are required for their role.

A basic principle of port filtering is to allow ports that are used by normal network operations. Any port that is not being used by the normal network operations should be disallowed to protect against vulnerabilities.

3. A security professional creates different subnets for the various departments in their business, ensuring users have access that is appropriate for their particular roles. What does this scenario describe?

  • Firewall maintenance
  • Network segmentation (CORRECT)
  • Network log analysis
  • Patch updates

This scenario describes network segmentation, which involves creating isolated subnets for different departments in an organization.

4. Data in restricted zones should have the same encryption standards as data in other zones.

  • True
  • False (CORRECT)

Restricted zones on a network, which contain highly classified or confidential data, should have much higher encryption standards than data in other zones to make them more difficult to access.

5. Fill in the blank: A _____ is an application that collects and analyzes log data to monitor critical activities in an organization.

  • Baseline configuration
  • Network log analysis
  • Security Information and Event Management tool (SIEM) (CORRECT)
  • Port filter

A SIEM tool is an application that collects and analyzes log data to monitor critical activities in an organization.

TEST YOUR KNOWLEDGE: CLOUD HARDENING

1. Fill in the blank: A key distinction between cloud and traditional network hardening is the use of a server baseline image, which enables security analysts to prevent _____ by comparing data in cloud servers to the baseline image.

  • unverified changes (CORRECT)
  • damaged data
  • improper resource storage
  • slow speeds

A key distinction between cloud and traditional network hardening is the use of a server baseline image, which enables security analysts to prevent unverified changes by comparing data in cloud servers to the baseline image.

2. Data and applications on cloud networks do not need to be separated based on their service category, such as their age or internal functionality.

  • True
  • False (CORRECT)

Similar to OS hardening, data and applications on a cloud network should be kept separate depending on their service category. For example, older applications should be kept separate from new applications. And software that deals with internal functions should be kept separate from front-end applications seen by users.

3. Who is responsible for ensuring the safety of cloud networks? Select all that apply.

  • Security team (CORRECT)
  • Cloud service provider (CORRECT)
  • Individual users
  • department

Both the organization’s security team and its cloud service provider are responsible for ensuring the safety of cloud networks.

4. Fill in the blank: _____ cloud services are a common source of cloud security issues.

  • Misconfigured (CORRECT)
  • Unauthorized
  • Shared
  • Managed

Misconfigured cloud services are a common source of cloud security issues. An improperly configured service could allow unauthorized users to have access to critical cloud operations.

5. What services can cloud networks usually provide to their customers?

  • Eliminate the need to set cloud configurations
  • Fix security vulnerabilities within company applications
  • Store servers on company premises
  • Host company data and applications (CORRECT)

Cloud networks can host company data and applications using cloud computing to provide on-demand storage, processing power, and data analytics.

MODULE 4 CHALLENGE

1. What are the purposes of performing a patch update for security hardening? Select all that apply.

  • Requiring a user to verify their identity to access a system or network.
  • Fixing known security vulnerabilities in a network or services. (CORRECT)
  • Preventing malicious actors from flooding a network.
  • Upgrading an operating system to the latest software version. (CORRECT)

2. Fill in the blank: Requiring employees to turn off their personal devices while in secure areas is an example of a _____ security hardening practice.

  • virtual
  • physical (CORRECT)
  • cloud-based
  • network-focused

3. An organization’s in-house security team has been authorized to simulate an attack on the organization’s website. The objective is to identify any vulnerabilities that are present. What does this scenario describe?

  • The Ping of Death
  • Penetration testing (CORRECT)
  • A Distributed Denial of Service (DDoS) attack
  • Packet sniffing

4. What are some methods for hardening operating systems? Select three answers.

  • Removing unused software to limit unnecessary vulnerabilities (CORRECT)
  • Configuring a device setting to fit a secure encryption standard (CORRECT)
  • Keeping an up-to-date list of authorized users. (CORRECT)
  • Implementing an intrusion detection system (IDS)

5. Fill in the blank: A/An _____ is a documented set of specifications within a system that is used as a basis for future builds, releases, and updates

  • network segment
  • virtual private network installation             
  • baseline configuration (CORRECT)
  • internet control message protocol update

6. Which OS hardening practice requires users to verify their identity in two or more ways to access a system or network?

  • Patch updates
  • SIEM
  • Port filtering
  • Multi-factor authentication (MFA) (CORRECT)

7. In what way might port filtering be used to protect a network from an attack?

  • By increasing the attack surface within a business network
  • By creating isolated subnets for each of the various departments within an organization
  • By helping analysts inspect, analyze, and react to security events based on their priority
  • By blocking or allowing certain port numbers in order to limit unwanted communication (CORRECT)

8. Fill in the blank: Security analysts use ____ to create isolated subnets for different departments in an organization.

  • penetration testing
  • network segmentation (CORRECT)
  • cloud hardening
  • patch updating

9. Fill in the blank: ____ is the process of strengthening a system to reduce its vulnerability and attack surface.

  • Security hardening (CORRECT)
  • Network hardening
  • Port filtering
  • SIEM

10. What is the relationship between security hardening and an attack surface?

  • Security hardening expands the attack surface.
  • Security hardening increases the attack surface.
  • Security hardening diminishes the attack surface. (CORRECT)
  • Security hardening permanently eliminates the attack surface.

11. A company’s executive team approves a proposal by the security director. The proposal involves security professionals simulating an attack on the company’s systems in order to identify vulnerabilities. What does this scenario describe?

  • Packet sniffing
  • A Distributed Denial of Service (DDoS) attack
  • Penetration testing (CORRECT)
  • The Ping of Death

12. Which of the following statements accurately describe OS hardening tasks? Select three answers.

  • Multi-factor authentication is a security measure requiring users to change passwords every month.
  • When disposing of software, it is a best practice to delete any unused applications. (CORRECT)
  • OS hardening is a set of procedures that maintain and improve OS security. (CORRECT)
  • Some OS hardening tasks are performed at regular intervals, while others are performed only once. (CORRECT)

13. Which OS hardening practice involves a security analyst comparing the current configuration to existing documentation about the OS?

  • Checking baseline configuration (CORRECT)
  • Performing port filtering over network ports
  • Verifying user identity when accessing an OS
  • Conducting a network log analysis

14. Which network hardening practice is used to create isolated subnets for different departments in an organization?

  • Penetration testing
  • Network segmentation (CORRECT)
  • Patch updating
  • Cloud hardening

15. Fill in the blank: A ____ is a collection of servers or computers that stores resources and data in remote data centers that can be accessed via the internet

  • SIEM
  • patch update
  • cloud network (CORRECT)
  • baseline configuration

16. When performing security hardening, what is the goal with regards to the attack surface?

  • Hide the attack surface
  • Augment the attack surface
  • Mirror the attack surface
  • Reduce the attack surface (CORRECT)

17. Fill in the blank: Installing security cameras is an example of a _____ security hardening practice.

  • software-based
  • physical (CORRECT)
  • virtual
  • network-focused

18. Which of the following statements accurately describes port filtering?

  • A firewall function that blocks or allows certain port numbers in order to limit unwanted network traffic (CORRECT)
  • A security protocol that provides an encrypted tunnel for issuing commands from a remote server
  • A security technique that divides a network into segments
  • A process performed by a VPN service that protects data by wrapping it in other data packets

19. Fill in the blank: Hiring a security guard is an example of a _____ security hardening practice.

  • software-based
  • virtual
  • physical (CORRECT)
  • network-focused

20. To help improve the security of a business, its in-house security team is approved to simulate an attack that will identify vulnerabilities in business processes. What does this scenario describe?

  • A Distributed Denial of Service (DDoS) attack
  • Penetration testing (CORRECT)
  • The Ping of Death
  • Packet sniffing

21. A security analyst reviews documentation about a firewall rule that includes a list of allowed and disallowed network ports. They compare it to the current firewall to ensure no changes have been made. What does this scenario describe?

  • Checking baseline configuration (CORRECT)
  • Responsibly managing applications
  • Upgrading the interface between computer hardware and the user
  • Verifying user identity when accessing an OS

22. Fill in the blank: The security measure _____ requires a user to verify their identity in two or more ways to access a system or network.

  • password policy
  • multifactor authentication (MFA) (CORRECT)
  • network log analysis
  • baseline configuration

23. A security team considers the best way to handle the different security zones within their network. They prioritize protecting the restricted zone by separating from the rest of the network and ensuring it has much higher encryption standards. What does this scenario describe?

  • Network segmentation (CORRECT)
  • Cloud hardening
  • Penetration testing
  • Patch updating

24. Which of the following are OS hardening tasks? Select three answers.

  • Installing security cameras
  • Regularly installing updates (CORRECT)
  • Using secure encryption standards (CORRECT)
  • Implementing multifactor authentication (CORRECT)

25. What is one key similarity between regular web servers and cloud servers?

  • In both, all applications are stored together, regardless of their age.
  • They both require proper maintenance and security hardening. (CORRECT)
  • They both use baseline images stored in the cloud to compare data.
  • In both, all data and application are stored together, regardless of their service category.
Previous Module
Next Course

Subscribe to our site

Get new content delivered directly to your inbox.

Quiztudy Top Courses

Popular in Coursera

Liking our content? Then, don’t forget to ad us to your BOOKMARKS so you can find us easily!

Subscribe