Differentiate between Security Architecture & Design and Information Security Architecture & Design:
What is the CIA Triad (define each component)? What is Defense-in-depth? In order to meet both criteria, what are the minimum security requirements, as recommended by the United States government (list and describe at least 5)?
Differentiate between risk management and risk analysis. You are a Security Consultant and have been hired by IBM to conduct a risk assessment. What steps would you follow to complete the risk assessment?
What is the Common Criteria, and how what role does each play in building a trusted system?
Differentiate between the DES, RSA, and Diffie-Hellman algorithms. What role does hashing play, and why is it important to Information Assurance?
Differentiate between Authentication and Access Control. Provide and describe 3 types of each, commonly used by organizations.