100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
Previously searched by you
Previously searched by you
logo
ACAS (Assured Compliance Assessment Solution) Questions And Answers $10.79   Add to cart
Quickly navigate to
Preview
  2.  
  3. ACAS - Associate Of The Casualty Actuarial Society
  4.  
  5. ACAS - Associate of the Casualty Actuarial Society

Exam (elaborations)

ACAS (Assured Compliance Assessment Solution) Questions And Answers
 6 views  0 purchase
  • Course
  • ACAS - Associate of the Casualty Actuarial Society
  • Institution
  • ACAS - Associate Of The Casualty Actuarial Society

ACAS (Assured Compliance Assessment Solution) - ANS is a network-based security compliance and assessment capability designed to provide awareness of the security posture and network health of DoD networks SecurityCenter - ANS is the central console for the ACAS system tools an...

[Show more]

Preview 2 out of 5  pages

Document information

  • August 21, 2024
  • 5
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers

Subjects

  • acas assured compliance assessment solution ques

Written for

  • ACAS - Associate of the Casualty Actuarial Society
  • ACAS - Associate of the Casualty Actuarial Society

Seller

avatar-seller
DocLaura

Reviews received

Content preview

ACAS (Assured Compliance Assessment
Solution) Questions And Answers





ACAS (Assured Compliance Assessment Solution) - ANS is a network-based security
compliance and assessment capability designed to provide awareness of the security posture
and network health of DoD networks

SecurityCenter - ANS is the central console for the ACAS system tools and data

ACAS components - ANS SecurityCenter
Nessus- active scanner
PVS (passive vulnerability scanner) - sniffs the network
3D tool/optional - port 443

ACAS components perform these main functions: - ANS - Discover assets
- Detect vulnerabilities and data leaks
- Conduct configuration and compliance audits
- Publish findings to Continuous Monitoring and Risk Scoring (CMRS)

Plug-in - ANS displays a list of script files used by Nessus/PVS scanners to collect and
interpret vulnerability, compliance, and configuration data

Things that can be scanned for security data - ANS servers, workstations, peripherals,
Mobile device Management Servers, network servers

PVS (Passive Vulnerability Scanner) - ANS watches and determines vulnerabilities based
on network traffic, instead of actively scanning

Compliance - ANS a state of being in accordance with established guidelines,
specifications or legislation, or the process of becoming so

CMRS ( Continuous Monitoring and Risk Scoring) - ANS a tool to provide DoD component
- and enterprise-level situational awareness by quantitatively displaying an organization's
security posture

Task Order 13-670 - ANS Implementation of ACAS

What is the 1st screen you see when you log in to SecurityCenter? - ANS Dashboard

, SecurityCenter Building Blocks - ANS -Organization
-Role, Group, and User Definition
-Scan Zone (and Nessus Scanners)
-Repository
-Plugin

Organization - ANS groups of individuals responsible for a set of common assets

Scan Zones - ANS a defined static range of IP addresses that can be scanned by one or
more Nessus Scanners

Repositories - ANS are proprietary data files, residing on the Security Center, that store
scan results

Passive scanning plugins Range - ANS 1-10,000

Active (Nessus) plugin Range - ANS 10,001-900,000

Custom plugins created by users Range - ANS 900,001-999,999

Compliance plugin Range - ANS 1,000,000+

What is the maximum size of a SecurityCenter 5 Repository? - ANS 32GB

How can you get your SecurityCenter plugin updates? - ANS Automatically from DISA's
plugin server and manually from the DoD Patch Repository

A Scan Job incorporates - ANS Policy, schedule, Credentials, Import Repository, Targets,
and Scan Zone

Steps to run a Scan with SecurityCenter 5 - ANS 1. Create a Scan Policy
2. Create a Scan
3. Launch the Scan
4. View the Scan Results

Credentials - ANS administrative level usernames and passwords (or SSH keypairs) that
are used in authenticated scans

Blackout Windows - ANS - allow you to set a "do not scan" period of time
- Scans launched during an active Blackout Window will show a Partial Status in the Scan
Results
- will prevent scheduled scans from running
- times are expressed in 24-hour format

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller DocLaura. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $10.79. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

81531 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$10.79
  • (0)
  Add to cart