In PKI, what role does the Certificate Authority (CA) perform?  

In the context of IoT security, which of the following represents the greatest vulnerability? 

According to the OSI Model covered in the course, at which layer would IPSec operate in Transport Mode?    

What is the primary purpose of a reference monitor in secure systems? 

Match the physical security element to its purpose

Which of the following is NOT a component of the CIA triad? 

(True/False): Encryption ensures data confidentiality but not integrity. 

Which system is most likely to include SCADA elements? 

What is the most appropriate countermeasure for container security risks? 

In 150-250 words, describe a comprehensive security assessment strategy for a mid-size enterprise migrating from on-premises infrastructure to a hybrid cloud environment. Include: Key security testing methodologies that should be employed Testing frequency recommendations for different system components How you would prioritize remediation efforts Metrics you would track to measure the effectiveness of security testing How Zero Trust principles could be integrated into the testing strategy Your answer should reference specific concepts from network architecture, security testing, and security assessment covered in the course.