What is the primary purpose of a reference monitor in secure systems? 

Match the physical security element to its purpose

Which of the following is NOT a component of the CIA triad? 

(True/False): Encryption ensures data confidentiality but not integrity. 

Which system is most likely to include SCADA elements? 

What is the most appropriate countermeasure for container security risks? 

In 150-250 words, describe a comprehensive security assessment strategy for a mid-size enterprise migrating from on-premises infrastructure to a hybrid cloud environment. Include: Key security testing methodologies that should be employed Testing frequency recommendations for different system components How you would prioritize remediation efforts Metrics you would track to measure the effectiveness of security testing How Zero Trust principles could be integrated into the testing strategy Your answer should reference specific concepts from network architecture, security testing, and security assessment covered in the course.

An air-gapped system is:  

(True/False): Risk mitigation completely eliminates risk. 

(True or False): According to the Target data breach case study, the primary vulnerability that enabled lateral movement was a lack of network segmentation between vendor systems and POS networks.