security awareness CW3

Edit Answers
12345678910
Across
  1. 1. X is a large network of servers that can improve the security, performance, and reliability of anything connected to the Internet. X does this by serving as a reverse proxy Open external link for your web traffic. At Meesho, X WAF provides both automatic protection from vulnerabilities and the flexibility to create custom rules.
  2. 3. A X test is an authorized simulated attack performed on a Meesho applications to evaluate its security. X testers use the same tools, techniques, and processes as attackers to find and demonstrate the business impacts of weaknesses in a system. The Product Security team performs quarterly X testing across the family of apps to identify and mitigate security issues in production.
  3. 5. Meesho's ________ team ensures that our platform offers a safe environment for people to shop online and build businesses. Hence, Meesho _____ team collaborates with various teams such as Information Security, Product Security, and Red Team to design secure products and services, perform security assessments, evaluate threats, and develop engineered mitigations.
  4. 6. Secure ________, also referred to as secure programming, involves writing code in a high-level language that follows strict principles with the goal of preventing potential vulnerabilities. Secure _______ practices entail writing code in a way that will prevent potential security vulnerabilities. This includes maintaining both your source code and any third-party libraries in a secure state.
  5. 10. The team publishes a lot of information on Confluence or JIRA pages, so we need to ensure that there is no X information being published intentionally or unintentionally. This X information can be transferred away with employees when they leave the organization, which can be a risk in itself. The name starts with the letter 'S' and ends 'E'.
Down
  1. 2. The Security Engineering team regularly conducts _________ Security Training to spread awareness about security best practices across the engineering teams.
  2. 4. At Meesho, X helps users of your GitHub Enterprise Server instance find and fix vulnerabilities in their dependencies. You can enable X alerts to notify users about vulnerable dependencies and X updates to fix the vulnerabilities and keep dependencies updated to the latest version.
  3. 7. X attacks, in that it uses a single Internet-connected device (one network connection) to flood a target with malicious traffic. You can tag @security-oncall on slack in such situations.
  4. 8. The X tool is required to ensure that the company's cloud computing environments, AWS and GCP, are protected with utmost assurance. This tool scans for data breaches and misconfigurations to secure a company's data
  5. 9. To maintain a single point of contact for monitoring all security incidents or any security-related engagements, you can tag a single roster using the @security-_____ handle on Slack.