Insider threats can be categorized into malicious (deliberate) and accidental. Malicious insiders intentionally harm the organization, while accidental insiders do so without intent, often due to negligence or lack of awareness.

Heuristic analysis (option 1) involves identifying new, unknown threats based on their behavior rather than relying solely on known virus definitions. It helps detect and mitigate previously unidentified malware and suspicious activities by analyzing patterns and behaviors.

The process of testing patches on non-critical systems before a full-scale rollout is called "staging." During staging, patches are applied to a limited number of systems or environments to ensure they do not cause issues before wider deployment.

HIPAA (Health Insurance Portability and Accountability Act) focuses specifically on the protection and confidential handling of health information in the United States. It regulates the use and disclosure of individuals' health information by healthcare providers, health plans, and healthcare clearinghouses, among others.

Security awareness training often includes real-world simulations of attacks to test employees' reactions. These simulations help employees practice responding to security incidents and identifying potential threats.

Incremental Backups capture only the data that has changed since the last backup, whether it was a full backup or a previous incremental backup. This reduces the backup time and storage space needed.

Hashing provides data integrity by producing a fixed-size hash value (digest) based on the content of the data. If the data changes, the hash value will also change, making it easy to detect any tampering or corruption.

An expired SSL certificate will result in SSL errors, which can disrupt secure connections, leading to a loss of trust and potential security risks for the server's users.

This security measure is an example of "Multi-Factor Authentication (MFA)." MFA requires users to provide two or more authentication factors (in this case, a password, a smart card, and a biometric scan) to gain access, making it more secure than single-factor authentication.

Role-based access control (RBAC) is a concept in which users are grouped based on their job roles, and permissions are assigned accordingly. This approach simplifies access control by granting or restricting access based on job responsibilities, ensuring that users only have access to resources essential for their roles, which enhances security and administrative efficiency.

Two-factor authentication (2FA) involves something the user physically possesses (like a smart card or token) and something they know (like a PIN or password). It provides an additional layer of security beyond just a password, making it more challenging for unauthorized users to gain access.

Multi-factor authentication typically involves two or more different forms of evidence (factors) for verifying a user's identity. These factors can include something the user knows (password), something the user has (smart card or mobile device), and something the user is (biometric data like fingerprints).