Is this exam completely free?

ExamCademy offers a free preview for every exam, covering around 20% of the total questions. Full access to all questions is available for free by signing up for an account. Optional supporters unlock AstroTutor (AI tutor) and advanced study modes.

Can I practice IT certification exams from Microsoft, AWS, or CompTIA?

Yes! ExamCademy supports a wide range of IT certification exams including Microsoft Azure, AWS Cloud Practitioner, and CompTIA A+ and Security+.

How accurate are the mock exams?

Our practice questions are community-created and moderator-reviewed to align with realistic exam objectives, style, and difficulty.

156-110 by Checkpoint - Page 1 | ExamCademy

Mode Selection

Sort:

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

That's the end of the Preview

Create a free account to unlock all questions for this exam.

Log In / Sign Up

Page 1 of 4 • Questions 1-25 of 97

1 2 3 4

→

Know a question that should be here? Contribute to this exam

Operating-svstem fingerprinting uses all of the following, EXCEPT ______, to identify a target operating system.

A Sequence Verifier
B Initial sequence number
C Address spoofing
D Time to Live
E IP ID field

Internal intrusions are loosely divided into which categories? (Choose TWO.)

A Attempts by insiders to perform appropriate acts, on information assets to which they have been given rights or permissions.
B Attempts by insiders to access resources, without proper access rights
C Attempts by insiders to access external resources, without proper access rights.
D Attempts by insiders to perform inappropriate acts, on external information assets to which they have been given rights or permissions.
E Attempts by insiders to perform inappropriate acts, on information assets to which they have been given rights or permissions.

_________ occurs when an individual or process acquires a higher level of privilege. Or access, than originally intended.

A Security Triad
B Privilege aggregation
C Need-to-know
D Privilege escalation
E Least privilege

Which encryption algorithm has the highest bit strength?

A AES
B Blowfish
C DES
D CAST
E Triple DES

How is bogus information disseminated?

A Adversaries sort through trash to find information.
B Adversaries use anomalous traffic patterns as indicators of unusual activity. They will employ other methods, such as social engineering, to discover the cause of the noise.
C Adversaries use movement patterns as indicators of activity.
D Adversaries take advantage of a person's trust and goodwill.
E Seemingly, unimportant pieces of data may yield enough information to an adversary, for him to disseminate incorrect information and sound authoritative.

Which type of Business Continuity Plan (BCP) test involves shutting down z on-line, and moving all operations to the alternate site?

A Parallel
B Full interruption
C Checklist
D Structured walkthrough
E Simulation

What must system administrators do when they cannot access a complete i testing?

A Extrapolate results from a limited subset.
B Eliminate the testing phase of change control.
C Request additional hardware and software.
D Refuse to implement change requests.
E Deploy directly to the production environment.

To protect its information assets, ABC Company purchases a safeguard that costs $60,000. The annual cost to maintain the safeguard is estimated to be $40,000. The aggregate Annualized Loss Expectancy for the risks the safeguard is expected to mitigate is $50,000.
At this rate of return, how long will it take ABC Company to recoup the cost of the safeguard?

A ABC Company will never recoup the cost of this safeguard.
B Less than 7 years
C Less than 3 years
D Less than 1 year
E Less than 5 years

Which of the following is NOT an auditing function that should be performed regularly?

A Reviewing IDS alerts
B Reviewing performance logs
C Reviewing IDS logs
D Reviewing audit logs
E Reviewing system logs

Which TWO of the following items should be accomplished, when interviewing candidates for a position within an organization?

A Hire an investigation agency to run background checks.
B Verify all dates of previous employment.
C question candidates, using polygraphs, n
D Contact personal and professional references.
E Run criminal-background checks.

Which of these metrics measure how a biometric device performs, when attempting to authenticate subjects? (Choose THREE.)

A False Rejection Rate
B User Acceptance Rate
C Crossover Error Rate
D False Acceptance Rate
E Enrollment Failure Rate

A new U.S. Federal Information Processing Standard specifies a cryptographic algorithm. This algorithm is used by U.S. government organizations to protect sensitive, but unclassified, information. What is the name of this Standard?

A Triple DES
B Blowfish
C AES
D CAST
E RSA

Which of the following is likely in a small-business environment?

A Most small businesses employ a full-time information-technology staff.
B Resources are available as needed.
C Small businesses have security personnel on staff.
D Most employees have experience with information security.
E Security budgets are very small.

When attempting to identify OPSEC indicators, information-security professionals must: (Choose THREE.)

A Discover the information daily activities yield.
B Meet with adversaries.
C Perform business impact analysis surveys.
D Scrutinize their organizations' daily activities.
E Analyze indicators, to determine the information an adversary can glean both from routine and nonroutine activities.

Why should each system user and administrator have individual accounts? (Choose TWO.)

A Using generic user names and passwords increases system security and reliability.
B Using separate accounts for each user reduces resource consumption, particularly disk space.
C By using individual login names and passwords, user actions can be traced.
D If users do not have individual login names, processes can automatically run with root/administrator access.
E A generic user name and password for users and security administrators provides anonymity, which prevents useful logging and auditing.

Organizations____________ risk, when they convince another entity to assume the risk for them.

A Elevate
B Assume
C Deny
D Transfer
E Mitigate

Which of the following best describes an external intrusion attempt on a local-area network (LAN)?

A Internal users try to gain unauthorized access to information assets outside the organizational perimeter.
B External-intrusion attempts from sources outside the LAN are not granted permissions or rights to an organization's information assets
C External users attempt to access public resources.
D External intruders attempt exploitation of vulnerabilities, to remove their own access.
E Internal users perform inappropriate acts on assets to which they have been given rights or permissions.

_________ intrusion detection involves comparing traffic to known characteristics of malicious traffic, known as attack signatures.

A Pattern matching
B Statistical anomaly
C Behavioral analysis
D Host
E Network

If a firewall receives traffic not explicitly permitted by its security policy, what should the firewall do?

A Nothing
B Do not log and drop the traffic.
C Log and drop the traffic.
D Log and pass the traffic.
E Do not log and pass the traffic.

Which of the following statements about encryption's benefits is false? Encryption can: (Choose TWO.)

A significantly reduce the chance information will be modified by unauthorized entities.
B only be used to protect data in transit. Encryption provides no protection to stored data.
C allow private information to be sent over public networks, in relative safety.
D significantly reduce the chance information will be viewed by unauthorized entities.
E prevent information from being destroyed by malicious entities, while in transit.