Which of the following is used to add extra complexity before using a one-way data transformation algorithm?
AKey stretching
BData masking
CSteganography
DSalting
A data administrator is configuring authentication for a SaaS application and would like to reduce the number of credentials employees need to maintain. The company prefers to use domain credentials to access new SaaS applications. Which of the following methods would allow this functionality?
ASSO
BLEAP
CMFA
DPEAP
Which of the following scenarios describes a possible business email compromise attack?
AAn employee receives a gift card request in an email that has an executive’s name in the display field of the email.
BEmployees who open an email attachment receive messages demanding payment in order to access files.
CA service desk employee receives an email from the HR director asking for log-in credentials to a cloud administrator account.
DAn employee receives an email with a link to a phishing site that is designed to look like the company’s email portal.
Which of the following has been implemented when a host-based firewall on a legacy Linux system allows connections from only specific internal IP addresses?
ACompensating control
BNetwork segmentation
CTransfer of risk
DSNMP traps
Question 6
Threats, Vulnerabilities, and Mitigations
1
Question 7
Threats, Vulnerabilities, and Mitigations
Question 8
Threats, Vulnerabilities, and Mitigations
Question 9
Threats, Vulnerabilities, and Mitigations
Question 10
Threats, Vulnerabilities, and Mitigations
Question 11
Threats, Vulnerabilities, and Mitigations
Question 12
Security Operations
Question 13
Threats, Vulnerabilities, and Mitigations
Question 14
Security Architecture
Question 15
Threats, Vulnerabilities, and Mitigations
Question 16
Threats, Vulnerabilities, and Mitigations
Question 17
Threats, Vulnerabilities, and Mitigations
Question 18
Security Operations
Question 19
Threats, Vulnerabilities, and Mitigations
Question 20
Security Operations
Question 21
Security Operations
Question 22
Threats, Vulnerabilities, and Mitigations
Question 23
Security Program Management and Oversight
Question 24
Security Architecture
Question 25
Security Architecture
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ad
Want a break from the ads?
Become a Supporter and enjoy a completely ad-free experience, plus unlock Learn Mode, Exam Mode, AstroTutor AI, and more.
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
An enterprise is trying to limit outbound DNS traffic originating from its internal network. Outbound DNS requests will only be allowed from one device with the IP address 10.50.10.25. Which of the following firewall ACLs will accomplish this goal?
AAccess list outbound permit 0.0.0.0/0 0.0.0.0/0 port 53Access list outbound deny 10.50.10.25/32 0.0.0.0/0 port 53
BAccess list outbound permit 0.0.0.0/0 10.50.10.25/32 port 53Access list outbound deny 0.0.0.0/0 0.0.0.0/0 port 53
CAccess list outbound permit 0.0.0.0/0 0.0.0.0/0 port 53Access list outbound deny 0.0.0.0/0 10.50.10.25/32 port 53
DAccess list outbound permit 10.50.10.25/32 0.0.0.0/0 port 53Access list outbound deny 0.0.0.0/0 0.0.0.0/0 port 53
An employee clicked a link in an email from a payment website that asked the employee to update contact information. The employee entered the log-in information but received a “page not found” error message. Which of the following types of social engineering attacks occurred?
ABrand impersonation
BPretexting
CTyposquatting
DPhishing
An organization’s internet-facing website was compromised when an attacker exploited a buffer overflow. Which of the following should the organization deploy to best protect against similar attacks in the future?
ANGFW
BWAF
CTLS
DSD-WAN
Several employees received a fraudulent text message from someone claiming to be the Chief Executive Officer (CEO). The message stated:
“I’m in an airport right now with no access to email. I need you to buy gift cards for employee recognition awards. Please send the gift cards to following email address.”
Which of the following are the best responses to this situation? (Choose two).
ACancel current employee recognition gift cards.
BAdd a smishing exercise to the annual company training.
CIssue a general email warning to the company.
DHave the CEO change phone numbers.
EConduct a forensic investigation on the CEO’s phone.
FImplement mobile device management.
A company is required to use certified hardware when building networks. Which of the following best addresses the risks associated with procuring counterfeit hardware?
AA thorough analysis of the supply chain
BA legally enforceable corporate acquisition policy
CA right to audit clause in vendor contracts and SOWs
DAn in-depth penetration test of all suppliers and vendors
An enterprise has been experiencing attacks focused on exploiting vulnerabilities in older browser versions with well-known exploits. Which of the following security solutions should be configured to best provide the ability to monitor and block these known signature-based attacks?
AACL
BDLP
CIDS
DIPS
Which of the following is required for an organization to properly manage its restore process in the event of system failure?
AIRP
BDRP
CRPO
DSDLC
Which of the following vulnerabilities is associated with installing software outside of a manufacturer’s approved software repository?
AJailbreaking
BMemory injection
CResource reuse
DSide loading
An analyst is evaluating the implementation of Zero Trust principles within the data plane. Which of the following would be most relevant for the analyst to evaluate?
ASecured zones
BSubject role
CAdaptive identity
DThreat scope reduction
An engineer needs to find a solution that creates an added layer of security by preventing unauthorized access to internal company resources. Which of the following would be the best solution?
ARDP server
BJump server
CProxy server
DHypervisor
A company’s web filter is configured to scan the URL for strings and deny access when matches are found. Which of the following search strings should an analyst employ to prohibit access to non-encrypted websites?
Aencryption=off
Bhttp://
Cwww.*.com
D:443
During a security incident, the security operations team identified sustained network traffic from a malicious IP address: 10.1.4.9. A security analyst is creating an inbound firewall rule to block the IP address from accessing the organization’s network. Which of the following fulfills this request?
Aaccess-list inbound deny ip source 0.0.0.0/0 destination 10.1.4.9/32
Baccess-list inbound deny ip source 10.1.4.9/32 destination 0.0.0.0/0
Caccess-list inbound permit ip source 10.1.4.9/32 destination 0.0.0.0/0
Daccess-list inbound permit ip source 0.0.0.0/0 destination 10.1.4.9/32
A company has begun labeling all laptops with asset inventory stickers and associating them with employee IDs. Which of the following security benefits do these actions provide? (Choose two.)
AIf a security incident occurs on the device, the correct employee can be notified.
BThe security team will be able to send user awareness training to the appropriate device.
CUsers can be mapped to their devices when configuring software MFA tokens.
DUser-based firewall policies can be correctly targeted to the appropriate laptops.
EWhen conducting penetration testing, the security team will be able to target the desired laptops.
FCompany data can be accounted for when the employee leaves the organization.
A company needs to provide administrative access to internal resources while minimizing the traffic allowed through the security boundary. Which of the following methods is most secure?
AImplementing a bastion host
BDeploying a perimeter network
CInstalling a WAF
DUtilizing single sign-on
A security analyst is reviewing alerts in the SIEM related to potential malicious network traffic coming from an employee’s corporate laptop. The security analyst has determined that additional data about the executable running on the machine is necessary to continue the investigation. Which of the following logs should the analyst use as a data source?
AApplication
BIPS/IDS
CNetwork
DEndpoint
A technician wants to improve the situational and environmental awareness of existing users as they transition from remote to in-office work. Which of the following is the best option?
ASend out periodic security reminders.
BUpdate the content of new hire documentation.
CModify the content of recurring training.
DImplement a phishing campaign.
Which of the following roles, according to the shared responsibility model, is responsible for securing the company’s database in an IaaS model for a cloud environment?
AClient
BThird-party vendor
CCloud provider
DDBA
A client asked a security company to provide a document outlining the project, the cost, and the completion time frame. Which of the following documents should the company provide to the client?
AMSA
BSLA
CBPA
DSOW
Which of the following must be considered when designing a high-availability network? (Choose two).
AEase of recovery
BAbility to patch
CPhysical isolation
DResponsiveness
EAttack surface
FExtensible authentication
An organization is building a new backup data center with cost-benefit as the primary requirement and RTO and RPO values around two days. Which of the following types of sites is the best for this scenario?
