QUESTION 81
An administrator wants to create a comprehensive list of the technologies used at the company. Which of the following will best help with this task?
A. Data deduplication
B. Asset enumeration
C. Dynamic analysis
D. Vulnerability scan
Correct Answer: B
QUESTION 82
Which of the following risk management strategies describes applying a compensating control to a device rather than patching?
A. Acceptance
B. Mitigation
C. Avoidance
D. Transference
Correct Answer: B
QUESTION 83
A security engineer must create detections for file staging techniques on web-facing servers. The company implements multiple tools and is most concerned about intellectual property theft. Which of the following tools does the company most likely use?
A. EDR for indicator detections based on process names
B. DLP for scanning and identification on endpoints
C. SOAR for web crawling plugins and data validation
D. IPS for cleartext traffic inspection of network payloads
Correct Answer: B
QUESTION 84
A company requests a collaboration between the infrastructure and security teams to determine the most secure method of deploying applications that saves costs on physical hardware. Which of the following is the best way to achieve this goal?
A. Infrastructure as code
B. Hybrid cloud
C. Virtualization
D. Containerization
Correct Answer: D
QUESTION 85
A security analyst is evaluating a SaaS application that the human resources department would like to implement. The analyst requests a SOC 2 report from the SaaS vendor. Which of the following processes is the analyst most likely conducting?
A. Internal audit
B. Penetration testing
C. Attestation
D. Due diligence
Correct Answer: D
QUESTION 86
Which of the following best explains a concern with OS-based vulnerabilities?
A. An exploit will give an attacker access to system functions that span multiple applications.
B. The OS vendors patch cycle is not frequent enough to mitigate the large number of threats.
C. Most users trust the core operating system features and may not notice if the system has been compromised.
D. Exploitation of an operating system vulnerability is typically easier than any other vulnerability.
Correct Answer: A
QUESTION 87
Which of the following is an example of implementing Zero Trust architecture?
A. Building strong network boundaries to prevent intrusion
B. Verifying user identity once at the start of the session
C. Granting resource access after continuous validation
D. Prioritizing perimeter defense to block external threats
Correct Answer: C
QUESTION 88
A software developer wants to implement an application security technique that will provide assurance of the application’s integrity. Which of the following techniques will achieve this goal?
A. Secure cookies
B. Input validation
C. Static analysis
D. Code signing
Correct Answer: D
QUESTION 89
After failing an audit twice, an organization has been ordered by a government regulatory agency to pay fines. Which of the following caused this action?
A. Non-compliance
B. Contract violations
C. Government sanctions
D. Rules of engagement
Correct Answer: A
QUESTION 90
Which of the following best represents how frequently an incident is expected to happen each year?
A. RTO
B. ALE
C. SLE
D. ARO
Correct Answer: D
QUESTION 91
A security engineer must deploy a sensor to actively monitor a closed network. The company’s enterprise SIEM is located in the cloud, and there is a strict policy against connecting this network to the internet. Which of the following will best address these requirements?
A. Place the sensor on the edge router of the closed network, open port 22 on the management interface, and create a secure connection to the cloud SIEM while using an implicit deny rule to restrict traffic.
B. Connect the sensor to the closed network router’s span port, install a one-way data diode, and pass traffic to the sensor on the enterprise network for inclusion in the enterprise log data.
C. Install a log server on the closed network, point all network and system logs to the log server, and perform weekly manual audits of the logs to meet regulatory compliance objectives.
D. Install the sensor on the internal closed network, add a firewall to the sensor stack, and connect the firewall to the corporate ISP while using strict ACLs to prevent egress traffic.
Correct Answer: B
QUESTION 92
Which of the following best describes the purpose of using deception technologies in a security strategy?
A. To prevent malware installation through endpoint protection tools
B. To block all external traffic before it reaches critical information systems
C. To lure attackers to controlled environments to collect threat intelligence
D. To detect insider threats by monitoring privileged user accounts
Correct Answer: C
QUESTION 93
Which of the following will a global company doing business in the European Union need to be concerned with to avoid legal privacy implications?
A. ISO 27001
B. PCI DSS
C. GDPR
D. SOC 2
Correct Answer: C
QUESTION 94
Which of the following vulnerabilities will input validation prevent?
A. DNS hijacking
B. Time-of-check
C. SQL injection
D. Sideloading
Correct Answer: C
QUESTION 95
Which of the following methods will most likely be used to identify legacy systems?
A. Bug bounty program
B. Vulnerability scan
C. Package monitoring
D. Dynamic analysis
Correct Answer: B
QUESTION 96
Which of the following actions is best performed by ticketing automation to ensure that incidents receive the correct level of attention and response?
A. Notification
B. Creation
C. Closure
D. Escalation
Correct Answer: D
QUESTION 97
Which of the following is a TPM used for in cryptographic solutions?
A. Replacing the OSS encryption services
B. Verifying SSL/TLS certificates from websites
C. Keeping cryptographic keys in software for quick access
D. Storing keys securely and performing hardware-based functions
Correct Answer: D
QUESTION 98
An attacker forces an internal company employee to inject malware into corporate systems under threat of publishing the employee’s sensitive personal files. Which of the following best describes the attacker’s motivation in this type of attack?
A. Financial gain
B. Revenge
C. Blackmail
D. Espionage
Correct Answer: C
QUESTION 99
Which of the following should an analyst consider when evaluating the effectiveness of the backups in an organization’s DRP?
A. Frequency
B. Hashing
C. Deduplication
D. Replication
Correct Answer: A
QUESTION 100
A Chief Information Security Officer (CISO) develops information security policies that relate to the software development methodology. Which of the following will the CISO most likely include in the organization’s documentation?
A. Peer review requirements
B. Multifactor authentication
C. Branch protection tests
D. Secrets management configurations
Correct Answer: A
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.