The Following Image Describes Which Type Of Change?

IBM Cybersecurity Analyst Professional Certificate Assessment Exam Answers

IBM Cybersecurity Annotator Professional Certificate Cess Exam Quiz Answers

Warning: Jo Answer Green hai wo correct hai just
Jo Green Nahi hai. Usme se jo ek wrong selection tha usko hata diya hai

Question 1)

Implementing a Security Awareness training program would be an example of which type of control?

Administrative command

Question 2)

Putting locks on a door is an example of which type of control?

Preventative

Question three)

How would yous allocate a piece of malicious lawmaking that can replicate itself and spread to new systems?

A worm

Question 4)

To engage in package sniffing, you must implement promiscuous mode on which device ?

A network menu
An Intrusion Detection System (IDS)
A sniffing router

Question five)

Which mechanism would aid assure the integrity of a message, but non exercise much to assure confidentiality or availability.

Hashing

Question vi)

An organization wants to restrict employee after-hours access to its systems so it publishes a policy forbidding employees to piece of work outside of their assigned hours, and and so makes sure the office doors remain locked on weekends. What two (two) types of controls are they using? (Select two)

Physical
Authoritative

Question 7)

Which two factors contribute to cryptographic strength? (Select ii)

The apply of cyphers that are based on complex mathematical algorithms
The employ of cyphers that have undergone public scrutiny

Question 8)

Trying to pause an encryption central by trying every possible combination of characters is called what?

A fauna strength assault

Question 9)

Which of the following describes the core goals of It security?

The Open Web Awarding Security Project (OWASP) Framework
The Business Process Direction Framework
The CIA Triad

Question 10)

Which three (three) roles are typically constitute in an Information Security organization? (Select three)

Vulnerability Assessor
Chief Data Security Officer (CISO)
Penetration Tester

Question eleven)

Problem Management, Change Management, and Incident Direction are all key processes of which framework?

ITIL

Question 12)

Alice sends a message to Bob that is intercepted by Trudy. Which scenario describes an integrity violation?

Trudy changes the message and and so forwards information technology on
Trudy deletes the message without forwarding it
Trudy reads the message
Trudy cannot read it considering it is encrypted but allows information technology to be delivered to Bob in its original form

Question xiii)

In cybersecurity, Accountability is defined as what?

Being able to map an activity to an identity

Question 14)

Multifactor authentication (MFA) requires more than one authentication method to exist used before identity is authenticated. Which three (three) are authentication methods? (Select 3)

Something a person is
Something a person has
Something a person knows

Question 15)

Which three (iii) of the post-obit are Physical Access Controls? (Select 3)

Door locks
Security guards
Fences

Question 16)

If yous are setting up a Windows ten laptop with a 32Gb difficult bulldoze, which 2 (2) file system could you select? (Select 2)

NTFS
FAT32

Question 17)

Which three (3) permissions can exist prepare on a file in Linux? (Select 3)

write
execute
read

Question 18)

If cost is the primary business, which type of cloud should be considered first?

Public deject

Question nineteen)

Consolidating and virtualizing workloads should be washed when?

Earlier moving the workloads to the cloud

Question 20)

Which of the following is a cocky-regulating standard set upward by the credit bill of fare industry in the US?

PCI-DSS

Question 21)

Which two (2) of the following attack types target endpoints?

Advertising Network
Spear Phishing

Question 22)

If an Endpoint Detection and Response (EDR) system detects that an endpoint does non take a required patch installed, which statement best characterizes the actions it is able to take automatically?

The endpoint tin exist quarantined from all network resources except those that allow it to download and install the missing patch

Question 23)

Granting access to a user based upon how high upward he is in an organization violates what basic security premise?

The principle of least privileges

Question 24)

The Windows Security App available in Windows 10 provides uses with which of the following protections?

Firewall and network protection
Family unit options (parental controls)
All of the above

Question 25)

Hashing ensures which of the following?

Integrity

Question 26)

Which of the following practices helps assure the best results when implementing encryption?

Choose a reliable and proven published algorithm
Develop a unique cryptographic algorithm for your organization and keep them secret

Question 27)

Which of these methods ensures the authentication, non-repudiation and integrity of a digital advice?

Apply of digital signatures

Question 28)

Which of the following practices will assistance assure the confidentiality of data in transit?

Disable document pinning
Accept self-signed certificates
Implement HTTP Strict Transport Protocol (HSTS)

Question 29)

Which three (3) of these are benefits you can realize from using a NAT (Network Address Translation) router? (Select iii)

Allows static ane-to-1 mapping of local IP addresses to global IP addresses
Allows dynamic mapping of many local IP addresses to a smaller number of global IP accost only when they are needed
Allows internal IP addresses to be subconscious from outside observers

Question thirty)

Which statement all-time describes configuring a NAT router to apply static mapping?

The system will need every bit many registered IP addresses equally it has computers that need Internet access

Question 31)

If a computer needs to transport a message to a system that is part of the local network, where does information technology ship the bulletin?

To the organization'south MAC address

Question 32)

Which are properties of a highly available system?

Redundancy, failover and monitoring

Question 33)

Which three (3) of these statements about the UDP protocol are True? (Select 3)

UDP is faster than TCP
UDP packets are reassembled by the receiving arrangement in whatever order they are received
UDP is connectionless

Question 34)

What is one difference betwixt a Stateful Firewall and a Next Generation Firewall?

A NGFW understand which application sent a given package

Question 35)

You lot are concerned that your organisation is really non very experienced with securing data sources. Which hosting model would require you to secure the fewest data sources?

SaaS

Question 36)

Hassan is an engineer who works a normal day shift from his company'southward headquarters in Austin, TX USA. Which ii (2) of these activities raise the near cause for concern? (Select 2)

Each night Hassan logs into his account from an ISP in Prc
1 evening, Hassan downloads all of the files associated with the new product he is working on

Question 37)

Which 3 (three) of the following are considered safe coding practices? (Select 3)

Use library functions in identify of OS commands
Avoid using OS commands whenever possible
Avert running commands through a shell interpreter

Question 38)

Which three (iii) items should be included in the Planning pace of a penetration examination? (Select three)

Informing Need-to-know employees
Establishing Boundaries
Setting Objectives

Question 39)

Which portion of the pentest written report would cover the adventure ranking, recommendations and roadmap?

Executive Summary

Question 40)

Spare workstations and servers, blank removable media, packet sniffers and protocol analyzers, all belong to which Incident Response resource category?

Incident Mail service-Analysis Resources
Incident Assay Hardware and Software

Question 41)

NIST recommends because a number of items, including a loftier level of testing and monitoring, during which stage of a comprehensive Containment, Eradication & Recovery strategy?

Recovery

Question 42)

True or False. Digital forensics is effective in solving cyber crimes but is not considered effective in solving violent crimes such as rape and murder.

Imitation

Question 43)

Which three (3) are common obstacles faced when trying to examine forensic data? (Select iii)

Selecting the correct tools to assist filter and exclude irrelevant information
Finding the relevant files amongst the hundreds of thousands found on most hard drives
Bypassing controls such as passwords

Question 44)

What scripting concept volition repeatedly execute the aforementioned block of code while a specified condition remains true?

Loops

Question 45)

Which two (2) statements about Python are true? (Select 2)

Python code is considered easy to debug compared with other popular programming languages
Python code is considered very readable by novice programmers

Question 46)

In the Python statement

pi="3"

What data type is the data type of the variable pi?

Question 47)

What will be printed by the post-obit block of Python code?

def Add5(in)

out=in+five

render out

print(Add5(10))

Question 48)

Which threat intelligence framework was developed by the US Government to enable consequent characterization and categorization of cyberthreat events?

Cyber Threat Framework

Question 49)

Truthful or False. An system's security allowed system should be integrated with outside organizations, including vendors and other third-parties.

True

Question l)

Which iii (3) of these are among the height 12 capabilities that a practiced data security and protection solution should provide? (Select 3)

Vulnerability assessment
Real-fourth dimension alerting
Tokenization

Question 51)

True or False. For iOS and Android mobile devices, users must interact with the operating system only through a series of applications, simply not directly.

True

Question 52)

All industries have their own unique data security challenges. Which of these industries has a particular concern with PCI-DSS compliance while having a big number of access points staffed by low-level employees who have admission to payment menu data?

Retail

Question 53)

True or Simulated. WireShark has an impressive array of features and is distributed free of accuse.

True

Question 54)

In which component of a Common Vulnerability Score (CVSS) would privileges required be reflected?

Base-Exploitability Subscore

Question 55)

The Decommission stride in the DevSecOps Release, Deploy & Decommission phase contains which of these activities?

IAM controls to regulate dominance

Question 56)

You summate that there is a ii% probability that a cybercriminal will exist able to steal credit card numbers from your online storefront which will result in $10M in losses to your company. What have y'all just determined?

A risk

Question 57)

Which ane of the OWASP Top x Awarding Security Risks would be occur when an application's API exposes financial, healthcare or other PII data?

Sensitive data exposure

Question 58)

Which three (3) of these are Solution Edifice Blocks (SBBs)? (Select 3)

Virus Protection
Application Firewall
Spam Filter

Question 59)

A robust cybersecurity defence force includes contributions from iii areas, man expertise, security analytics and artificial intelligence. Rapidly analyzing large quantities of unstructured data lends itself best to which of these areas?

Artificial intelligence

Question 60)

The triad of a security operations centers (SOC) is People, Process and Engineering. Which function of the triad would network monitoring belong?

Engineering

Question 61)

Which of these is a good definition for cyber threat hunting?

The deed of proactively and aggressively identifying, intercepting, tracking, investigating and eliminating cyber adversaries equally early as possible in the cyber kill chain

Question 62)

There is value brought by each of the IBM i2 EIA apply cases. Which i of these provides firsthand alerting on brand compromises and fraud on the dark spider web.

Threat Discovery

Question 63)

Which three (3) soft skills are important to have in an organization'south incident response team? (Select 3)

Communication
Teamwork
Problem solving and Disquisitional thinking

Question 64)

Implementing strong endpoint detection and mitigation strategies falls into which phase of the incident response lifecycle?

Detection & Analysis

Question 65)

Which 3 (iii) of these statistics about phishing attacks are real? (Select 3)

Around 15 meg new phishing sites are created each month
Phishing accounts for about xx% of information breaches
30% of phishing messages are opened by their targeted users

Question 66)

Which three (three) of these control processes are included in the PCI-DSS standard? (Select 3)

Implement strong access control measures
Regularly monitor and examination networks
Maintain an information security policy

Question 67)

Which three (3) are malware types normally used in PoS attacks to steal credit menu data? (Select 3)

Alina
BlackPOS
vSkimmer

Question 68)

According to a 2019 Ponemon study, what percent of consumers indicated they would be willing to pay more for a production or service from a provider with meliorate security?

Question 69)

You get a phone call from a technician at the "Windows company" who tells y'all that they have detected a problem with your system and would like to aid you resolve information technology. In order to help, they need you to get to a web site and download a simple utility that will allow them to ready the settings on your reckoner. Since y'all only own an Apple Mac, you are suspicious of this caller and hang up. What would the attack vector take been if you had downloaded the "simple utility" equally asked?

Remote Desktop Protocol (RDP)

Question 70)

What is an constructive fully automated way to prevent malware from entering your system equally an email attachment?

Anti-virus software

Question 71)

True or False. The big majority of stolen credit carte du jour numbers are used quickly by the thief or a member of his/her family.

Simulated

Question 72)

Which three (3) of these are PCI-DSS requirements for any company handling, processing or transmitting credit menu data? (Select iii)

Restrict admission to cardholder data by concern need-to-know
Assign a unique ID to each person with computer access
Restrict physical access to cardholder information

Question 73)

True or False. Communications of a data breach should exist handled past a team composed of members of the IR squad, legal personnel and public relations.

True

Question 74)

A Coordinating incident response team model is characterized by which of the following?

Multiple incident response teams within an organization all of whom coordinate their activities only within their country or department

Multiple incident response teams within an organization but one with authority to assure consistent policies and practices are followed across all teams

This term refers to a structure that assures the incident response team's activities are coordinated with senior management and all appropriate departments within and organisation

Question 75)

The cyber hunting squad and the SOC analysts are informally referred to as the ____ and ____ teams, respectively.

Blue Red

Ruby-red, Blue

Question 76)

The partnership between security analysts and applied science can exist said to exist grouped into 3 domains, human expertise, security analytics and artificial intelligence. The human expertise domain would contain which three (3) of these topics?

Brainchild
Dilemmas
Morals

Question 77)

Solution architectures often comprise diagrams similar the ane below. What does this diagram testify?

<<Solution Architecture Data Menses.png>>

Functional components and data period

Question 78)

Port numbers 1024 through 49151 are known as what?

Registered Ports

Question 79)

Which layer of the OSI model to packet sniffers operate on?

Data Link

Question eighty)

Truthful or False. Internal attacks from trusted employees represents every bit equally meaning a threat as external attacks from professional cyber criminals.

True

Question 81)

According to the FireEye Mandiant's Security Effectiveness Report 2020, what fraction of security tools are deployed with default settings and thus underperform expectations?

eighty%

Question 82)

Which country had the highest average cost per breach in 2018 at $8.19M

The states

Question 83)

Which two (two) of these Python libraries provides useful statistical functions? (Select two)

StatsModels

Scikit-larn

Question 84)

What will print out when this block of Python code is run?

i=1

#i=i+ane

#i=i+ii

#i=i+iii

print(i)

Question 85)

Which three (three) statements well-nigh Python variables are true? (Select three)

A variable name must beginning with a letter or the underscore "_" character
Variables tin can change type subsequently they take been set
Variables do not have to be declared in advance of their use

Question 86)

PowerShell is a configuration management framework for which operating system?

Windows

Question 87)

In digital forensics documenting the chain of custody of evidence is critical. Which of these should be included in your chain of custody log?

All of the above

Question 88)

Forensic analysis should always be conducted on a copy of the original information. Which two (2) types of copying are appropriate for getting data from a laptop caused from a terminated employee, if you suspect he has deleted incriminating files? (Select 2)

An incremental fill-in

A logical backup

Question 89)

Which of the post-obit would be considered an incident precursor?

An alert from your antivirus software indicating it had detected malware on your system

An announced threat against your organization past a hactivist group

Question 90)

If a penetration examination calls for you lot to create a diagram of the target network including the identity of hosts and servers also equally a list of open up ports and published services, which tool would exist the all-time fit for this task?

Nmap

Question 91)

Which type of list is considered best for safe coding practice?

Whitelist

Question 92)

In reviewing the security logs for a company's headquarters in New York City, which of these activities should not enhance much of a security concern?

A recently hired data scientist in the Medical Analytics department has repeatedly attempted to access the corporate fiscal database

An employee has started logging in from home for an hour or so during the last 2 weeks of each quarter

Question 93)

Data sources such as newspapers, books and spider web pages are considered which type of data?

Unstructured data

Semi-structured data

Structured data

Question 94)

Which 3 (three) of these statements well-nigh the TCP protocol are True? (Select 3)

TCP packets are reassembled by the receiving system in the order in which they were sent

TCP is more reliable than UDP

TCP is connexion-oriented

Question 95)

In IPv4, how many of the iv octets are used to define the network portion of the address in a Form B network?

Question 96)

A small visitor with 25 computers wishes to connect them to the Internet using a NAT router. How many Public IP addresses will this company need to assure all 25 computers can communicate with each other and other systems on the Internet if they implement Port Address Translations?

Question 97)

Why is symmetric key encryption the nearly common pick of methods to encryptic information at rest?

In that location are far more keys bachelor for utilise

It is much faster than asymmetric cardinal encryption

Question 98)

Which of the following statements nigh hashing is True?

Hashing uses algorithms that are known as "1-way" functions

Question 99)

Why is hashing non a common method used for encrypting data?

Hashing is a one-way process so the original data cannot be reconstructed from a hash value

Question 100)

Public cardinal encryption incorporating digital signatures ensures which of the following?

Confidentiality and Integrity

Question 101)

What is the primary authentication protocol used by Microsoft in Active Directory?

Kerberos

Question 102)

Granting access to a user account just those privileges necessary to perform its intended functions is known as what?

The principle of to the lowest degree privileges

Question 103)

What is the nigh common patch remediation frequency for most organizations?

Monthly

Annually

Question 104)

Island hopping is an attack method commonly used in which scenario?

Supply Chain Infiltration
Blocking access to a website for all users
Compromising a corporate VIP
Trojan Horse attacks

Question 105)

Security training for IT staff is what type of control?

Virtual

Operational

Physical

Question 106)

Which security concerns follow your workload fifty-fifty after information technology is successfully moved to the cloud?

All of the to a higher place

Question 107)

Which form of Cloud computing combines both public and private clouds?

Hybrid cloud

Question 108)

Which component of the Linux operating arrangement interacts with your estimator'due south hardware?

The kernel

Question 109)

The encryption and protocols used to prevent unauthorized access to data are examples of which blazon of access control?

Technical

Question 110)

In cybersecurity, Actuality is defined as what?

The belongings of being genuine and verifiable

Question 111)

ITIL is all-time described as what?

A drove of IT Service Management best practices

Question 112)

Which position is in charge of testing the security and effectiveness of computer information systems?

Information Security Auditor

Question 113)

A visitor wants to prevent employees from wasting time on social media sites. To accomplish this, a document forbidding use of these sites while at work is written and circulated and then the firewalls are updated to block access to Facebook, Twitter and other popular sites. Which ii (2) types of security controls has the visitor just implemented? (Select 2)

Authoritative

Technical

Question 114)

An email bulletin that is encrypted, uses a digital signature and carries a hash value would address which aspects of the CIA Triad?

Confidentiality and Integrity

Question 115)

What would a slice of malicious code that gets installed on a reckoner and reports dorsum to the controller your keystrokes and other information it tin gather from your arrangement exist chosen?

Spyware

Question 116)

Fancy Bears and Anonymous are examples of what?

Hacking organizations

Question 117)

Select the answer the fills in the blanks in the correct club.

A weakness in a system is a/an ____. The potential danger associated with this is a/an ____ that becomes a/an ____ when attacked past a bad actor.

vulnerability, threat, exploit

threat, exposure, risk

threat role player, vulnerability, exposure

Question 118)

Implement a filter to remove flooded packets before they accomplish the host is a countermeasure to which form of attack?

A Deprival of Service (DoS) attack

Question 119)

Trudy intercepts a romantic apparently-text message from Alice to her beau Sam. The bulletin upsets Trudy so she frontward it to Bob, making it await like Alice intended it for Bob from the beginning. Which aspect of the CIA Triad has Trudy violated ?

All of the above

Question 120)

Which factor contributes nearly to the strength of an encryption organisation?

How many people accept access to your public key

The length of the encryption key used

The number of private keys used by the organisation

Question 121)

What is an advantage asymmetric key encryption has over symmetric primal encryption?

Asymmetric keys can exist exchanged more than securely than symmetric keys

Asymmetric key encryption is harder to break than symmetric key encryption

Disproportionate key encryption is faster than symmetric cardinal encryption

Question 122)

Which position is responsible for the "ethical hacking" of an organizations computer systems?

A Penetration Tester

Question 123)

Which three (3) are considered all-time practices, baselines or frameworks? (Select three)

ISO27000 series

ITIL

COBIT

Question 124)

What does the "A" in the CIA Triad represent?

Availability

Question 125)

Which type of access control is based upon the field of study'south clearance level and the objects classification?

Hierarchical Access Control (HAC)
Discretionary Admission Control (DAC)
Mandatory Access Control (MAC)
Function Based Admission Control (RBAC)

Question 126)

Windows 10 stores 64-bit applications in which directory?

\Plan Files

Question 127)

To build a virtual computing surround, where is the hypervisor installed?

Between the applications and the data sources
On the deject'due south supervisory system
Between the hardware and operating system
Between the operating arrangement and applications

Question 128)

An identical e-mail sent to millions of addresses at random would be classified as which type of set on?

A Shark attack

A Phishing attack

Question 129)

Which statement near drivers running in Windows kernel manner is true?

But critical processes are permitted to run in kernel mode since in that location is null to prevent a

Question 130)

Symmetric cardinal encryption by itself ensures which of the following?

Confidentiality and Integrity

Confidentiality simply

Confidentiality and Availability

Question 131)

Which statement all-time describes configuring a NAT router to use dynamic mapping?

The organization will demand every bit many registered IP addresses as it has computers that need Internet admission

Many registered IP addresses are mapped to a single registered IP accost using different port numbers

Unregistered IP addresses are mapped to registered IP addresses as they are needed

The NAT router uses each estimator'southward IP address for both internal and external communication

Question 132)

Which address type does a reckoner utilise to go a new IP address when it boots up?

The network's DHCP server address

Question 133)

What is the chief departure betwixt the IPv4 and IPv6 addressing schema?

IPv6 is significantly faster than IPv4

IPv6 is used only for IOT devices

IPv6 allows for billions of times as many possible IP addresses

Question 134)

Which blazon of firewall understands which session a package belongs to and analyzes it accordingly?

A Next Generation Firewall (NGFW)

Question 135)

An employee calls the Information technology Helpdesk and admits that maybe, only mayhap, the links in the email he clicked on this morning were not from the real Lottery Commission. What is the showtime thing y'all should tell the employee to practice?

Run a Port scan

Run an antivirus scan

Question 136)

A penetration tester involved in a "Blackness box" attack would exist doing what?

Attempting to penetrate a client's systems as if she were an external hacker with no inside knowled

Question 137)

Which Post Incident action would be concerned with maintaining the proper concatenation-of-custody?

Lessons learned meeting
Bear witness retention
Documentation review & update
Utilizing collected information

Question 138)

In digital forensics, which three (3) steps are involved in the drove of data? (Select 3)

Develop a plan to acquire the information

Verify the integrity of the data

Acquire the information

Question 139)

Which three (three) of the following are considered scripting languages? (Select 3)

Perl

Bash

Python

Question 140)

What is the largest number that volition be printed during the execution of this Python while loop?

i=0

while (i<10):

print(i)

i=i+one

Question 141)

Activities performed as a role of security intelligence tin be divided into pre-exploit and mail service-exploit activities. Which 2 (2) of these are post-exploit activities? (Select two)

Gather full situational awareness through advanced security analytics

Perform forensic investigation

Question 142)

There are many good reasons for maintaining comprehensive backups of critical data. Which aspect of the CIA Triad is most impacted by an system'south backup practices?

Availability

Integrity

Say-so

Question 143)

Which phase of DevSecOps would comprise the activities Internal/External testing, Continuous assurance, and Compliance checking?

Test

Lawmaking & build

Operate & monitor

Plan

Question 144)

Which one of the OWASP Top ten Application Security Risks would exist occur when there are no safeguards against a user being allowed to execute HTML or JavaScript in the user's browser that can hijack sessions.

Cross-site scripting

Question 145)

SIEM license costs are typically calculated based upon which two (two) factors? (Select 2)

Flows per minute (FPM)

Events per 2d (EPS)

Question 146)

True or False. If you lot have no better place to start hunting threats, start with a view of the global threat landscape so drill down to a regional view, manufacture view and finally a view of the threats specific to your own organisation.

True

Question 147)

True or False. Deject-based storage or hosting providers are amid the top sources of third-party breaches

Truthful

Question 148)

Yous are looking very hard on the web for the lowest mortgage involvement load you can find and you come beyond a rate that is then depression it could not perhaps be truthful. You cheque out the site to see that the terms are and quickly find you are the victim of a ransomware attack. What was the likely attack vector used by the bad actors?

Phishing

Malicious Links

Software Vulnerabilities

Question 149)

Very provocative articles that come up in news feeds or Google searches are sometimes called "click-bait". These articles often tempt you lot to link to other sites that can be infected with malware. What assail vector is used by these click-bait sites to get you to get to the really bad sites?

Malicious Links

More New Questions

Question 150)

Which of the following defines a security threat?

Whatsoever potential danger capable of exploiting a weakness in a organization
The likelihood that the weakness in a system will be exploited
One example of a weakness beingness exploited
A weakness in a system that could be exploited by a bad actor

Question 151)

Suspicious activity, like IP addresses or ports being scanned sequentially, is a sign of which type of attack?

A mapping attack
A deprival of service (DoS) attack
A phishing assault
An IP spoofing attack

Question 152)

Alice sends a bulletin to Bob that is intercepted by Trudy. Which scenario describes a confidentiality violation?

Trudy deletes the message without forwarding it
Trudy cannot read it because it is encrypted just allows information technology to be delivered to Bob in its original grade
Trudy changes the message and and then forward it on
Trudy reads the message

Question 153)

Which regulation contains the security rule that requires all covered entities to maintain reasonable and appropriate authoritative, technical, and physical safeguards for protecting electronic protected health information (e-PHI)?

PCI-DSS
ISO27000 series
HIPAA
GDPR
NIST 800-53A

Question 154)

A good Endpoint Detection and Response system (EDR) should have which three (three) of these capabilities? (Select 3)

Automatically quarantine noncompliant endpoints
Manage encryption keys for each endpoint
Manage thousands of devices at in one case
Deploying devices with network configurations

Question 155)

Which statement about encryption is Truthful nigh information in use.

Data should e'er be kept encrypted since modern CPUs are fully capable of operating straight on encrypted data

Information technology is vulnerable to theft and should be decrypted only for the briefest possible time while information technology is being operated on

Short of orchestrating a memory dump from a system crash, at that place is no applied way for malware to get at the data existence processed, so dump logs are your only real business organisation

Data in active retentiveness registers are not at risk of being stolen

Question 156)

For added security yous make up one's mind to protect your network by conducting both a stateless and stateful inspection of incoming packets. How tin this be washed?

This cannot be done The network administrator must choose to run a given network segment in either stateful or stateless style, and and so select the corresponding firewall type

Install a unmarried firewall that is capable of conducting both stateless and stateful inspections

Install a stateful firewall only These advanced devices audit everything a stateless firewall inspects in addition to state related factors

You must install 2 firewalls in series, then all packets laissez passer through the stateless firewall first and so the stateless firewall

Question 157)

In IPv4, how many of the 4 octets are used to define the network portion of the accost in a Course A network?

Question 158)

If you have to rely upon metadata to piece of work with the data at hand, you are probably working with which type of data?

Meta-structured data
Semi-structured data
Structured data
Unstructured data

Question 159)

Which two (two) forms of discovery must be conducted online? (Select 2)

Port scanning
Shoulder surfing
Social engineering
Packet sniffing

Question 160)

Which Incident Response Team model describes a squad that runs all incident response activities for a company?

Distributed
Central
Coordinating
Command

Question 161)

Which is the information protection process that prevents a suspicious information request from existence completed?

Data risk analysis
Data classification
Data discovery
Blocking, masking and quarantining

Question 162)

Which grade of penetration testing allows the testers partial knowledge of the systems they are trying to penetrate in advance of their attack to streamline costs and focus efforts?

Red Box Testing
Greyness Box Testing
White Box testing
Black Box Testing

Question 163)

Which blazon of application attack would include User denies performing an operation, attacker exploits an awarding without trace, and aggressor covers her tracks?

Auditing and logging
Hallmark
Potency
Input validation

Question 164)

True or Simulated. Thorough reconnaissance is an of import footstep in developing an effective cyber kill chain.

True
False

Question 165)

True or Fake. One of the principal challenges in cyber threat hunting is a lack of useful tools sold by too few vendors.

True
False

Question 166)

True or False. A large visitor has a data breach involving the theft of employee personnel records but no customer information of any kind. Since no external data was involved, the company does not have to report the breach to law enforcement.

True
False

Question 167)

You are the CEO of a big tech company and have just received an angry email that looks like it came from one of your biggest customers. The email says your visitor is overbilling the customer and asks that y'all examine the fastened invoice. You do simply find it blank, and so y'all answer politely to the sender asking for more than details. You never hear dorsum, but a week later your security team tells yous that your credentials have been used to access and exfiltrate big amounts of visitor financial information. What kind of attack did yous autumn victim to?

As a phishing assail
Every bit a whale attack
A shark attack
A fly phishing attack

Question 168)

Which of these statements about the PCI-DSS requirements for any company handling, processing or transmitting credit card data is true?

Muti-factor hallmark is required for all new bill of fare holders
Some form of mobile device management (MDM) must be used on all mobile credit card processing devices
All employees with direct access to cardholder data must be bonded
Cardholder data must be encrypted if it is sent beyond open up or public networks

Which Incident Response Squad model describes a team that acts as consulting experts to propose local IR teams?

Control
Analogous
Distributed
O Central

In a Linux file system, which files are independent in the \bin binder?

All user binary files, their libraries and headers
Executable files such as grep and ping
Configuration files such equally fstab and inittab
Directories such every bit /dwelling house and /usr

If a figurer needs to send a message to a system that is non part of the local network, where does it send the message?

To the system's domain name
To the system's IP address
The network's DNS server address
To the system'southward MAC accost
The network'south default gateway address
The network'southward DHCP server address

Which three (iii) of these statements about the TCP protocol are True? (Select three)

TCP is faster than UDP
TCP is connection-oriented
TCP packets are reassembled by the receiving system in the order in which they were sent
TCP is more reliable than UDP

A professor is non allowed to change a student's final grade subsequently she submits it without completing a special form to explain the circumstances that necessitated the change. This boosted step supports which attribute of the CIA Triad?

Authorization
Integrity
Confidentiality
Availability

Which of these is the best definition of a security risk?

An instance of being exposed to losses
Any potential danger that is associated with the exploitation of a vulnerability
A weakness in a system
The likelihood of a threat source exploiting a vulnerability

Trudy intercepts a plain text message sent by Alice to Bob, but in no way interferes with its delivery. Which aspect of the CIA Triad was violated?

Confidentiality
Integrity
Availability
All of the higher up

What is an reward symmetric cardinal encryption has over asymmetric key encryption?

Symmetric key encryption provides better security against Man-in-the-middle attacks than is possible with disproportionate key encryption
Symmetric key encryption is faster than asymmetric key encryption
Symmetric keys tin can be exchanged more deeply than asymmetric keys
Symmetric key encryption is harder to break than asymmetric key encryption

Which type of application attack would include network eavesdropping, dictionary attacks and cookie replays?