What Is A Calculated Service Charge Type 85 First Citizens Bank

IBM Cybersecurity Analyst Professional Certificate Assessment Exam Answers

IBM Cybersecurity Annotator Professional Certificate Assessment Examination Quiz Answers

Warning: Jo Respond Green hai wo right hai merely
Jo Green Nahi hai. Usme se jo ek wrong selection tha usko hata diya hai

Question i)

Implementing a Security Awareness training program would be an case of which type of control?

Administrative control

Question 2)

Putting locks on a door is an example of which type of command?

Preventative

Question iii)

How would you classify a piece of malicious code that can replicate itself and spread to new systems?

A worm

Question iv)

To engage in bundle sniffing, you must implement promiscuous style on which device ?

A network carte du jour
An Intrusion Detection Organisation (IDS)
A sniffing router

Question v)

Which mechanism would aid assure the integrity of a message, but not do much to clinch confidentiality or availability.

Hashing

Question 6)

An organization wants to restrict employee after-hours access to its systems so it publishes a policy forbidding employees to piece of work outside of their assigned hours, and then makes sure the office doors remain locked on weekends. What two (2) types of controls are they using? (Select 2)

Physical
Administrative

Question 7)

Which two factors contribute to cryptographic strength? (Select 2)

The utilise of cyphers that are based on complex mathematical algorithms
The apply of cyphers that accept undergone public scrutiny

Question 8)

Trying to interruption an encryption primal past trying every possible combination of characters is called what?

A brute force set on

Question 9)

Which of the following describes the core goals of IT security?

The Open up Spider web Application Security Project (OWASP) Framework
The Business organisation Process Management Framework
The CIA Triad

Question 10)

Which iii (3) roles are typically found in an Information Security system? (Select 3)

Vulnerability Assessor
Chief Information Security Officer (CISO)
Penetration Tester

Question 11)

Problem Management, Change Management, and Incident Management are all key processes of which framework?

ITIL

Question 12)

Alice sends a bulletin to Bob that is intercepted by Trudy. Which scenario describes an integrity violation?

Trudy changes the message and then frontward information technology on
Trudy deletes the message without forwarding it
Trudy reads the message
Trudy cannot read it because it is encrypted but allows it to be delivered to Bob in its original form

Question 13)

In cybersecurity, Accountability is defined as what?

Beingness able to map an activeness to an identity

Question 14)

Multifactor hallmark (MFA) requires more than one authentication method to exist used before identity is authenticated. Which 3 (3) are authentication methods? (Select 3)

Something a person is
Something a person has
Something a person knows

Question 15)

Which iii (3) of the post-obit are Physical Admission Controls? (Select 3)

Door locks
Security guards
Fences

Question 16)

If you are setting up a Windows 10 laptop with a 32Gb difficult drive, which two (2) file organization could y'all select? (Select 2)

NTFS
FAT32

Question 17)

Which 3 (3) permissions can be set on a file in Linux? (Select 3)

write
execute
read

Question xviii)

If cost is the primary concern, which blazon of deject should be considered start?

Public cloud

Question nineteen)

Consolidating and virtualizing workloads should be done when?

Before moving the workloads to the deject

Question 20)

Which of the following is a self-regulating standard set up by the credit card industry in the US?

PCI-DSS

Question 21)

Which two (ii) of the following attack types target endpoints?

Advertisement Network
Spear Phishing

Question 22)

If an Endpoint Detection and Response (EDR) organisation detects that an endpoint does not accept a required patch installed, which statement best characterizes the actions it is able to take automatically?

The endpoint tin can be quarantined from all network resource except those that allow information technology to download and install the missing patch

Question 23)

Granting admission to a user based upon how high upwardly he is in an organization violates what basic security premise?

The principle of to the lowest degree privileges

Question 24)

The Windows Security App available in Windows 10 provides uses with which of the following protections?

Firewall and network protection
Family unit options (parental controls)
All of the higher up

Question 25)

Hashing ensures which of the following?

Integrity

Question 26)

Which of the post-obit practices helps assure the best results when implementing encryption?

Cull a reliable and proven published algorithm
Develop a unique cryptographic algorithm for your arrangement and keep them underground

Question 27)

Which of these methods ensures the authentication, non-repudiation and integrity of a digital communication?

Employ of digital signatures

Question 28)

Which of the following practices will help clinch the confidentiality of information in transit?

Disable certificate pinning
Take self-signed certificates
Implement HTTP Strict Transport Protocol (HSTS)

Question 29)

Which 3 (3) of these are benefits you can realize from using a NAT (Network Accost Translation) router? (Select iii)

Allows static one-to-one mapping of local IP addresses to global IP addresses
Allows dynamic mapping of many local IP addresses to a smaller number of global IP address only when they are needed
Allows internal IP addresses to be hidden from outside observers

Question 30)

Which statement best describes configuring a NAT router to use static mapping?

The organization will need as many registered IP addresses as it has computers that need Internet access

Question 31)

If a computer needs to send a bulletin to a system that is part of the local network, where does it send the message?

To the system'southward MAC address

Question 32)

Which are backdrop of a highly available system?

Redundancy, failover and monitoring

Question 33)

Which three (three) of these statements about the UDP protocol are True? (Select 3)

UDP is faster than TCP
UDP packets are reassembled by the receiving system in whatever order they are received
UDP is connectionless

Question 34)

What is 1 difference betwixt a Stateful Firewall and a Next Generation Firewall?

A NGFW understand which application sent a given packet

Question 35)

You are concerned that your organisation is actually non very experienced with securing information sources. Which hosting model would require you to secure the fewest data sources?

SaaS

Question 36)

Hassan is an engineer who works a normal day shift from his company's headquarters in Austin, TX USA. Which two (ii) of these activities raise the about crusade for concern? (Select ii)

Each night Hassan logs into his business relationship from an Isp in China
One evening, Hassan downloads all of the files associated with the new product he is working on

Question 37)

Which three (3) of the following are considered safe coding practices? (Select 3)

Use library functions in identify of Bone commands
Avoid using OS commands whenever possible
Avert running commands through a vanquish interpreter

Question 38)

Which three (3) items should be included in the Planning footstep of a penetration test? (Select 3)

Informing Need-to-know employees
Establishing Boundaries
Setting Objectives

Question 39)

Which portion of the pentest study would cover the hazard ranking, recommendations and roadmap?

Executive Summary

Question 40)

Spare workstations and servers, blank removable media, packet sniffers and protocol analyzers, all belong to which Incident Response resource category?

Incident Post-Analysis Resource
Incident Analysis Hardware and Software

Question 41)

NIST recommends considering a number of items, including a high level of testing and monitoring, during which stage of a comprehensive Containment, Eradication & Recovery strategy?

Recovery

Question 42)

True or False. Digital forensics is constructive in solving cyber crimes but is not considered effective in solving violent crimes such as rape and murder.

Faux

Question 43)

Which three (3) are common obstacles faced when trying to examine forensic information? (Select 3)

Selecting the right tools to assistance filter and exclude irrelevant data
Finding the relevant files among the hundreds of thousands institute on almost hard drives
Bypassing controls such equally passwords

Question 44)

What scripting concept will repeatedly execute the same block of code while a specified condition remains truthful?

Loops

Question 45)

Which two (two) statements most Python are truthful? (Select 2)

Python code is considered easy to debug compared with other popular programming languages
Python code is considered very readable by novice programmers

Question 46)

In the Python statement

pi="3"

What data type is the data type of the variable pi?

Question 47)

What will be printed by the post-obit cake of Python code?

def Add5(in)

out=in+5

return out

print(Add5(ten))

Question 48)

Which threat intelligence framework was developed by the Usa Regime to enable consistent characterization and categorization of cyberthreat events?

Cyber Threat Framework

Question 49)

True or False. An organization's security immune system should be integrated with outside organizations, including vendors and other third-parties.

True

Question l)

Which iii (three) of these are among the top 12 capabilities that a good information security and protection solution should provide? (Select 3)

Vulnerability assessment
Real-time alerting
Tokenization

Question 51)

True or False. For iOS and Android mobile devices, users must interact with the operating organisation only through a series of applications, but non directly.

True

Question 52)

All industries have their own unique data security challenges. Which of these industries has a particular concern with PCI-DSS compliance while having a large number of admission points staffed by low-level employees who accept access to payment bill of fare data?

Retail

Question 53)

True or False. WireShark has an impressive array of features and is distributed free of charge.

Truthful

Question 54)

In which component of a Common Vulnerability Score (CVSS) would privileges required exist reflected?

Base-Exploitability Subscore

Question 55)

The Decommission step in the DevSecOps Release, Deploy & Decommission phase contains which of these activities?

IAM controls to regulate authorisation

Question 56)

You calculate that there is a 2% probability that a cybercriminal will be able to steal credit menu numbers from your online storefront which will result in $10M in losses to your company. What have you only adamant?

A risk

Question 57)

Which one of the OWASP Pinnacle 10 Application Security Risks would be occur when an awarding'due south API exposes financial, healthcare or other PII data?

Sensitive data exposure

Question 58)

Which 3 (3) of these are Solution Building Blocks (SBBs)? (Select 3)

Virus Protection
Application Firewall
Spam Filter

Question 59)

A robust cybersecurity defense includes contributions from 3 areas, homo expertise, security analytics and bogus intelligence. Rapidly analyzing large quantities of unstructured data lends itself all-time to which of these areas?

Artificial intelligence

Question sixty)

The triad of a security operations centers (SOC) is People, Process and Engineering. Which part of the triad would network monitoring belong?

Technology

Question 61)

Which of these is a good definition for cyber threat hunting?

The act of proactively and aggressively identifying, intercepting, tracking, investigating and eliminating cyber adversaries as early as possible in the cyber kill chain

Question 62)

There is value brought past each of the IBM i2 Eia use cases. Which one of these provides firsthand alerting on brand compromises and fraud on the dark web.

Threat Discovery

Question 63)

Which three (three) soft skills are important to have in an organization'southward incident response team? (Select iii)

Advice
Teamwork
Trouble solving and Disquisitional thinking

Question 64)

Implementing strong endpoint detection and mitigation strategies falls into which phase of the incident response lifecycle?

Detection & Assay

Question 65)

Which three (3) of these statistics about phishing attacks are existent? (Select 3)

Around 15 million new phishing sites are created each calendar month
Phishing accounts for nearly 20% of data breaches
xxx% of phishing messages are opened by their targeted users

Question 66)

Which three (3) of these control processes are included in the PCI-DSS standard? (Select iii)

Implement strong access control measures
Regularly monitor and test networks
Maintain an data security policy

Question 67)

Which 3 (3) are malware types normally used in PoS attacks to steal credit carte data? (Select iii)

Alina
BlackPOS
vSkimmer

Question 68)

According to a 2019 Ponemon study, what percent of consumers indicated they would be willing to pay more for a product or service from a provider with better security?

Question 69)

You become a telephone telephone call from a technician at the "Windows visitor" who tells you that they accept detected a trouble with your system and would like to help you resolve it. In order to help, they need you to become to a web site and download a unproblematic utility that will allow them to fix the settings on your computer. Since you lot only own an Apple Mac, yous are suspicious of this caller and hang up. What would the attack vector have been if you had downloaded the "simple utility" every bit asked?

Remote Desktop Protocol (RDP)

Question 70)

What is an effective fully automated way to prevent malware from entering your system as an email zipper?

Anti-virus software

Question 71)

Truthful or False. The large majority of stolen credit bill of fare numbers are used quickly past the thief or a member of his/her family.

False

Question 72)

Which 3 (3) of these are PCI-DSS requirements for whatever company treatment, processing or transmitting credit card information? (Select 3)

Restrict access to cardholder data by business demand-to-know
Assign a unique ID to each person with calculator access
Restrict physical admission to cardholder data

Question 73)

Truthful or False. Communications of a data breach should be handled by a team composed of members of the IR squad, legal personnel and public relations.

True

Question 74)

A Coordinating incident response team model is characterized past which of the following?

Multiple incident response teams within an organization all of whom coordinate their activities simply within their state or section

Multiple incident response teams inside an organization simply one with authorisation to assure consistent policies and practices are followed across all teams

This term refers to a structure that assures the incident response squad'due south activities are coordinated with senior management and all appropriate departments inside and organization

Question 75)

The cyber hunting team and the SOC analysts are informally referred to equally the ____ and ____ teams, respectively.

Blue Red

Scarlet, Bluish

Question 76)

The partnership between security analysts and engineering science can be said to be grouped into 3 domains, human expertise, security analytics and artificial intelligence. The human being expertise domain would incorporate which three (iii) of these topics?

Brainchild
Dilemmas
Morals

Question 77)

Solution architectures oftentimes contain diagrams similar the one below. What does this diagram evidence?

<<Solution Architecture Data Menstruation.png>>

Functional components and data catamenia

Question 78)

Port numbers 1024 through 49151 are known every bit what?

Registered Ports

Question 79)

Which layer of the OSI model to packet sniffers operate on?

Data Link

Question 80)

True or False. Internal attacks from trusted employees represents every bit as pregnant a threat as external attacks from professional cyber criminals.

True

Question 81)

Co-ordinate to the FireEye Mandiant'south Security Effectiveness Written report 2020, what fraction of security tools are deployed with default settings and thus underperform expectations?

lxxx%

Question 82)

Which country had the highest average cost per breach in 2018 at $viii.19M

United states

Question 83)

Which two (ii) of these Python libraries provides useful statistical functions? (Select 2)

StatsModels

Scikit-larn

Question 84)

What will impress out when this block of Python lawmaking is run?

i=1

#i=i+one

#i=i+two

#i=i+three

print(i)

Question 85)

Which three (iii) statements about Python variables are truthful? (Select three)

A variable name must start with a letter or the underscore "_" character
Variables can modify type after they have been set
Variables do not have to be declared in advance of their apply

Question 86)

PowerShell is a configuration management framework for which operating system?

Windows

Question 87)

In digital forensics documenting the chain of custody of testify is critical. Which of these should be included in your chain of custody log?

All of the higher up

Question 88)

Forensic assay should e'er be conducted on a copy of the original data. Which two (2) types of copying are appropriate for getting data from a laptop acquired from a terminated employee, if you doubtable he has deleted incriminating files? (Select 2)

An incremental backup

A logical backup

Question 89)

Which of the post-obit would be considered an incident precursor?

An alert from your antivirus software indicating it had detected malware on your organization

An appear threat confronting your organization by a hactivist group

Question 90)

If a penetration test calls for you to create a diagram of the target network including the identity of hosts and servers besides as a list of open ports and published services, which tool would be the all-time fit for this task?

Nmap

Question 91)

Which type of list is considered best for safe coding practice?

Whitelist

Question 92)

In reviewing the security logs for a visitor's headquarters in New York City, which of these activities should not enhance much of a security concern?

A recently hired data scientist in the Medical Analytics section has repeatedly attempted to access the corporate financial database

An employee has started logging in from dwelling house for an hour or so during the last 2 weeks of each quarter

Question 93)

Data sources such as newspapers, books and spider web pages are considered which blazon of information?

Unstructured information

Semi-structured information

Structured data

Question 94)

Which iii (iii) of these statements about the TCP protocol are True? (Select iii)

TCP packets are reassembled by the receiving arrangement in the order in which they were sent

TCP is more reliable than UDP

TCP is connection-oriented

Question 95)

In IPv4, how many of the 4 octets are used to define the network portion of the accost in a Class B network?

Question 96)

A small company with 25 computers wishes to connect them to the Net using a NAT router. How many Public IP addresses will this company need to clinch all 25 computers can communicate with each other and other systems on the Cyberspace if they implement Port Address Translations?

Question 97)

Why is symmetric primal encryption the nearly common choice of methods to encryptic data at rest?

There are far more than keys available for use

Information technology is much faster than asymmetric key encryption

Question 98)

Which of the following statements most hashing is Truthful?

Hashing uses algorithms that are known as "i-style" functions

Question 99)

Why is hashing not a common method used for encrypting data?

Hashing is a one-way process then the original data cannot be reconstructed from a hash value

Question 100)

Public central encryption incorporating digital signatures ensures which of the following?

Confidentiality and Integrity

Question 101)

What is the master authentication protocol used by Microsoft in Active Directory?

Kerberos

Question 102)

Granting admission to a user account only those privileges necessary to perform its intended functions is known as what?

The principle of least privileges

Question 103)

What is the most common patch remediation frequency for nigh organizations?

Monthly

Annually

Question 104)

Island hopping is an attack method commonly used in which scenario?

Supply Chain Infiltration
Blocking access to a website for all users
Compromising a corporate VIP
Trojan Horse attacks

Question 105)

Security training for IT staff is what type of control?

Virtual

Operational

Physical

Question 106)

Which security concerns follow your workload even after information technology is successfully moved to the cloud?

All of the above

Question 107)

Which class of Cloud computing combines both public and private clouds?

Hybrid cloud

Question 108)

Which component of the Linux operating system interacts with your computer'southward hardware?

The kernel

Question 109)

The encryption and protocols used to foreclose unauthorized access to information are examples of which blazon of access control?

Technical

Question 110)

In cybersecurity, Actuality is defined as what?

The holding of being 18-carat and verifiable

Question 111)

ITIL is best described every bit what?

A collection of Information technology Service Management best practices

Question 112)

Which position is in charge of testing the security and effectiveness of computer information systems?

Information Security Auditor

Question 113)

A company wants to prevent employees from wasting time on social media sites. To accomplish this, a certificate forbidding use of these sites while at work is written and circulated and and so the firewalls are updated to block access to Facebook, Twitter and other popular sites. Which ii (2) types of security controls has the company just implemented? (Select 2)

Administrative

Technical

Question 114)

An electronic mail bulletin that is encrypted, uses a digital signature and carries a hash value would accost which aspects of the CIA Triad?

Confidentiality and Integrity

Question 115)

What would a slice of malicious lawmaking that gets installed on a estimator and reports back to the controller your keystrokes and other data it can assemble from your organization be called?

Spyware

Question 116)

Fancy Bears and Anonymous are examples of what?

Hacking organizations

Question 117)

Select the answer the fills in the blanks in the correct order.

A weakness in a system is a/an ____. The potential danger associated with this is a/an ____ that becomes a/an ____ when attacked by a bad actor.

vulnerability, threat, exploit

threat, exposure, take chances

threat histrion, vulnerability, exposure

Question 118)

Implement a filter to remove flooded packets earlier they reach the host is a countermeasure to which form of attack?

A Denial of Service (DoS) assail

Question 119)

Trudy intercepts a romantic plain-text message from Alice to her young man Sam. The message upsets Trudy so she forwards it to Bob, making it look similar Alice intended it for Bob from the beginning. Which attribute of the CIA Triad has Trudy violated ?

All of the above

Question 120)

Which factor contributes most to the strength of an encryption system?

How many people have admission to your public fundamental

The length of the encryption key used

The number of private keys used by the system

Question 121)

What is an advantage disproportionate primal encryption has over symmetric fundamental encryption?

Asymmetric keys can be exchanged more securely than symmetric keys

Asymmetric fundamental encryption is harder to pause than symmetric key encryption

Disproportionate key encryption is faster than symmetric key encryption

Question 122)

Which position is responsible for the "ethical hacking" of an organizations reckoner systems?

A Penetration Tester

Question 123)

Which iii (3) are considered best practices, baselines or frameworks? (Select iii)

ISO27000 serial

ITIL

COBIT

Question 124)

What does the "A" in the CIA Triad represent?

Availability

Question 125)

Which type of access command is based upon the field of study's clearance level and the objects classification?

Hierarchical Access Control (HAC)
Discretionary Access Control (DAC)
Mandatory Access Control (MAC)
Office Based Access Control (RBAC)

Question 126)

Windows 10 stores 64-bit applications in which directory?

\Programme Files

Question 127)

To build a virtual calculating environment, where is the hypervisor installed?

Betwixt the applications and the data sources
On the cloud's supervisory organization
Between the hardware and operating organization
Between the operating organization and applications

Question 128)

An identical email sent to millions of addresses at random would be classified as which type of attack?

A Shark attack

A Phishing attack

Question 129)

Which statement near drivers running in Windows kernel fashion is truthful?

Only disquisitional processes are permitted to run in kernel mode since at that place is nothing to prevent a

Question 130)

Symmetric key encryption past itself ensures which of the following?

Confidentiality and Integrity

Confidentiality merely

Confidentiality and Availability

Question 131)

Which statement best describes configuring a NAT router to utilize dynamic mapping?

The organisation volition need equally many registered IP addresses as information technology has computers that need Internet admission

Many registered IP addresses are mapped to a single registered IP address using different port numbers

Unregistered IP addresses are mapped to registered IP addresses as they are needed

The NAT router uses each computer's IP address for both internal and external communication

Question 132)

Which address blazon does a computer use to get a new IP address when information technology boots up?

The network's DHCP server accost

Question 133)

What is the principal difference between the IPv4 and IPv6 addressing schema?

IPv6 is significantly faster than IPv4

IPv6 is used merely for IOT devices

IPv6 allows for billions of times as many possible IP addresses

Question 134)

Which type of firewall understands which session a bundle belongs to and analyzes it accordingly?

A Next Generation Firewall (NGFW)

Question 135)

An employee calls the IT Helpdesk and admits that maybe, simply mayhap, the links in the electronic mail he clicked on this forenoon were non from the real Lottery Commission. What is the first thing you should tell the employee to practise?

Run a Port scan

Run an antivirus scan

Question 136)

A penetration tester involved in a "Black box" set on would be doing what?

Attempting to penetrate a client'due south systems as if she were an external hacker with no inside knowled

Question 137)

Which Mail Incident action would be concerned with maintaining the proper chain-of-custody?

Lessons learned coming together
Show retentiveness
Documentation review & update
Utilizing collected data

Question 138)

In digital forensics, which three (3) steps are involved in the drove of data? (Select 3)

Develop a plan to acquire the data

Verify the integrity of the data

Acquire the information

Question 139)

Which iii (3) of the following are considered scripting languages? (Select iii)

Perl

Bash

Python

Question 140)

What is the largest number that will exist printed during the execution of this Python while loop?

i=0

while (i<10):

impress(i)

i=i+1

Question 141)

Activities performed as a part of security intelligence can be divided into pre-exploit and mail service-exploit activities. Which two (two) of these are mail-exploit activities? (Select ii)

Gather full situational awareness through avant-garde security analytics

Perform forensic investigation

Question 142)

There are many proficient reasons for maintaining comprehensive backups of disquisitional data. Which aspect of the CIA Triad is most impacted by an system'due south backup practices?

Availability

Integrity

Authorization

Question 143)

Which stage of DevSecOps would contain the activities Internal/External testing, Continuous balls, and Compliance checking?

Exam

Code & build

Operate & monitor

Plan

Question 144)

Which one of the OWASP Height 10 Awarding Security Risks would be occur when there are no safeguards against a user being allowed to execute HTML or JavaScript in the user's browser that can hijack sessions.

Cross-site scripting

Question 145)

SIEM license costs are typically calculated based upon which two (two) factors? (Select 2)

Flows per infinitesimal (FPM)

Events per second (EPS)

Question 146)

True or False. If you take no improve place to offset hunting threats, first with a view of the global threat landscape then drill down to a regional view, manufacture view and finally a view of the threats specific to your own organization.

True

Question 147)

True or Imitation. Cloud-based storage or hosting providers are among the tiptop sources of third-political party breaches

True

Question 148)

You are looking very hard on the spider web for the lowest mortgage interest load yous can find and you come beyond a rate that is so low information technology could non perchance exist true. You lot check out the site to encounter that the terms are and chop-chop find y'all are the victim of a ransomware attack. What was the likely attack vector used by the bad actors?

Phishing

Malicious Links

Software Vulnerabilities

Question 149)

Very provocative manufactures that come up in news feeds or Google searches are sometimes called "click-bait". These articles oftentimes tempt you to link to other sites that tin can exist infected with malware. What attack vector is used past these click-bait sites to become you lot to go to the really bad sites?

Malicious Links

More New Questions

Question 150)

Which of the following defines a security threat?

Whatever potential danger capable of exploiting a weakness in a organisation
The likelihood that the weakness in a organization will be exploited
Ane instance of a weakness being exploited
A weakness in a system that could be exploited by a bad actor

Question 151)

Suspicious activity, similar IP addresses or ports being scanned sequentially, is a sign of which blazon of attack?

A mapping assault
A denial of service (DoS) attack
A phishing attack
An IP spoofing attack

Question 152)

Alice sends a message to Bob that is intercepted by Trudy. Which scenario describes a confidentiality violation?

Trudy deletes the message without forwarding it
Trudy cannot read it considering information technology is encrypted but allows information technology to be delivered to Bob in its original form
Trudy changes the bulletin and then forwards information technology on
Trudy reads the message

Question 153)

Which regulation contains the security dominion that requires all covered entities to maintain reasonable and advisable administrative, technical, and concrete safeguards for protecting electronic protected health data (e-PHI)?

PCI-DSS
ISO27000 serial
HIPAA
GDPR
NIST 800-53A

Question 154)

A good Endpoint Detection and Response arrangement (EDR) should have which three (three) of these capabilities? (Select 3)

Automatically quarantine noncompliant endpoints
Manage encryption keys for each endpoint
Manage thousands of devices at once
Deploying devices with network configurations

Question 155)

Which statement about encryption is True about data in use.

Data should always be kept encrypted since modern CPUs are fully capable of operating directly on encrypted data

It is vulnerable to theft and should be decrypted only for the briefest possible time while it is being operated on

Short of orchestrating a memory dump from a system crash, there is no applied way for malware to go at the data being processed, so dump logs are your simply real business concern

Data in active memory registers are not at run a risk of being stolen

Question 156)

For added security you decide to protect your network by conducting both a stateless and stateful inspection of incoming packets. How tin can this be done?

This cannot be done The network administrator must choose to run a given network segment in either stateful or stateless mode, and then select the corresponding firewall blazon

Install a unmarried firewall that is capable of conducting both stateless and stateful inspections

Install a stateful firewall only These advanced devices inspect everything a stateless firewall inspects in addition to land related factors

You must install 2 firewalls in series, so all packets laissez passer through the stateless firewall first and then the stateless firewall

Question 157)

In IPv4, how many of the iv octets are used to define the network portion of the accost in a Class A network?

Question 158)

If you accept to rely upon metadata to work with the information at hand, you are probably working with which type of data?

Meta-structured information
Semi-structured data
Structured data
Unstructured data

Question 159)

Which two (2) forms of discovery must be conducted online? (Select 2)

Port scanning
Shoulder surfing
Social engineering science
Packet sniffing

Question 160)

Which Incident Response Team model describes a team that runs all incident response activities for a visitor?

Distributed
Central
Analogous
Command

Question 161)

Which is the data protection process that prevents a suspicious information asking from beingness completed?

Data risk analysis
Information classification
Data discovery
Blocking, masking and quarantining

Question 162)

Which form of penetration testing allows the testers partial cognition of the systems they are trying to penetrate in advance of their set on to streamline costs and focus efforts?

Crimson Box Testing
Greyness Box Testing
White Box testing
Black Box Testing

Question 163)

Which blazon of application attack would include User denies performing an performance, assaulter exploits an awarding without trace, and assaulter covers her tracks?

Auditing and logging
Authentication
Authorization
Input validation

Question 164)

True or False. Thorough reconnaissance is an important step in developing an effective cyber impale concatenation.

True
False

Question 165)

Truthful or Faux. One of the primary challenges in cyber threat hunting is a lack of useful tools sold by too few vendors.

Truthful
False

Question 166)

Truthful or Imitation. A big visitor has a data alienation involving the theft of employee personnel records only no client data of whatsoever kind. Since no external data was involved, the company does not accept to report the breach to law enforcement.

Truthful
False

Question 167)

You are the CEO of a big tech company and have only received an angry email that looks like it came from i of your biggest customers. The email says your company is overbilling the client and asks that you examine the attached invoice. You exercise but find it bare, and so you reply politely to the sender request for more details. You never hear back, just a week later your security team tells you that your credentials have been used to access and exfiltrate large amounts of company financial data. What kind of assault did you lot autumn victim to?

As a phishing attack
As a whale attack
A shark set on
A fly phishing attack

Question 168)

Which of these statements about the PCI-DSS requirements for any visitor treatment, processing or transmitting credit card data is truthful?

Muti-factor hallmark is required for all new bill of fare holders
Some form of mobile device management (MDM) must be used on all mobile credit card processing devices
All employees with direct access to cardholder data must be bonded
Cardholder data must exist encrypted if it is sent across open or public networks

Which Incident Response Team model describes a squad that acts as consulting experts to advise local IR teams?

Control
Coordinating
Distributed
O Central

In a Linux file organization, which files are contained in the \bin folder?

All user binary files, their libraries and headers
Executable files such equally grep and ping
Configuration files such as fstab and inittab
Directories such every bit /dwelling and /usr

If a figurer needs to send a message to a organisation that is not function of the local network, where does information technology transport the message?

To the organisation'due south domain name
To the arrangement's IP address
The network's DNS server address
To the organisation'south MAC address
The network'due south default gateway address
The network'south DHCP server address

Which iii (3) of these statements about the TCP protocol are True? (Select 3)

TCP is faster than UDP
TCP is connection-oriented
TCP packets are reassembled past the receiving system in the society in which they were sent
TCP is more reliable than UDP

A professor is not immune to change a student's final grade after she submits it without completing a special form to explain the circumstances that necessitated the change. This additional step supports which attribute of the CIA Triad?

Authorization
Integrity
Confidentiality
Availability

Which of these is the best definition of a security risk?

An instance of being exposed to losses
Whatever potential danger that is associated with the exploitation of a vulnerability
A weakness in a organization
The likelihood of a threat source exploiting a vulnerability

Trudy intercepts a plain text message sent past Alice to Bob, but in no way interferes with its delivery. Which aspect of the CIA Triad was violated?

Confidentiality
Integrity
Availability
All of the above

What is an advantage symmetric key encryption has over asymmetric key encryption?

Symmetric primal encryption provides better security against Man-in-the-middle attacks than is possible with asymmetric fundamental encryption
Symmetric fundamental encryption is faster than asymmetric fundamental encryption
Symmetric keys can be exchanged more than deeply than disproportionate keys
Symmetric key encryption is harder to break than disproportionate key encryption

Which type of application assault would include network eavesdropping, dictionary attacks and cookie replays?