A security analyst needs to be proactive in understanding the types of attacks that could potentially target the company's executives. Which of the following intelligence sources should the security analyst review?

Structured threat information expression

Trusted automated exchange Of indicator information

Industry information-sharing and collaboration groups

A small business just recovered from a ransomware attack against its file servers by purchasing the decryption keys from the attackers. The issue was triggered by a phishing email and the IT administrator wants to ensure it does not happen again. Which of the following should the IT administrator do FIRST after recovery?

Scan the NAS for residual or dormant malware and take new daily backups that are tested on a frequent basis

Restrict administrative privileges and patch all systems and applications

Rebuild all workstations and install new antivirus software

Implement application Whitelisting and perform user application hardening

A website developer is working on a new e-commerce website and has asked an information security expert for the most appropriate way to store credit card numbers to create an easy reordering process. Which of the following methods would BEST accomplish this goal?

Hashing the credit card numbers upon entry

Salting the magnetic strip information

Encrypting the credit card information in transit

Tokenizing the credit cards in the database

An organization has a growing workforce that is mostly driven by additions to the sales department. Each newly hired salesperson relies on a mobile device to conduct business. The Chief Information Officer (CIO) is wondering if the organization may need to scale down just as quickly as scaled up. The CIO is also concerned about the organization's security and customer privacy. Which of the following would be BEST to address the CIO's concerns?

Implement BYOD for the sales department while leveraging the MDM.

Disallow new hires from using mobile devices for six months.

Select four devices for the sales department to use in a CYOD model.

Deploy mobile devices using the COPE methodology.

A document that appears to be malicious has been discovered in an email that was sent to a company's Chief Financial Officer (CFO). Which of the following would be BEST to allow a security analyst to gather information and confirm it is a malicious document without executing any code it may contain?

Search for matching file hashes on malware websites.

Open the document on an air-gapped network.

View the document's metadata for origin clues.

Detonate the document in an analysis sandbox.

The SOC is reviewing processes and procedures after a recent incident. The review indicates it took more than 30 minutes to determine that quarantining an infected host was the best course of action. This allowed the malware to spread to additional hosts before it was contained. Which of the following would be BEST to mprove the incident response process?

Updating the playbooks with better decision points

Dividing the network into trusted and untrusted zones

Providing additional end-user training on acceptable use

Implementing manual quarantining Of infected hosts

Security+ - 03

11th - 12th Grade

•

20 Qs

Similar activities

ASPEK LEGAL TIK XII

12th Grade

•

20 Qs

Pengayaan Informatika

12th Grade

•

20 Qs

โปรแกรมตารางงาน ทดสอบปลายภาค ชุดที่1

10th - 12th Grade

•

20 Qs

11° Evaluación bimestral de informática

11th Grade

•

15 Qs

TIN 11 BÀI 11 KIỂU MẢNG

11th Grade

•

18 Qs

Начала программирования на языке Паскаль

8th - 11th Grade

•

15 Qs

Online Platform Block Q

11th - 12th Grade

•

20 Qs

City & Guilds Award in Business Processes

12th Grade

•

20 Qs

Security+ - 03

Quiz

•

Instructional Technology, Computers

•

11th - 12th Grade

•

Practice Problem

•

Hard

Ananda Dwi

Used 4+ times

FREE Resource

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A nuclear plant was the victim of a recent attack, and all the networks were air gapped. A subsequent investigation revealed a worm as the source of the issue. Which of the following BEST explains what happened?

A malicious USB was introduced by an unsuspecting employee.

The ICS firmware was outdated

A local machine had a RAT installed

The HVAC was connected to the maintenance vendor

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A malicious actor recently penetrated a company's network and moved laterally to the datacenter. Upon investigation, a forensics firm wants to know what was in the memory on the compromised server. Which of the following files should be given to the forensics firm?

Security

Application

Dump

Syslog

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A security analyst receives the configuration of a current VPN profile and notices the authentication is only applied to the IP datagram portion of the packet. Which of the following should the analyst implement to authenticate the entire packet?

ESP

SRTP

LDAP

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A smart switch has the ability to monitor electrical levels and shut off power to a building in the event of power surge or other fault situation. The switch was installed on a wired network in a hospital and is monitored by the facilities department via a cloud application. The security administrator isolated the switch on a separate VLAN and set up a patching routine. Which of the following steps should also be taken to harden the smart switch?

Set up an air gap for the switch,

Change the default password for the switch.

Place the switch in a Faraday cage.

Install a cable lock on the switch

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A user recently entered a username and password into a recruiting application website that had been forged to look like the legitimate site. upon investigation, a security analyst identifies the following:
1. The legitimate website's IP address is 10.1.1.20 and resolves to this IP.
2. The forged website's IP address appears to be 10.2.12.99, based on NetFlow records.
3. All three to the organization's DNS servers show the website correctly resolves to the legitimate IP.
4. DNS query logs show one of the three DNS servers returned a result of 10.2.12.99 (cached) at the approximate time of the suspected compromise.

Which of the following MOST likely occurred?

A reverse proxy was used to redirect network traffic.

An SSL strip MITM attack was performed

An attacker temporarily poisoned a name server.

An ARP poisoning attack was successfully executed.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following allows for functional test data to be used in new systems for testing and training purposes to protect the real data?

Data encryption

Data masking

Data deduplication

Data minimization

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A security administrator needs to create a RAID configuration that is focused on high read speeds and fault tolerance. It is unlikely that multiple drives will fail simultaneously. Which of the following RAID configurations should the administrator use?

RAID 0

RAID 1

RAID 5

RAID 10

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

By signing up, you agree to our Terms of Service & Privacy Policy

Already have an account?

Similar Resources on Wayground

15 questions

4.6.4 Logic Gates

Quiz

•

10th Grade - Professi...

20 questions

Soal Pilihan Ganda Topologi Jaringan XI TKJ 2

Quiz

•

11th Grade

20 questions

Google

Quiz

•

7th - 12th Grade

15 questions

Excel

Quiz

•

12th Grade

21 questions

Lecture Exercise Topic 1.3

Quiz

•

12th Grade

17 questions

Data Structures: 1D,2D & List

Quiz

•

11th Grade

23 questions

ÔN TẬP CUỐI HKI TIN HỌC 3

Quiz

•

3rd Grade - University

20 questions

Quiz ASJ

Quiz

•

12th Grade

Popular Resources on Wayground

10 questions

Honoring the Significance of Veterans Day

Interactive video

•

6th - 10th Grade

9 questions

FOREST Community of Caring

Lesson

•

1st - 5th Grade

10 questions

Exploring Veterans Day: Facts and Celebrations for Kids

Interactive video

•

6th - 10th Grade

19 questions

Veterans Day

Quiz

•

5th Grade

14 questions

General Technology Use Quiz

Quiz

•

8th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

15 questions

Circuits, Light Energy, and Forces

Quiz

•

5th Grade

19 questions

Thanksgiving Trivia

Quiz

•

6th Grade

Discover more resources for Instructional Technology

28 questions

Ser vs estar

Quiz

•

9th - 12th Grade

20 questions

Thanksgiving Trivia

Quiz

•

11th Grade

34 questions

Geometric Terms

Quiz

•

9th - 12th Grade

20 questions

-AR -ER -IR present tense

Quiz

•

10th - 12th Grade

16 questions

Proportional Relationships And Constant Of Proportionality

Quiz

•

7th - 12th Grade

10 questions

DNA Replication Concepts and Mechanisms

Interactive video

•

7th - 12th Grade

10 questions

Unit 2: LS.Bio.1.5-LS.Bio.2.2 Power Vocab

Quiz

•

9th - 12th Grade

20 questions

Food Chains and Food Webs

Quiz

•

7th - 12th Grade

Security+ - 03

20 questions

A nuclear plant was the victim of a recent attack, and all the networks were air gapped. A subsequent investigation revealed a worm as the source of the issue. Which of the following BEST explains what happened?

A malicious actor recently penetrated a company's network and moved laterally to the datacenter. Upon investigation, a forensics firm wants to know what was in the memory on the compromised server. Which of the following files should be given to the forensics firm?

A security analyst receives the configuration of a current VPN profile and notices the authentication is only applied to the IP datagram portion of the packet. Which of the following should the analyst implement to authenticate the entire packet?

Which of the following allows for functional test data to be used in new systems for testing and training purposes to protect the real data?

A security administrator needs to create a RAID configuration that is focused on high read speeds and fault tolerance. It is unlikely that multiple drives will fail simultaneously. Which of the following RAID configurations should the administrator use?

A security analyst needs to be proactive in understanding the types of attacks that could potentially target the company's executives. Which of the following intelligence sources should the security analyst review?

Which of the following ISO standards is certified for privacy?

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Instructional Technology