A security analyst needs to be proactive in understanding the types of attacks that could potentially target the company's executives. Which of the following intelligence sources should the security analyst review?

Structured threat information expression

Trusted automated exchange Of indicator information

Industry information-sharing and collaboration groups

A small business just recovered from a ransomware attack against its file servers by purchasing the decryption keys from the attackers. The issue was triggered by a phishing email and the IT administrator wants to ensure it does not happen again. Which of the following should the IT administrator do FIRST after recovery?

Scan the NAS for residual or dormant malware and take new daily backups that are tested on a frequent basis

Restrict administrative privileges and patch all systems and applications

Rebuild all workstations and install new antivirus software

Implement application Whitelisting and perform user application hardening

A website developer is working on a new e-commerce website and has asked an information security expert for the most appropriate way to store credit card numbers to create an easy reordering process. Which of the following methods would BEST accomplish this goal?

Hashing the credit card numbers upon entry

Salting the magnetic strip information

Encrypting the credit card information in transit

Tokenizing the credit cards in the database

An organization has a growing workforce that is mostly driven by additions to the sales department. Each newly hired salesperson relies on a mobile device to conduct business. The Chief Information Officer (CIO) is wondering if the organization may need to scale down just as quickly as scaled up. The CIO is also concerned about the organization's security and customer privacy. Which of the following would be BEST to address the CIO's concerns?

Implement BYOD for the sales department while leveraging the MDM.

Disallow new hires from using mobile devices for six months.

Select four devices for the sales department to use in a CYOD model.

Deploy mobile devices using the COPE methodology.

A document that appears to be malicious has been discovered in an email that was sent to a company's Chief Financial Officer (CFO). Which of the following would be BEST to allow a security analyst to gather information and confirm it is a malicious document without executing any code it may contain?

Search for matching file hashes on malware websites.

Open the document on an air-gapped network.

View the document's metadata for origin clues.

Detonate the document in an analysis sandbox.

The SOC is reviewing processes and procedures after a recent incident. The review indicates it took more than 30 minutes to determine that quarantining an infected host was the best course of action. This allowed the malware to spread to additional hosts before it was contained. Which of the following would be BEST to mprove the incident response process?

Updating the playbooks with better decision points

Dividing the network into trusted and untrusted zones

Providing additional end-user training on acceptable use

Implementing manual quarantining Of infected hosts

Security+ - 03

11th - 12th Grade

•

20 Qs

Similar activities

ASJ_XII_UH1

1st - 12th Grade

•

15 Qs

Python Quiz For Starters

3rd Grade - Professional Development

•

17 Qs

EmTech Q2 Post Test 5

11th Grade

•

15 Qs

Django-quiz

5th Grade - University

•

20 Qs

Arduino_Quiz

12th Grade

•

20 Qs

Kuis Dadakan ;)

10th Grade - University

•

15 Qs

Digital learning and Teams - etiquette & protocols

8th - 12th Grade

•

16 Qs

CPA 3NT Paper 1 Quiz 6 (Ping Yi Sec)

10th - 12th Grade

•

20 Qs

Security+ - 03

Quiz

•

Instructional Technology, Computers

•

11th - 12th Grade

•

Practice Problem

•

Hard

Ananda Dwi

Used 4+ times

FREE Resource

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A nuclear plant was the victim of a recent attack, and all the networks were air gapped. A subsequent investigation revealed a worm as the source of the issue. Which of the following BEST explains what happened?

A malicious USB was introduced by an unsuspecting employee.

The ICS firmware was outdated

A local machine had a RAT installed

The HVAC was connected to the maintenance vendor

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A malicious actor recently penetrated a company's network and moved laterally to the datacenter. Upon investigation, a forensics firm wants to know what was in the memory on the compromised server. Which of the following files should be given to the forensics firm?

Security

Application

Dump

Syslog

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A security analyst receives the configuration of a current VPN profile and notices the authentication is only applied to the IP datagram portion of the packet. Which of the following should the analyst implement to authenticate the entire packet?

ESP

SRTP

LDAP

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A smart switch has the ability to monitor electrical levels and shut off power to a building in the event of power surge or other fault situation. The switch was installed on a wired network in a hospital and is monitored by the facilities department via a cloud application. The security administrator isolated the switch on a separate VLAN and set up a patching routine. Which of the following steps should also be taken to harden the smart switch?

Set up an air gap for the switch,

Change the default password for the switch.

Place the switch in a Faraday cage.

Install a cable lock on the switch

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A user recently entered a username and password into a recruiting application website that had been forged to look like the legitimate site. upon investigation, a security analyst identifies the following:
1. The legitimate website's IP address is 10.1.1.20 and resolves to this IP.
2. The forged website's IP address appears to be 10.2.12.99, based on NetFlow records.
3. All three to the organization's DNS servers show the website correctly resolves to the legitimate IP.
4. DNS query logs show one of the three DNS servers returned a result of 10.2.12.99 (cached) at the approximate time of the suspected compromise.

Which of the following MOST likely occurred?

A reverse proxy was used to redirect network traffic.

An SSL strip MITM attack was performed

An attacker temporarily poisoned a name server.

An ARP poisoning attack was successfully executed.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following allows for functional test data to be used in new systems for testing and training purposes to protect the real data?

Data encryption

Data masking

Data deduplication

Data minimization

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A security administrator needs to create a RAID configuration that is focused on high read speeds and fault tolerance. It is unlikely that multiple drives will fail simultaneously. Which of the following RAID configurations should the administrator use?

RAID 0

RAID 1

RAID 5

RAID 10

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

15 questions

Empowerment Technology Online Quiz

Quiz

•

11th Grade

17 questions

Mechanical drive T3 -W1- M12

Quiz

•

12th Grade

17 questions

Security and Ethics

Quiz

•

9th - 12th Grade

21 questions

Computer System

Quiz

•

9th - 11th Grade

15 questions

Problem Solving : Design Solution

Quiz

•

12th Grade

15 questions

Bimestral 2P

Quiz

•

11th Grade

15 questions

Virtual Private Server

Quiz

•

12th Grade

15 questions

Imagen GIMP

Quiz

•

9th - 12th Grade

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Instructional Technology

10 questions

Reading a ruler in Inches

Quiz

•

4th Grade - Professio...

Security+ - 03

20 questions

A nuclear plant was the victim of a recent attack, and all the networks were air gapped. A subsequent investigation revealed a worm as the source of the issue. Which of the following BEST explains what happened?

A malicious actor recently penetrated a company's network and moved laterally to the datacenter. Upon investigation, a forensics firm wants to know what was in the memory on the compromised server. Which of the following files should be given to the forensics firm?

A security analyst receives the configuration of a current VPN profile and notices the authentication is only applied to the IP datagram portion of the packet. Which of the following should the analyst implement to authenticate the entire packet?

Which of the following allows for functional test data to be used in new systems for testing and training purposes to protect the real data?

A security administrator needs to create a RAID configuration that is focused on high read speeds and fault tolerance. It is unlikely that multiple drives will fail simultaneously. Which of the following RAID configurations should the administrator use?

A security analyst needs to be proactive in understanding the types of attacks that could potentially target the company's executives. Which of the following intelligence sources should the security analyst review?

Which of the following ISO standards is certified for privacy?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Instructional Technology