NO.428 A company recently experienced an attack in which a malicious actor was able to exfiltrate data by cracking stolen passwords, using a rainbow table the sensitive data. Which of the following should a security engineer do to prevent such an attack in the future?

(C). Implement password salting.

(B). Enforce password complexity.

NO.434 A network manager is concerned that business may be negatively impacted if the firewall in its datacenter goes offline. The manager would like to Implement a high availability pair to:

(B). remove the single point of failure

(A). decrease the mean ne between failures

(C). cut down the mean tine to repair

(D). reduce the recovery time objective

NO.438 A client sent several inquiries to a project manager about the delinquent delivery status of some critical reports. The project manager claimed the reports were previously sent via email, but then quickly generated and backdated the reports before submitting them as plain text within the body of a new email message thread. Which of the following actions MOST likely supports an investigation for fraudulent submission?

(B). Inspect the file metadata.

(A). Establish chain of custody.

(C). Reference the data retention policy.

(D). Review the email event logs

NO.440 While investigating a data leakage incident, a security analyst reviews access control to cloud-hosted data. The following information was presented in a security posture report. Based on the report, which of the following was the MOST likely attack vector used against the company?

(C). Potentially unwanted programs

NO.445 The facilities supervisor for a government agency is concerned about unauthorized access to environmental systems in the event the staff WiFi network is breached. Which of the blowing would BEST address this security concern?

(D). Segment the staff WiFi network from the environmental systems network.

(A). install a smart meter on the staff WiFi.

(B). Place the environmental systems in the same DHCP scope as the staff WiFi.

(C). Implement Zigbee on the staff WiFi access points.

NO.447 After reading a security bulletin, a network security manager is concerned that a malicious actor may have breached the network using the same software flaw. The exploit code is publicly available and has been reported as being used against other industries in the same vertical. Which of the following should the network security manager consult FIRST to determine a priority list for forensic review?

(A). The vulnerability scan output

(C). The full packet capture data

Comptia Sec+ 421-450

Professional Development

•

30 Qs

Similar activities

Cougar Quiz 2018-2019

Professional Development

•

25 Qs

ELECTRICAL SYSTEM OF TRACTORS

Professional Development

•

25 Qs

SOP

Professional Development

•

25 Qs

GESTION,APROVISIONAMIENTO Y COCINA

Professional Development

•

25 Qs

The Discipline of Sociology in Education

Professional Development

•

25 Qs

LPL NCR Sales Match 1

Professional Development

•

25 Qs

LG & LEGAL FOR CS

Professional Development

•

25 Qs

Pre-MiyerQUIZles_Nov

Professional Development

•

25 Qs

Comptia Sec+ 421-450

Quiz

•

Professional Development

•

Professional Development

•

Practice Problem

•

Easy

siso coc

Used 33+ times

FREE Resource

30 questions

Show all answers

MULTIPLE SELECT QUESTION

3 mins • 1 pt

NO.421 Which of the following function as preventive, detective, and deterrent controls to reduce
the risk of physical theft? (Select TWO).

(A). Mantraps

(B). Security guards

(C). Video surveillance

(D). Fences

(E). Bollards

(F). Antivirus

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

NO.422 A security analyst needs to perform periodic vulnerably scans on production systems. Which
of the following scan types would produce the BEST vulnerability scan report?

(A). Port

(B). Intrusive

(C). Host discovery

(D). Credentialed

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

NO.423 Which of the following will MOST likely cause machine learning and Al-enabled systems to
operate with unintended consequences?

(A). Stored procedures

(B). Buffer overflows

(C). Data bias

(D). Code reuse

MULTIPLE SELECT QUESTION

3 mins • 1 pt

NO.424 Which of the following are requirements that must be configured for PCI DSS compliance?
(Select TWO). ((F). Using vendor-supplied default passwords for system passwords)

(A). Testing security systems and processes regularly

(B). Installing and maintaining a web proxy to protect cardholder data

(C). Assigning a unique ID to each person with computer access

(D). Encrypting transmission of cardholder data across private networks

(E). Benchmarking security awareness training for contractors

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

NO.425 A security analyst is reviewing the following output from a system:
Which of the following is MOST likely being observed?

(A). ARP palsoning

(B). Man in the middle

(C). Denial of service

(D). DNS poisoning

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

NO.426 Customers reported their antivirus software flagged one of the company's primary software
products as suspicious. The company's Chief Information Security Officer has tasked the developer
with determining a method to create a trust model between the software and the customer's
antivirus software. Which of the following would be the BEST solution?

(A). Code signing

(B). Domain validation

(C). Extended validation

(D). Self-signing

MULTIPLE CHOICE QUESTION

3 mins • 1 pt

NO.427 As part of a company's ongoing SOC maturation process, the company wants to implement
a method to share cyberthreat intelligence data with outside security partners. Which of the
following will the company MOST likely implement?

(A). TAXII

(B). TLP

(C). TTP

(D). STIX

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

25 questions

Life Skills

Quiz

•

12th Grade - Professi...

25 questions

Aparell digestiu (Fisiologia)

Quiz

•

Professional Development

25 questions

psychology

Quiz

•

Professional Development

25 questions

Conversatorio Tecnología Gráfica 3

Quiz

•

University - Professi...

25 questions

FBS DEPARTMENT CLASS_LAMPUNG

Quiz

•

Professional Development

25 questions

CISS - Budaya Kerja KPP

Quiz

•

Professional Development

25 questions

Product Knowledge Suzuki

Quiz

•

12th Grade - Professi...

25 questions

FAFD2

Quiz

•

Professional Development

Popular Resources on Wayground

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

15 questions

4:3 Model Multiplication of Decimals by Whole Numbers

Quiz

•

5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

The Best Christmas Pageant Ever Chapters 1 & 2

Quiz

•

4th Grade

12 questions

Unit 4 Review Day

Quiz

•

3rd Grade

10 questions

Identify Iconic Christmas Movie Scenes

Interactive video

•

6th - 10th Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

Discover more resources for Professional Development

21 questions

Name that Holiday Movie

Quiz

•

Professional Development

Comptia Sec+ 421-450

30 questions

NO.421 Which of the following function as preventive, detective, and deterrent controls to reducethe risk of physical theft? (Select TWO).

NO.422 A security analyst needs to perform periodic vulnerably scans on production systems. Whichof the following scan types would produce the BEST vulnerability scan report?

NO.423 Which of the following will MOST likely cause machine learning and Al-enabled systems tooperate with unintended consequences?

NO.424 Which of the following are requirements that must be configured for PCI DSS compliance?(Select TWO). ((F). Using vendor-supplied default passwords for system passwords)

NO.425 A security analyst is reviewing the following output from a system:Which of the following is MOST likely being observed?

NO.427 As part of a company's ongoing SOC maturation process, the company wants to implementa method to share cyberthreat intelligence data with outside security partners. Which of thefollowing will the company MOST likely implement?

NO.428 A company recently experienced an attack in which a malicious actor was able to exfiltratedata by cracking stolen passwords, using a rainbow table the sensitive data. Which of the followingshould a security engineer do to prevent such an attack in the future?

NO.429 After consulting with the Chief Risk Officer (CRO). a manager decides to acquirecybersecurity insurance for the company Which of the following risk management strategies is themanager adopting?

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Professional Development

NO.421 Which of the following function as preventive, detective, and deterrent controls to reduce
the risk of physical theft? (Select TWO).

NO.422 A security analyst needs to perform periodic vulnerably scans on production systems. Which
of the following scan types would produce the BEST vulnerability scan report?

NO.423 Which of the following will MOST likely cause machine learning and Al-enabled systems to
operate with unintended consequences?

NO.424 Which of the following are requirements that must be configured for PCI DSS compliance?
(Select TWO). ((F). Using vendor-supplied default passwords for system passwords)

NO.425 A security analyst is reviewing the following output from a system:
Which of the following is MOST likely being observed?

NO.427 As part of a company's ongoing SOC maturation process, the company wants to implement
a method to share cyberthreat intelligence data with outside security partners. Which of the
following will the company MOST likely implement?

NO.428 A company recently experienced an attack in which a malicious actor was able to exfiltrate
data by cracking stolen passwords, using a rainbow table the sensitive data. Which of the following
should a security engineer do to prevent such an attack in the future?

NO.429 After consulting with the Chief Risk Officer (CRO). a manager decides to acquire
cybersecurity insurance for the company Which of the following risk management strategies is the
manager adopting?