Which of the following is the purpose of a risk register?

To identify the risk, the risk owner, and the risk measures

To define the level or risk using probability and likelihood

To register the risk with the required regulatory agencies

To formally log the type of risk mitigation strategy the organization is using

A security analyst is using a recently released security advisory to review historical logs, looking for the specific activity that was outlined in the advisory. Which of the following is the analyst doing?

Credentialed vulnerability scanning

A Chief Information Security Officer (CISO) is concerned about the organization's ability to continue business operation in the event of a prolonged DDoS attack on its local datacenter that consumes database resources. Which of the following will the CISO MOST likely recommend to mitigate this risk?

Implement a hot-site failover location

Upgrade the bandwidth available into the datacenter

Switch to a complete SaaS offering to customers

Implement a challenge response test on all end-user queries

CompTIA Sec+

Authored by Miftah Rahman

Computers

University - Professional Development

Used 119+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

1 min • 5 pts

A company processes highly sensitive data and senior management wants to protect the sensitive data by utilizing classification labels. Which of the following access control schemes would be BEST for the company to implement?

Discretionary

Rule-based

Role-based

Mandatory

MULTIPLE CHOICE QUESTION

1 min • 5 pts

The CSIRT is reviewing the lessons learned from a recent incident. A worm was able to spread unhindered throughout the network and infect a large number of computers and servers. Which of the following recommendations would be BEST to mitigate the impacts of a similar incident in the future?

Install a NIDS device at the boundary.

Segment the network with firewalls.

Update all antivirus signatures daily.

Implement application blacklisting.

MULTIPLE CHOICE QUESTION

1 min • 5 pts

A network engineer needs to create a plan for upgrading the wireless infrastructure in a large office. Priority must be given to areas that are currently experiencing latency and connection issues. Which of the following would be the BEST resource for determining the order of priority?

Nmap

Heat Map

Network DIagrams

Wireshark

MULTIPLE CHOICE QUESTION

1 min • 5 pts

An organization is developing a plan in the event of a complete loss of critical systems and data. Which of the following plans is the organization MOST likely developing?

Incident Response

COmmunications

Disaster Recovery

Data Retention

MULTIPLE CHOICE QUESTION

1 min • 5 pts

A company is adopting a BYOD policy and is looking for a comprehensive solution to protect company information on user devices. Which of the following solutions would BEST support the policy?

Mobile device management

Full-device encryption

Remote wipe

Biometrics

MULTIPLE CHOICE QUESTION

1 min • 5 pts

A database administrator needs to ensure all passwords are stored in a secure manner, so the administrate adds randomly generated data to each password before string. Which of the following techniques BEST explains this action?

Predictability

Key STretching

Salting

Hashing

MULTIPLE CHOICE QUESTION

1 min • 5 pts

When selecting a technical solution for identity management, an architect chooses to go from an in-house to a third-party SaaS provider. Which of the following risk management strategies is this an example of?

Acceptance

Mitigation

Avoidance

Transference

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

Révision HTML, CSS et JavaScript

Quiz

•

Professional Development

16 questions

Gerência do Processador

Quiz

•

University

20 questions

Computación 1ro y 2do básico

Quiz

•

1st Grade - University

15 questions

IT 209

Quiz

•

University

20 questions

Teaching Strategy

Quiz

•

Professional Development

20 questions

PHP First Internal Practical Viva

Quiz

•

University

15 questions

Assessment 08

Quiz

•

University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

20 questions

Figurative Language Review

Quiz

•

6th Grade

Discover more resources for Computers

30 questions

Quiz 1 Review

Quiz

•

University

CompTIA Sec+

A company processes highly sensitive data and senior management wants to protect the sensitive data by utilizing classification labels. Which of the following access control schemes would be BEST for the company to implement?

The CSIRT is reviewing the lessons learned from a recent incident. A worm was able to spread unhindered throughout the network and infect a large number of computers and servers. Which of the following recommendations would be BEST to mitigate the impacts of a similar incident in the future?

A network engineer needs to create a plan for upgrading the wireless infrastructure in a large office. Priority must be given to areas that are currently experiencing latency and connection issues. Which of the following would be the BEST resource for determining the order of priority?

An organization is developing a plan in the event of a complete loss of critical systems and data. Which of the following plans is the organization MOST likely developing?

A company is adopting a BYOD policy and is looking for a comprehensive solution to protect company information on user devices. Which of the following solutions would BEST support the policy?

A database administrator needs to ensure all passwords are stored in a secure manner, so the administrate adds randomly generated data to each password before string. Which of the following techniques BEST explains this action?

When selecting a technical solution for identity management, an architect chooses to go from an in-house to a third-party SaaS provider. Which of the following risk management strategies is this an example of?

Which of the following incident response steps involves actions to protect critical systems while maintaining business operations?

Which of the following disaster recovery tests is The LEAST time-consuming for the disaster recovery team?

An organization suffered an outage and a critical system took 90 minutes to come back online. Though there was no data loss during the outage, the expectation was that the critical system would be available again within 60 minutes Which of the following is the 60-minute expectation an example of:

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers