An organization is outlining data stewardship roles and responsibilities. Which

of the following employee roles would determine the purpose of data and

how to process it?

A security analyst is assessing a new y developed web application by testing

SQL injection, CSRF, and XML injection. Which of the following frameworks should the analyst consider?

A company has a flat network that is deployed in the cloud. Security policy states that all production and development servers must be segmented. Which of the following should be used to design the network to meet the security requirements?

Which of the following is a security implication of newer ICS devices that are becoming more common in corporations?

A network architect wants a server to have the ability to retain network availability even if one of the network switches it is connected to goes down.

Which of the following should the architect implement on the server to achieve this goal?

Security analysts have noticed the network becomes flooded with malicious packets at specific times of the day. Which of the following should the analysts use to investigate this issue?

An organization's Chief Information Security Officer is creating a position that will be responsible for implementing technical controls to protect data, including ensuring backups are properly maintained. Which of the following roles would MOST likely include these responsibilities?