Quiz about Cybersecurity quiz

Question 1

NO.496 A wet-known organization has been experiencing attacks from APTs. The organization is concerned that custom malware is being created and emailed into the company or installed on USB stocks that are dropped in parking lots. Which of the following is the best defense against this scenario?

Accepted Answer

C Implementing application execution in a sandbox for unknown software

Answer

A. Configuring signature-based antivirus to update every 30 minutes

Answer

B. Enforcing S/MIME for email and automatically encrypting USB drives upon assertion

Answer

D. Fuzzing new files for vulnerabilities if they are not digitally signed

Question 2

NO.497 A security administrator is seeking a solution to prevent unauthorized access to the internal network. Which of the following security solutions should the administrator choose?

Accepted Answer

D VPN

Answer

A. MAC filtering

Answer

B. Anti-malware

Answer

C. Translation gateway

Question 3

NO.498 A security architect is designing the new outbound internet for a small company. The company would like all 50 users to share the same single Internet connection. In addition, users will not be permitted to use social media sites or external email services while at work. Which of the following should be included in this design to satisfy these requirements? (Select TWO).

Accepted Answer

C NAT

Accepted Answer

D VPN

Answer

A. DLP

Answer

B. MAC filtering

Answer

E. Content filler

Question 4

NO.499 A software development manager wants to ensure the authenticity of the code created by the company. Which of the following options is the most appropriate?

Accepted Answer

B Performing code signing on company-developed software

Answer

A. Testing input validation on the user input fields

Answer

C. Performing static code analysis on the software

Answer

D. Ensuring secure cookies are used

Question 5

NO.500 Which of the following is the MOST secure but LEAST expensive data destruction method for data that is stored on hard drives?

Accepted Answer

B Shredding

Answer

A. Pulverizing

Answer

C. Incinerating

Answer

D. Degaussing

Question 6

NO.501 A security analyst received the following requirements for the deployment of a security camera solution: The cameras must be viewable by the on-site security guards. + The cameras must be able to communicate with the video storage server. The cameras must have the time synchronized automatically. IT Certification Guaranteed, The Easy Way! 233 The cameras must not be reachable directly via the internet. The servers for the cameras and video storage must be available for remote maintenance via the company VPN. Which of the following should the security analyst recommend to securely meet the remote connectivity requirements?

Accepted Answer

B Deploying a jump server that is accessible via the internal network that can communicate with the servers

Answer

A. Creating firewall rules that prevent outgoing traffic from the subnet the servers and cameras reside on

Answer

C. Disabling all unused ports on the switch that the cameras are plugged into and enabling MAC filtering

Answer

D. Implementing a WAF to allow traffic from the local NTP server to the camera server

Question 7

NO.502 A government organization is developing an advanced Al defense system. Develop-ers are using information collected from third-party providers Analysts are no-ticing inconsistencies in the expected powers Of then learning and attribute the Outcome to a recent attack on one of the suppliers. Which of the following IS the most likely reason for the inaccuracy of the system?

Accepted Answer

B Tainted training data

Answer

A. Improper algorithms security

Answer

C. virus

Answer

D. Cryptomalware

Question 8

NO.503 A help desk technician receives an email from the Chief Information Officer (C/O) asking for documents. The technician knows the CIO is on vacation for a few weeks. Which of the following should the technician do to validate the authenticity of the email?

Accepted Answer

B Hover the mouse over the CIO's email address to verify the email address.

Answer

A. Check the metadata in the email header of the received path in reverse order to follow the email's path.

Answer

C. Look at the metadata in the email header and verify the "From." line matches the CIO's email address.

Answer

D. Forward the email to the CIO and ask if the CIO sent the email requesting the documents.

Question 9

NO.504 The findings in a consultant's report indicate the most critical risk to the security posture from an incident response perspective is a lack of workstation and server investigation capabilities. Which of the following should be implemented to remediate this risk?

Accepted Answer

D EDR

Answer

A. HIDS

Answer

B. FDE

Answer

C. NGFW

Question 10

NO.505 Security engineers are working on digital certificate management with the top priority of making administration easier. Which of the following certificates is the best option?

Accepted Answer

B Wildcard

Answer

A. User

Answer

C. Self-signed

Answer

D. Root

Question 11

NO.506 Which of the following holds staff accountable while escorting unauthorized personnel?

Accepted Answer

D Visitor logs

Answer

A. Locks

Answer

B. Badges

Answer

C. Cameras

Question 12

NO.507 A user received an SMS on a mobile phone that asked for bank details. Which of the following social engineering techniques was used in this case?

Accepted Answer

D Smishing

Answer

A. SPIM

Answer

B. Vishing

Answer

C. Spear phishing

Question 13

NO.508 During a Chief Information Security Officer (CISO) convention to discuss security awareness, the attendees are provided with a network connection to use as a resource. As the convention progresses, one of the attendees starts to notice delays in the connection, and the HIIPS site requests are reverting to HTTP Which of the following BEST describes what is happening?

Accepted Answer

B DNS hijacking to reroute traffic

Answer

A. Birthday collision on the certificate key

Answer

C. Brute force to the access point

Answer

D. ASSLILS downgrade

Question 14

NO.509 A company is developing a new initiative to reduce insider threats. Which of the following should the company focus on to make the greatest impact?

Accepted Answer

B Least privilege

Answer

A. Social media analysis

Answer

C. Nondisclosure agreements

Answer

D. Mandatory vacation

Question 15

NO.510 A security analyst needs to implement an MDM solution for BYOD users that will allow the company to retain control over company emails residing on the devices and limit data exfiltration that might occur if the devices are lost or stolen. Which of the following would BEST meet these requirements? (Select TWO).

Accepted Answer

D Containerization

Accepted Answer

E Application whitelisting

Answer

A. Full-device encryption

Answer

B. Network usage rules

Answer

C. Geofencing

Question 16

NO.511 After a WiFi scan of a local office was conducted, an unknown wireless signal was identified Upon investigation, an unknown Raspberry Pi device was found connected to an Ethernet port using a single connection. Which of the following BEST describes the purpose of this device?

Accepted Answer

C Rogue access point

Answer

A. loT sensor

Answer

B. Evil twin

Answer

D. On-path attack

Question 17

NO.512 Which of the following agreements defines response time, escalation points, and performance metrics?

Accepted Answer

D SLA

Answer

A. BPA

Answer

B. MOA

Answer

C. NDA

Question 18

NO.513 A security administrator is working on a solution to protect passwords stored in a database against rainbow table attacks Which of the following should the administrator consider?

Accepted Answer

B Salting

Answer

A. Hashing

Answer

C. Lightweight cryptography

Answer

D. Steganography

Question 19

NO.514 A company reduced the area utilized in its datacenter by creating virtual networking through automation and by creating provisioning routes and rules through scripting. Which of the following does this example describe?

Accepted Answer

A laC

Answer

B. MSSP

Answer

C. Containers

Answer

D. SaaS

Question 20

NO.515 A company policy requires third-party suppliers to self-report data breaches within a specific time frame. Which of the following third-party risk management policies is the company complying with?

Accepted Answer

B SLA

Answer

A. MOU

Answer

C. EOL

Answer

D. NDA

Question 21

NO.516 A security architect at a large, multinational organization is concerned about the complexities and overhead of managing multiple encryption keys securely in a multicioud provider environment. The security architect is looking for a solution with reduced latency to allow the incorporation of the organization's existing keys and to maintain consistent, centralized control and management regardless of the data location. Which of the following would best meet the architect's objectives?

Accepted Answer

C HSMaas

Answer

A. Trusted Platform Module

Answer

B. laaS

Answer

D. PaaS

Question 22

NO.517 A security assessment found that several embedded systems are running unsecure protocols. These Systems were purchased two years ago and the company that developed them is no longer in business Which of the following constraints BEST describes the reason the findings cannot be remediated?

Accepted Answer

D Unavailable patch

Answer

A. inability to authenticate

Answer

B. Implied trust

Answer

C. Lack of computing power

Question 23

NO.518 A company is concerned about individuals driving a car into the building to gain access. Which of the following security controls would work BEST to prevent this from happening?

Accepted Answer

A Bollard

Answer

B. Camera

Answer

C. Alarms

Answer

D. Signage

Answer

E. Access control vestibule

Question 24

NO.519 A cybersecurity analyst reviews the log files from a web server end sees a series of files that indicate a directory traversal attack has occurred Which of the following is the analyst most likely seeing?

Accepted Answer

Question 25

NO.520 A cybersecurity administrator needs to implement a Layer 7 security control on a network and block potential attacks. Which of the following can block an attack at Layer 7? (Select TWO).

Accepted Answer

E NIDS

Answer

A. HIDS

Answer

B. NIPS

Answer

C. HSM

Answer

D. WAF

Question 26

NO.521 Which of the following would a security analyst use to determine if other companies in the same sector have seen similar malicious activity against their systems?

Accepted Answer

D Threat feeds

Answer

A. Vulnerability scanner

Answer

B. Open-source intelligence

Answer

C. Packet capture

Question 27

NO.522 A research company discovered that an unauthorized piece of software has been detected on a small number of machines in its lab The researchers collaborate with other machines using port 445 and on the internet using port 443 The unau-thorized software is starting to be seen on additional machines outside of the lab and is making outbound communications using HTTPS and SMS. The security team has been instructed to resolve the issue as quickly as possible while causing minimal disruption to the researchers. Which of the following is the best course Of action in this scenario?

Accepted Answer

B Place the machines with the unapproved software in containment

Answer

A. Update the host firewalls to block outbound Stv1B.

Answer

C. Place the unauthorized application in a Bocklist

Answer

D. Implement a content filter to block the unauthorized software communica-tion,

Question 28

NO.523 A network architect wants a server to have the ability to retain network availability even if one of the network switches it is connected to goes down. Which of the following should the architect implement on the server to achieve this goal?

Accepted Answer

C NIC teaming

Answer

A. RAID

Answer

B. UPS

Answer

D. Load balancing

Question 29

NO.524 Security analysts have noticed the network becomes flooded with malicious packets at specific times of the day. Which of the following should the analysts use to investigate this issue?

Accepted Answer

D Correlation dashboards

Answer

A. Web metadata

Answer

B. Bandwidth monitors

Answer

C. System files

Question 30

NO.525 An organization is building a new headquarters and has placed fake cameras around the building in an attempt to discourage potential intruders. Which of the following kinds of controls describes this security method?

Accepted Answer

B Deterrent

Answer

A. Detective

Answer

C. Directive

Answer

D. Corrective

Question 31

NO.526 A security architect is working on an email solution that will send sensitive data. However, funds are not currently available in the budget for building additional infrastructure. Which of the following should the architect choose?

Accepted Answer

D PGP

Answer

A. POP

Answer

B. IPSec

Answer

C. IMAP

Question 32

NO.527 Which ol the following is required in order (or an IDS and a WAF to be effective on HTTPS traffic?

Accepted Answer

C TLS inspection

Answer

A. Hashing

Answer

B. DNS sinkhole

Answer

D. Data masking

Question 33

NO.528 A security analyst is reviewing packet capture data from a compromised host On the In the packet capture. analyst locates packets that contain large of text, Which Of following is most likely installed on IT Certification Guaranteed, The Easy Way! 244 compromised host?

Accepted Answer

A Keylogger

Answer

B. Spyware

Answer

C. Torjan

Answer

D. Ransomware

Question 34

NO.529 An organization wants to integrate its incident response processes into a workflow with automated decision points and actions based on predefined playbooks. Which of the following should the organization implement?

Accepted Answer

B SOAR

Answer

A. SIEM

Answer

C. EDR

Answer

D. CASB

Question 35

NO.530 A network administrator needs to determine the sequence of a server farm's logs. Which of the following should the administrator consider? (Select two).

Accepted Answer

D Hash values

Accepted Answer

E Time offset

Answer

A. Chain of custody

Answer

B. Reports

Answer

C. Time stamps

Question 36

NO.531 Remote workers in an organization use company-provided laptops with locally installed applications and locally stored data Users can store data on a remote server using an encrypted connection. The organization discovered data stored on a laptop had been made available to the public Which of the following security solutions would mitigate the risk of future data disclosures?

Accepted Answer

A FDE

Answer

B. TPM

Answer

C. HIDS

Answer

D. VPN

Question 37

NO.532 Which of the following would most likely include language prohibiting end users from accessing personal email from a company device?

Accepted Answer

D AUP

Answer

A. SLA

Answer

B. BPA

Answer

C. NDA

Question 38

NO.533 The security team received a report of copyright infringement from the IP space of the corporate network. The report provided a precise time stamp for the incident as well as the name of the copyrighted files. The analyst has been tasked with determining the infringing source machine and instructed to implement measures to prevent such incidents from occurring again. Which of the following is MOST capable of accomplishing both tasks?

Accepted Answer

D NGFW

Answer

A. HIDS

Answer

B. Allow list

Answer

C. TPM

Question 39

NO.534 An IT manager is estimating the mobile device budget for the upcoming year. Over the last five years, the number of devices that were replaced due to loss, damage, or theft steadily increased by 10%. Which of the following would best describe the estimated number of devices to be replaced next year?

Accepted Answer

B ARO

Answer

A. SLA

Answer

C. RPO

Answer

D. SLE

Question 40

NO.535 An upcoming project focuses on secure communications and trust between external parties. Which of the following security components will need to be considered to ensure a chosen trust provider IS used and the selected option is highly scalable?

Accepted Answer

C Public key Infrastructure

Answer

A. Self-signed certificate

Answer

B. Certificate attributes

Answer

D. Domain validation

Question 41

NO.536 An organization is moving away from the use of client-side and server-side certificates for EAR The company would like for the new EAP solution to have the ability to detect rogue access points. Which of the following would accomplish these requirements?

Accepted Answer

B EAP-FAST

Answer

A. PEAP

Answer

C. EAP-TLS

Answer

D. EAP-TTLS

Question 42

NO.537 During a recent cybersecurity audit, the auditors pointed out various types of vulnerabilities in the production area. The production area hardware runs applications that are critical to production Which of the following describes what the company should do first to lower the risk to the Production the hardware.

Accepted Answer

B Apply patches

Answer

A. Back up the hardware.

Answer

C. Install an antivirus solution.

Answer

D. Add a banner page to the hardware.

Question 43

NO.538 A security analyst needs to recommend a solution that will allow current Active Directory accounts and groups to be used for access controls on both network and remote-access devices. Which of the following should the analyst recommend? (Select two).

Accepted Answer

B RADIUS

Accepted Answer

E Kerberos

Answer

A. TACACS+

Answer

C. OAuth

Answer

D. OpenlD

Question 44

NO.539 A security practitioner is performing due diligence on a vendor that is being considered for cloud services. Which of the following should the practitioner consult for the best insight into the current security posture of the vendor?

Accepted Answer

D SOC 2 report

Answer

A. PCI DSS standards

Answer

B. SLA contract

Answer

C. CSF framework

Question 45

NO.540 A financial analyst is expecting an email containing sensitive information from a client. IT Certification Guaranteed, The Easy Way! 249 When the email arrives, the analyst receives an error and is unable to open the encrypted message. Which of the following is the most likely cause of the issue?

Accepted Answer

A The S'MIME plug-m is not enabled.

Answer

B. The SSL certificate has expired.

Answer

C. Secure I MAP was not implemented

Answer

D. P0P3S is not supported.

Cybersecurity quiz

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Science