What is the most secure encryption and protocol combination that should be supported by a wireless network for authenticated guest access according to the simulation instructions?

802.1X with the most secure encryption available

As per the simulation instructions, what are the credentials provided for the guest AD user?

User: guest01 - Password: guestpass

User: guest - Password: password

User: visitor01 - Password: visitorpass

User: guestuser - Password: guestpassword

What is the purpose of the RADIUS server in the context of the simulation?

To authenticate and authorize users for network access

To distribute IP addresses to clients

To control the power supply to the network

To route traffic between different network segments

After a recent security incident, a security analyst discovered that unnecessary ports were open on a firewall policy for a web server. Which of the following firewall policies would be MOST secure for a web server?

Allow TCP 80, Allow TCP 443, Deny Any

Allow TCP 53, Allow TCP 80, Allow TCP 443, Allow Any

Deny TCP 53, Allow TCP 80, Allow TCP 445, Allow Any

Deny TCP 80, Allow TCP 443, Allow Any

Which of the following would be the BEST way to analyze diskless malware that has infected a VDI?

Use NetFlow to identify command-and-control IPs.

Shut down the VDI and copy off the event logs.

Take a memory snapshot of the running system.

Run a full on-demand scan of the root volume.

Two hospitals merged into a single organization. The privacy officer requested a review of all records to ensure encryption was used during record storage, in compliance with regulations. During the review, the officer discovered that medical diagnosis codes and patient names were left unsecured. Which of the following types of data does this combination BEST represent?

Personally identifiable information

Which of the following is the MOST likely reason for an untrusted SSL certificate being discovered during a vulnerability scan, if the certificate is signed properly and is valid on other company servers?

B. The certificate is on the CRL and is no longer valid.

A. The required intermediate certificate is not loaded as part of the certificate chain.

C. The corporate CA has expired on every server, causing the certificate to fail verification.

D. The scanner is incorrectly configured to not trust this certificate when detected on the server.

Which of the following is a security best practice that ensures the integrity of aggregated log files within a SIEM?

Set up hashing on the source log file servers that complies with local regulatory requirements.

Back up the aggregated log files at least two times a day or as stated by local regulatory requirements.

Write protect the aggregated log files and move them to an isolated server with limited access.

Back up the source log files and archive them for at least six years or in accordance with local regulatory requirements.

A security analyst is evaluating the risks of authorizing multiple security solutions to collect data from the company's cloud environment. Which of the following is an immediate consequence of these integrations?

Non-compliance with data sovereignty rules

Loss of the vendors interoperability support

Mandatory deployment of a SIEM solution

Which of the following explains why RTO is included in a BIA?

It identifies the amount of allowable downtime for an application or system.

It prioritizes risks so the organization can allocate resources appropriately.

It monetizes the loss of an asset and determines a break-even point for risk mitigation.

It informs the backup approach so that the organization can recover data to a known time.

Sec Study Quiz 5

Professional Development

•

48 Qs

Similar activities

AZ-900 MÓDULO 01

Professional Development

•

47 Qs

[AZ-900] Simulado #02

Professional Development

•

43 Qs

Test Mendix 3

Professional Development

•

50 Qs

Final Exam - Data Entry & Retrieval Procedures

Professional Development

•

50 Qs

9628-09 City & Guilds Level 3 Award in Coding and Logic Quiz 3

11th Grade - Professional Development

•

50 Qs

Comptia A+ Core 1 Pt.1

University - Professional Development

•

50 Qs

Reti, internet e servizi

Professional Development

•

50 Qs

Word Processing

Professional Development

•

52 Qs

Sec Study Quiz 5

Quiz

•

Computers

•

Professional Development

•

Practice Problem

•

Hard

Pat Johnson

FREE Resource

48 questions

Show all answers

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

47 questions

AZ-900 MÓDULO 01

Quiz

•

Professional Development

43 questions

[AZ-900] Simulado #02

Quiz

•

Professional Development

50 questions

Test Mendix 3

Quiz

•

Professional Development

50 questions

Final Exam - Data Entry & Retrieval Procedures

Quiz

•

Professional Development

50 questions

DP-900 Simulado

Quiz

•

Professional Development

50 questions

Operating System Quiz

Quiz

•

Professional Development

50 questions

Reti, internet e servizi

Quiz

•

Professional Development

52 questions

Word Processing

Quiz

•

Professional Development

Popular Resources on Wayground

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

15 questions

4:3 Model Multiplication of Decimals by Whole Numbers

Quiz

•

5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

The Best Christmas Pageant Ever Chapters 1 & 2

Quiz

•

4th Grade

12 questions

Unit 4 Review Day

Quiz

•

3rd Grade

10 questions

Identify Iconic Christmas Movie Scenes

Interactive video

•

6th - 10th Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

Discover more resources for Computers

26 questions

Christmas Movie Trivia

Lesson

•

8th Grade - Professio...

10 questions

Christmas Trivia

Quiz

•

Professional Development

21 questions

Name that Holiday Movie

Quiz

•

Professional Development

Sec Study Quiz 5

48 questions

Which of the following is NOT a type of attack listed in the network diagram section?

The correct choice is Phishing because it is NOT a type of attack listed in the network diagram section.

What is the purpose of the anonymizer in the network diagram?

The purpose of the anonymizer in the network diagram is to hide the attacker's identity, not to protect the web server, filter out malicious traffic, or store application source code.

According to the network diagram, where is the application source code repository located?

The application source code repository is located behind the firewall, as shown in the network diagram.

What device is directly connected to the internet in the network diagram?

The Firewall is directly connected to the internet in the network diagram as it acts as a barrier between the internal network and the internet, controlling incoming and outgoing traffic.

What is the function of the WAF in the context of the network diagram?

The function of the WAF in the context of the network diagram is to act as a Web Application Firewall to protect against web-based attacks.

Which type of attack is NOT listed in the 'Select type of attack' section?

The correct choice is Phishing because it is NOT listed in the 'Select type of attack' section.

What is placed between the Internet and Switch A to protect the network?

A firewall is placed between the Internet and Switch A to protect the network by monitoring and controlling incoming and outgoing network traffic based on predetermined security rules.

Which security measure is shown directly connected to the Database in the diagram?

The security measure directly connected to the Database in the diagram is Input Validation, as it is shown as the immediate layer of defense for the Database.

What is implemented at the Web Server for security as per the diagram?

URL Filtering is implemented at the Web Server for security as per the diagram, allowing control over the URLs accessed by users.

According to the diagram, what type of control is implemented on the CRM Server?

The correct type of control implemented on the CRM Server is record level access control, as shown in the diagram.

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers