NO.231 The Chief Information Security Officer wants to pilot a new adaptive, user-based

authentication method. The concept Includes granting logical access based on physical location and

proximity. Which of the following Is the BEST solution for the pilot?

NO.232 A company needs to centralize its logs to create a baseline and have visibility on its security

events. Which of the following technologies will accomplish this objective?

NO.233 A system that requires an operation availability of 99.99% and has an annual maintenance

window available to patching and fixes will require the HIGHEST:

NO.234 Which of the following is MOST likely to contain ranked and ordered information on the

likelihood and potential impact of catastrophic events that may affect business processes and

systems, while also highlighting the residual risks that need to be managed after mitigating controls

have been implemented?

NO.235 A security analyst has been asked to investigate a situation after the SOC started to receive

alerts from the SIEM. The analyst first looks at the domain controller and finds the following events:

To better understand what is going on, the analyst runs a command and receives the following

output:

Based on the analyst's findings, which of the following attacks is being executed?

NO.236 A SOC is currently being outsourced. Which of the following is being used?

NO.237 The website http://companywebsite.com requires users to provide personal information including

security responses, for registration. which of the following would MOST likely cause a date breach