An organization is concerned about unauthorized devices connecting to workstations via USB. They decide to restrict all USB mass storage devices at the operating system level. This control is an example of:

Port and peripheral device hardening

Which of the following statements best differentiates Extended Detection and Response (XDR) from Endpoint Detection and Response (EDR)?

XDR correlates threats from endpoints, cloud services, and network telemetry, while EDR focuses primarily on endpoint activity.

XDR uses firewalls only, whereas EDR monitors user activity.

EDR focuses on on-premises endpoints, while XDR only applies to cloud-based email systems.

EDR always requires a third-party security operations center, whereas XDR is entirely in-house.

A company recently replaced multiple printers that contained built-in hard drives. Which of the following steps is most important to ensure no residual data remains on those decommissioned devices?

Physically destroy the hard drives

Reset the printers to factory settings

Disconnect the printers from the network

Which of the following hardening steps is most critical for preventing attackers from leveraging well-known passwords on embedded devices?

Changing default credentials upon device installation

Disabling Wi-Fi interfaces by default

Configuring the device to run only on unencrypted communication channels

Using disk encryption on external media

A newly purchased multifunction printer includes email, file-scanning, and Wi-Fi hotspot features. However, the organization only needs local printing and scanning. Which principle should guide the decision to disable these extra features?

Principle of least functionality

Which of the following is the best reason to implement network isolation for a workstation suspected of malware infection?

To block the spread of malware to other networked endpoints

To ensure the user has limited internet connectivity for remote assistance

To prevent the attacker from releasing new system patches

To allow the workstation to run faster without competing network resources

A security manager wants to track the typical behavior of employees to help detect insider threats or compromised accounts by identifying unusual login patterns.

User and Entity Behavior Analytics (UEBA)

Security Information and Event Management (SIEM)

When configuring host-based firewalls on all corporate laptops, the security team decides to implement a “default deny” policy. Which of the following is the primary advantage of this approach?

Prevents inbound and outbound connections unless explicitly allowed

Reduces RAM usage by eliminating complex firewall rule sets

Ensures all traffic is securely tunneled and encrypted

Simplifies patch management by applying firewall updates automatically

Which of the following is the best example of a compensating control for an Internet of Things (IoT) sensor that no longer receives vendor updates?

Place the sensor on an isolated subnet to limit interactions

Install the latest Android OS on the device

Rely on user training to identify malicious network traffic

Enable auto-run of applications on the device

Which of the following best describes an endpoint protection platform (EPP) that relies mainly on known threat signatures?

It matches a malicious file’s pattern against a known database of malware signatures.

It is highly effective against zero-day exploits.

It uses advanced sandboxing to detect new threats.

It always uses real-time machine learning with no reliance on signatures.

When applying the principle of least privilege to user accounts in a large organization, which of the following strategies is typically most effective?

Use role-based access control (RBAC) to assign privileges based on job functions.

Allow every account full admin permissions for convenience.

Permit each user to create secondary accounts with standard privileges.

Disable multi-factor authentication to reduce friction on logging in.

An industrial plant utilizes an ICS/SCADA network to manage critical production processes. Which of the following security measures would be most appropriate to outbound-only data flow while preventing inbound connections?

Implement a data diode (unidirectional gateway)

Provide direct VLAN access to the external network

Install consumer-grade wireless routers with default settings

Enable only secure boot on the embedded controllers

A Linux server administrator wants to implement mandatory access controls (MAC) to tightly restrict which resources each process can access. Which Linux security feature is specifically designed to support this requirement?

Logical Volume Management (LVM)

The security team has discovered that multiple IoT cameras in remote offices have outdated firmware and can’t be patched immediately. Which of the following is the best immediate mitigation?

Use network segmentation to restrict camera communication to only what is necessary

Disable local logging to reduce the attack surface

Enable default usernames and passwords to speed up firmware updates

Install antivirus software on the cameras

Lesson 10

Authored by Benjamin Fenton

Other

University

Used 3+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

25 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following best describes the purpose of device hardening for endpoints like laptops and desktops?

Deploying only legacy applications to reduce compatibility errors

Minimizing the attack surface by removing or disabling unneeded services and software

Installing as much software as possible to increase feature availability

Limiting user access to the internet to avoid performance problems

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A security architect wants to ensure that every device connecting to the corporate network meets a standardized security checklist for configuration (for example, ensuring certain ports are closed, USB devices are disabled, etc.). Which of the following mechanisms is designed to verify and remediate deviations from that checklist?

Network segmentation

Baseline configuration and deviation reporting

Port mirroring

Encryption at rest

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

An organization is worried about malware spreading laterally between workstations. The security team configures VLANs so that devices in the finance department are isolated from those in the marketing department. Which of the following describes this security strategy?

Air gapping

Network segmentation

Zero-day containment

Virtual patching

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A systems administrator wants to guarantee that malicious or unauthorized scripts cannot run on corporate endpoints. The organization decides to only permit scripts that are explicitly approved. Which of the following describes this approach?

Data loss prevention (DLP)

Allow (whitelist) execution policy

Mobile device management (MDM)

Block (blacklist) execution policy

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is a benefit of full disk encryption (FDE) on a laptop?

It eliminates the need for password-based authentication.

It immediately blocks all incoming network connections by default.

It protects data if the device is lost or stolen.

It increases the speed of data access from the disk.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is not typically managed by a mobile device management (MDM) solution?

Enforcing screen lock and passcode settings

Managing virtual machine operating system file permissions for server clusters

Tracking devices and enforcing remote wipes

Pushing application and OS updates to smartphones

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A network administrator notices that the host-based intrusion detection system (HIDS) on a server is alerting on unusual changes to a critical system file. Which of the following features is the HIDS most likely using?

A. File integrity monitoring (FIM)

B. Honeypot logs

C. Dynamic ARP inspection (DAI)

D. Certificate pinning

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

QUIZ NO. 1 PAMAMAHAYAG - BSED 2FIL - PRELIM

Quiz

•

University

20 questions

POC PREPOSITIONAL PHRASES

Quiz

•

8th Grade - Professio...

20 questions

Round 3

Quiz

•

University

20 questions

RM 263 - Research Methods

Quiz

•

University

20 questions

BJT AC Analysis Round1

Quiz

•

University

20 questions

Final Quiz

Quiz

•

University

20 questions

Social Casework

Quiz

•

University

20 questions

CodeMavarick

Quiz

•

University

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

22 questions

School Wide Vocab Group 1 Master

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

12 questions

What makes Nebraska's government unique?

Quiz

•

4th - 5th Grade

Discover more resources for Other

18 questions

Informative or Argumentative essay

Quiz

•

5th Grade - University

20 questions

Disney Trivia

Quiz

•

University

5 questions

Human Impacts: How Do People Disrupt Ecosystems?

Interactive video

•

4th Grade - University

7 questions

Human Body Systems Overview (Updated 2024)

Interactive video

•

11th Grade - University

20 questions

Context Clues

Quiz

•

KG - University

7 questions

Comparing Fractions

Interactive video

•

1st Grade - University

20 questions

10.4 Exponential Functions

Quiz

•

8th Grade - University

30 questions

PSYCH 250: Exam 3

Quiz

•

University