The internal audit team determines a software application is no longer in scope for external reporting requirements. What option will confirm management's perspective that the application is no longer applicable?

Acknowledgement and attestation

A technician wants to improve the situational and environmental awareness of existing users as they transition from remote to in-office work. What option is the most effectively option?

Modify the content of recurring training.

Send out periodic security reminders.

Update the content of new hire documentation.

What option is an example of a data protection strategy that uses tokenization?

Replacing sensitive data with surrogate values

Encrypting databases containing sensitive data

Removing sensitive data from production systems

Hashing sensitive data in critical systems

What option provides resilience by hosting critical VMs within different IaaS providers while being maintained by internal application owners?

On-premises server load balancing

Corporate-owned, off-site locations

What option is a benefit of vendor diversity?

Secure configuration guide applicability

What option strategies should an organization use to efficiently manage and analyze multiple types of logs?

Create custom scripts to aggregate and analyze logs

Install a unified threat management appliance

For which of the following reasons should a systems administrator leverage a 3DES hash from an installer file that is posted on a vendor's website?

To test the integrity of the file

To validate the authenticity of the file

To activate the license for the file

To calculate the checksum of the file

What option is the first step to secure a newly deployed server?

Close unnecessary service ports.

Update the current version of the software.

What option is an example of memory injection?

Malicious code is copied to the allocated space of an already running process.

Two processes access the same variable, allowing one to cause a privilege escalation.

A process receives an unexpected amount of data, which causes malicious code to be executed.

An executable is overwritten on the disk, and malicious code runs the next time it is executed.

An enterprise is trying to limit outbound DNS traffic originating from its internal network. Outbound DNS requests will only be allowed from one device with the IP address 192.168.10.83. What firewall ACL will accomplish this goal?

Access list outbound permit 192.168.10.83/32 port 53Access list outbound deny 0.0.0.0/0 port 53

Access list outbound permit 0.0.0.0/0 port 53Access list outbound deny 192.168.10.83/32 0.0.0.0/0 port 53

Access list outbound permit 0.0.0.0/0 port 53Access list outbound deny

Access list outbound permit 192.168.10.83/32 0.0.0.0/0 port 52Access list outbound deny 0.0.0.0/0

In which of the following scenarios is tokenization the most effectively privacy technique to use?

Enabling established customers to safely store credit card Information

Providing pseudo-anonymization for social media user accounts

Serving as a second factor for authentication requests

Masking personal information inside databases by segmenting data

A systems administrator notices that one of the systems critical for processing customer transactions is running an end-of-life operating system. What option techniques should increase enterprise security?

Placing the system in an isolated VLAN

Encrypting the system's hard drive

A systems administrator receives the following alert from a file integrity monitoring tool: The hash of the cmd.exe file has changed. The systems administrator checks the OS logs and notices that no patches were applied in the last two months. What option most likely occurred?

A. The end user changed the file permissions.

B. A cryptographic collision was detected.

C. A snapshot of the file system was taken.

What option should most effectively explain why a security analyst is running daily vulnerability scans on all corporate endpoints?

To track the status of patch installations

To find shadow IT cloud deployments

To continuously monitor hardware inventory

To hunt for active attackers in the network

Security+ 014124721425

Authored by jeffrey rosario

Computers

12th Grade

Used 1+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

56 questions

Show all answers

MULTIPLE SELECT QUESTION

30 sec • 1 pt

A security manager is implementing MFA and patch management. What option should most effectively describe the control type and category?

C. Detective

A. Physical

B. Managerial

E. Preventative

F. Technical

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What option is the most effectively way to securely store an encryption key for a data set in a manner that allows multiple entities to access the key when needed?

Public key infrastructure

Open public ledger

Public key encryption

Key escrow

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What option is the most important element when defining effective security governance?

Discovering and documenting external considerations

Developing procedures for employee onboarding and offboarding

Assigning roles and responsibilities for owners, controllers, and custodians

Defining and monitoring change management procedures

MULTIPLE SELECT QUESTION

30 sec • 1 pt

An employee receives a text message that appears to have been sent by the payroll department and is asking for credential verification. What option social engineering techniques are being attempted?

A. Typosquatting

B. Phishing

C. Impersonation

D. Vishing

smishing

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

During a security incident, the security operations team identified sustained network traffic from a malicious IP address: 10.1.4.9. A security analyst is creating an inbound firewall rule to block the IP address from accessing the organization's network. What option fulfills this request?

access-list inbound deny ig source 0.0.0.0/0 destination 10.1.4.9/32

access-list inbound deny ig source 10.1.4.9/32 destination 0.0.0.0/0

access-list inbound permit ig source 10.1.4.9/32 destination 0.0.0.0/0

access-list inbound permit ig source 0.0.0.0/0 destination 10.1.4.9/32

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

An organization is evaluating new regulatory requirements associated with the implementation of corrective controls on a group of interconnected financial systems. What of the following is the most likely reason for the new requirement?

To defend against insider threats altering banking details

To ensure that errors are not passed to other systems

To allow for business insurance to be purchased

To prevent unauthorized changes to financial data

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A systems administrator works for a local hospital and needs to ensure patient data is protected and secure. What option data classifications should be used to secure patient data?

Private

Critical

Sensitive

Public

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

59 questions

Python CH1-3 Review

Quiz

•

8th Grade - Professio...

60 questions

Game Design Final Review

Quiz

•

9th - 12th Grade

51 questions

CorelDRAW Application Quiz

Quiz

•

12th Grade - University

60 questions

Soal Babak Penyisihan LCC Museum Tingkat SMP

Quiz

•

12th Grade

60 questions

ADVANCE COMPUTER FUNDAMENTALS AND PROGRAMMING

Quiz

•

12th Grade

57 questions

COMPUTER NETWORKING

Quiz

•

9th - 12th Grade

54 questions

Programming Concepts

Quiz

•

9th - 12th Grade

58 questions

CHỦ ĐỀ B TIN HỌC 12 CÁNH DIỀU

Quiz

•

12th Grade - University

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

22 questions

School Wide Vocab Group 1 Master

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

12 questions

What makes Nebraska's government unique?

Quiz

•

4th - 5th Grade

Discover more resources for Computers

18 questions

Informative or Argumentative essay

Quiz

•

5th Grade - University

20 questions

Career

Quiz

•

9th - 12th Grade

20 questions

Consumer Skills

Quiz

•

9th - 12th Grade

20 questions

Cartoon Characters

Quiz

•

12th Grade

20 questions

Food Chains and Food Webs

Quiz

•

7th - 12th Grade

10 questions

Geography of East Asia

Interactive video

•

7th - 12th Grade

20 questions

AEST Ag. Associates/Systems

Quiz

•

9th - 12th Grade

20 questions

Banking

Quiz

•

9th - 12th Grade

Security+ 014124721425

A security manager is implementing MFA and patch management. What option should most effectively describe the control type and category?

What option is the most effectively way to securely store an encryption key for a data set in a manner that allows multiple entities to access the key when needed?

What option is the most important element when defining effective security governance?

An employee receives a text message that appears to have been sent by the payroll department and is asking for credential verification. What option social engineering techniques are being attempted?

During a security incident, the security operations team identified sustained network traffic from a malicious IP address: 10.1.4.9. A security analyst is creating an inbound firewall rule to block the IP address from accessing the organization's network. What option fulfills this request?

An organization is evaluating new regulatory requirements associated with the implementation of corrective controls on a group of interconnected financial systems. What of the following is the most likely reason for the new requirement?

A systems administrator works for a local hospital and needs to ensure patient data is protected and secure. What option data classifications should be used to secure patient data?

What option alert types is the most likely to be ignored over time?

A technician is opening ports on a firewall for a new system being deployed and supported by a SaaS provider. What option is a risk in the new system?

A security team created a document that details the order in which critical systems should be brought back online after a major outage. What option documents did the team create?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers