Refer to the exhibit. What type of traffic will the policy be applied to when the router is configured with the class-map and policy-map shown? class-map type inspect match-all INTERNAL-WEB match…
An administrator wishes to create a security policy document for end-users to protect against known unsafe websites and to warn the user about the dangers and handling of suspicious emails.…
What is the purpose of penetration testing? It is used to passively scan OS attack platforms. It involves hacking a website, network or server with the permission of the respective…
What Windows utility should be used to configure password rules and account lockout policies on a system that is not part of a domain? Event Viewer security log Computer Management…
What is a drawback of using a single-root PKI topology? It requires de-centralized administration that can lead to multiple points of failure. It can issue insecure certificates to end users…
Which type of DNS attack involves a threat actor creating multiple bogus sub-domains under a legitimate parent domain? DNS Stealth attacks DNS Domain Shadowing attacks DNS Tunneling attacks DNS Open…
Match the security policy to its description. Identifies change management, change control or asset management practices ==> Organizational policy Defines users permitted access to network resources and the verification procedures in…
The IT team in a company is reviewing network access by teleworkers. The team identifies a security risk based on the fact that a few employees do not change their…
In which phase of the NIST Incident Response Life Cycle are the vulnerabilities that have been exploited by the attacker corrected and patched? Containment, Eradication, and Recovery Post-Incident Activities Detection…
Match the network testing tool with its description. This is a network and security scanner which detects vulnerabilities ==> GFI LANguard This is a technology used in enterprise organizations to provide…
Refer to the exhibit. The help desk receives a work order describing an issue with a management application running on PC-B. The work order states that the network management application…
A software company uses a public cloud service for hosting development and deployment services. The company is evaluating options to protect against data breaches and compromised login credentials. What two…
Refer to the exhibit. The wireless router firewall is configured as shown. What action will be taken when packets that originate from the internet and have a destination IP address of…
An organization needs to implement a solution that would enable them to determine the order of security events occurring on the network. What technology should be implemented? DHCP SNMP NTP…
Refer to the exhibit. A specialist in the information security team is reviewing the Webroot threat report 2020. Based on the findings in the report, what is a technique used…
A company has set a policy that employees will be required to report any observed or suspected security issues. Which control type has the company implemented? administrative controls technical controls…
Which data type is protected through the use of an IPsec VPN? data in transit data at rest data in process data in storage Explanation & Hint: When data is…
What are three actions taken in the Detection & Analysis phase of the NIST Incident Response Life Cycle? (Choose three.) The CSIRT performs an initial analysis to determine the incident’s…
A cybersecurity technician sets up a honeypot within a separate DMZ of the enterprise network. What is the purpose of doing this? to set up an audit trail of threat…
A company provides service to process transaction data for clients. The company deals with sensitive customer information of their clients. The improper release of the information poses a serious risk…