Which internal stakeholder will the SOC team work with to maintain the organization’s security posture of its intellectual property? network operations center human resources governance, risk, and compliance media Explanation…
US-CERT is a large scale, incident reporting agency that provides up-to-date information about high-impact security incidents affecting the critical infrastructure of the United States. Federal, state, and local government agencies…
You are a SOC analyst, and your supervisor has asked you to investigate suspicious activity. The team's threat hunter discovered this activity on a server that stores personal identity information…
You work in an organization’s SOC as a threat hunter. A new day-zero attack is “in the wild” and is now compromising systems on the internet beyond the research labs.…
You work in a SOC, and your organization has just suffered a data breach. Which internal stakeholder will provide guidance on the interpretation of laws and regulations during forensic procedures?…
The SOC team has enabled rule set in the intrusion protection system to stop a network breach. If network data is received that matches this rule set, which type of…
A possible breach has been reported and Rajiv, the Tier 1 triage specialist, has performed initial processing, including confirming its validity. Which tool will Rajiv and the other SOC analysts…
Which tool generates data packet captures and is appropriate for both threat hunting and forensic activities? IPS logs Wireshark SIEM Cisco Secure Malware Analytics Explanation & Hint: Wireshark is the…
You work as a cybersecurity specialist and provide procurement recommendations. The organization that you are working for would like a package toolset to include at a minimum both intrusion protection…
As an incident responder and are investigating an incident in which the malware that seems to be targeting a vulnerability has no known signature yet. More specifically, the malware is…
Acme, Inc., has suffered a breach, and the SOC team is preparing forensic data for legal action. Which type of data will be collected for this purpose? session data transaction…
Which two of the following statements about the SIEM are correct? (Choose two.) A SIEM is a Cisco proprietary appliance that ingests, normalizes, correlates, and aggregates telemetry data from all…
You are an incident handler who is investigating a zero-day attack on an endpoint device. You and the triage specialist have identified the specific endpoint that has been breached and…
You are a Tier 3 threat hunter. You and the rest of the SOC team have identified and quarantined a breach. Which two procedures will you, as a threat hunter,…
You work as a Tier 2 incident handler at a large corporation with an extensive network infrastructure. A zero-day attack has occurred, and you must determine how many endpoints have…
A breach has occurred, and the SOC team has determined that it is a zero-day attack. Which SOC team member will use sandbox technology to analyze the malware that is…
You work as a SOC analyst. Which option is an element of the security architecture that might report on beaconing activity between an infected host and a botnet command-and-control server?…
Which two of the following responsibilities describe the day-to-day work of the SOC manager? (Choose two.) communicating necessary information with the CISO or CIO reporting to the HR Manager. providing…
What are two benefits of a holistic SOC team, where responsibilities are shared? (Choose two.) lower organizational CapEx costs more effective transfer of knowledge throughout the corporate security community lower…
You are reviewing career opportunities in cybersecurity and discover the following opportunity on an online job board: “Are you passionate about cyber security? Want to create order from chaos?” Hiring…