New Questions 3

Which of the following protocols only facilitates access control?

A. XACML

B. Kerberos

C. SPML

D. SAML

View Answer

New Questions 4

Every year, the accounts payable employee, Ann, takes a week off work for a vacation. She typically completes her responsibilities remotely during this week. Which of the following policies, when implemented, would allow the company to audit this employee's work and potentially discover improprieties?

A. Job rotation

A. B. Mandatory vacations

C. Least privilege

D. Separation of duties

View Answer

New Questions 5

An IT administrator has been tasked by the Chief Executive Officer with implementing security using a single device based on the following requirements:

1. Selective sandboxing of suspicious code to determine malicious intent.

2. VoIP handling for SIP and H.323 connections.

3. Block potentially unwanted applications.

1. Which of the following devices would BEST meet all of these requirements?

A. UTM

B. HIDS

C. NIDS

D. WAF

E. HSM

View Answer

New Questions 6

A court order has ruled that your company must surrender all the email sent and received by a certain employee for the past five years. After reviewing the backup systems, the IT administrator concludes that email backups are not kept that long. Which of the following policies MUST be reviewed to address future compliance?

A. Tape backup policies

B. Offsite backup policies

C. Data retention policies

D. Data loss prevention policies

View Answer

New Questions 7

An intruder was recently discovered inside the data center, a highly sensitive area. To gain access, the intruder circumvented numerous layers of physical and electronic security measures. Company leadership has asked for a thorough review of physical security controls to prevent this from happening again. Which of the following departments are the MOST heavily invested in rectifying the problem? (Select THREE).

A. Facilities management

B. Human resources

C. Research and development

D. Programming

E. Data center operations

F. Marketing

G. Information technology

View Answer

New Questions 8

A large enterprise introduced a next generation firewall appliance into the Internet facing DMZ. All Internet traffic passes through this appliance. Four hours after implementation the network engineering team discovered that traffic through the DMZ now has un-acceptable

latency, and is recommending that the new firewall be taken offline. At what point in the implementation process should this problem have been discovered?

A. During the product selection phase

B. When testing the appliance

C. When writing the RFP for the purchase process

D. During the network traffic analysis phase

View Answer

New Questions 9

An administratoru2021s company has recently had to reduce the number of Tier 3 help desk technicians available to support enterprise service requests. As a result, configuration standards have declined as administrators develop scripts to troubleshoot and fix customer issues. The administrator has observed that several default configurations have not been

fixed through applied group policy or configured in the baseline. Which of the following are controls the administrator should recommend to the organizationu2021s security manager to prevent an authorized user from conducting internal reconnaissance on the organizationu2021s network? (Select THREE).

A. Network file system

B. Disable command execution

C. Port security

D. TLS

E. Search engine reconnaissance

F. NIDS

G. BIOS security

H. HIDS

I. IdM

View Answer

New Questions 10

The security administrator has just installed an activepassive cluster of two firewalls for enterprise perimeter defense of the corporate network. Stateful firewall inspection is being used in the firewall implementation. There have been numerous reports of dropped connections with external clients.

Which of the following is MOST likely the cause of this problem?

A. TCP sessions are traversing one firewall and return traffic is being sent through the secondary firewall and sessions are being dropped.

B. TCP and UDP sessions are being balanced across both firewalls and connections are being dropped because the session IDs are not recognized by the secondary firewall.

C. Prioritize UDP traffic and associated stateful UDP session information is traversing the passive firewall causing the connections to be dropped.

D. The firewall administrator connected a dedicated communication cable between the firewalls in order to share a single state table across the cluster causing the sessions to be dropped.

View Answer

New Questions 11

After a security incident, an administrator would like to implement policies that would help reduce fraud and the potential for collusion between employees. Which of the following would help meet these goals by having co-workers occasionally audit another worker's position?

A. Least privilege

B. Job rotation

C. Mandatory vacation

D. Separation of duties

View Answer

New Questions 12

A mature organization with legacy information systems has incorporated numerous new processes and dependencies to manage security as its networks and infrastructure are modernized. The Chief Information Office has become increasingly frustrated with frequent releases, stating that the organization needs everything to work completely, and the vendor should already have those desires built into the software product. The vendor has been in constant communication with personnel and groups within the organization to understand its business process and capture new software requirements from users. Which of the following methods of software development is this organizationu2021s configuration management process using?

A. Agile

B. SDL

C. Waterfall

D. Joint application development

View Answer