Q1. Which of the following BEST.avoids data remanence disclosure for cloud hosted 

resources? 

A. Strong encryption and deletion of.the keys after data is deleted. 

B. Strong encryption and deletion of.the virtual.host after data is deleted. 

C. Software based encryption with two factor authentication. 

D. Hardware based encryption on dedicated physical servers. 

View Answer

Q2. Which of the following.is.required to determine classification and ownership? 

A. System and data resources are properly identified 

B. Access violations are logged and audited 

C. Data file references are identified and linked 

D. System security controls are fully integrated 

View Answer

Q3. Which layer of the Open Systems Interconnections (OSI) model implementation adds information concerning the logical connection between the sender and receiver? 

A. Physical 

B. Session 

C. Transport 

D. Data-Link 

View Answer

Q4. Which of the following is a security limitation of File Transfer Protocol (FTP)? 

A. Passive FTP is not compatible with web browsers. 

B. Anonymous access is allowed. 

C. FTP uses Transmission Control Protocol (TCP) ports 20 and 21. 

D. Authentication is not encrypted. 

View Answer

Q5. A vulnerability test on an Information System (IS) is conducted to 

A. exploit security weaknesses in the IS. 

B. measure system performance on systems with weak security controls. 

C. evaluate the effectiveness of security controls. 

D. prepare for Disaster Recovery (DR) planning. 

View Answer

Q6. Which of the following is the FIRST action that a system administrator should take when it is revealed during a penetration test that everyone in an organization has unauthorized access to a server holding sensitive data? 

A. Immediately document the.finding and.report to senior management. 

B. Use system privileges to alter the permissions to secure the server 

C. Continue the testing to its completion and then inform IT management 

D. Terminate the penetration test and pass the finding to the server management team 

View Answer

Q7. Which one of the following is a common risk with network configuration management? 

A. Patches on the network are difficult to keep current. 

B. It is the responsibility of the systems administrator. 

C. User ID and passwords are never set to expire. 

D. Network diagrams are not up to date. 

View Answer

Q8. Which of the following methods can be used to achieve confidentiality.and integrity.for data in transit? 

A. Multiprotocol Label Switching (MPLS) 

B. Internet Protocol Security (IPSec) 

C. Federated identity management 

D. Multi-factor authentication 

View Answer

Q9. Which security action should be taken FIRST when computer personnel are terminated from their jobs? 

A. Remove their computer access 

B. Require them to turn in their badge 

C. Conduct an exit interview 

D. Reduce their physical access level to the facility 

View Answer

Q10. Regarding asset security and appropriate retention,.which of the following INITIAL.top three areas are.important.to focus on? 

A. Security control baselines, access controls, employee awareness and training 

B. Human resources, asset management, production management 

C. Supply chain lead time, inventory control, encryption 

D. Polygraphs, crime statistics, forensics 

View Answer