NEW QUESTION 1
An organization has a growing workforce that is mostly driven by additions to the sales department. Each newly hired salesperson relies on a mobile device to conduct business. The Chief Information Officer (CIO) is wondering it the organization may need to scale down just as quickly as it scaled up. The ClO is also concerned about the organization's security and customer privacy. Which of the following would be BEST to address the ClO’s concerns?

• A. Disallow new hires from using mobile devices for six months
• B. Select four devices for the sales department to use in a CYOD model
• C. Implement BYOD for the sates department while leveraging the MDM
• D. Deploy mobile devices using the COPE methodology

Answer: C

NEW QUESTION 2
An organization's RPO for a critical system is two hours. The system is used Monday through Friday, from 9:00 am to 5:00 pm. Currently, the organization performs a full backup every Saturday that takes four hours to complete. Which of the following additional backup implementations would be the BEST way for the analyst to meet the business requirements?

• A. Incremental backups Monday through Friday at 6:00 p.m and differential backups hourly
• B. Full backups Monday through Friday at 6:00 p.m and incremental backups hourly.
• C. incremental backups Monday through Friday at 6:00 p.m and full backups hourly.
• D. Full backups Monday through Friday at 6:00 p.m and differential backups hourly.

Answer: A

NEW QUESTION 3
Users have been issued smart cards that provide physical access to a building. The cards also contain tokens that can be used to access information systems. Users can log m to any thin client located throughout the building and see the same desktop each time. Which of the following technologies are being utilized to provide these capabilities? (Select TWO)

• A. COPE
• B. VDI
• C. GPS
• D. TOTP
• E. RFID
• F. BYOD

Answer: BE

NEW QUESTION 4
An organization wants to implement a third factor to an existing multifactor authentication. The organization already uses a smart card and password. Which of the following would meet the organization’s needs for a third factor?

• A. Date of birth
• B. Fingerprints
• C. PIN
• D. TPM

Answer: B

NEW QUESTION 5
Which of the following is MOST likely to outline the roles and responsibilities of data controllers and data processors?

• A. SSAE SOC 2
• B. PCI DSS
• C. GDPR
• D. ISO 31000

Answer: C

NEW QUESTION 6
Which of the following job roles would sponsor data quality and data entry initiatives that ensure business and regulatory requirements are met?

• A. The data owner
• B. The data processor
• C. The data steward
• D. The data privacy officer.

Answer: C

NEW QUESTION 7
A security analyst discovers that a company username and password database was posted on an internet forum. The username and passwords are stored in plan text. Which of the following would mitigate the damage done by this type of data exfiltration in the future?

• A. Create DLP controls that prevent documents from leaving the network
• B. Implement salting and hashing
• C. Configure the web content filter to block access to the forum.
• D. Increase password complexity requirements

Answer: A

NEW QUESTION 8
A security analyst is looking for a solution to help communicate to the leadership team the seventy levels of the organization’s vulnerabilities. Which of the following would BEST meet this need?

• A. CVE
• B. SIEM
• C. SOAR
• D. CVSS

Answer: D

NEW QUESTION 9
Joe, a user at a company, clicked an email link led to a website that infected his workstation. Joe, was connected to the network, and the virus spread to the network shares. The protective measures failed to stop this virus, and It has continues to evade detection. Which of the following should administrator implement to protect the environment from this malware?

• A. Install a definition-based antivirus.
• B. Implement an IDS/IPS
• C. Implement a heuristic behavior-detection solution.
• D. Implement CASB to protect the network shares.

Answer: C

NEW QUESTION 10
A security analyst needs to implement an MDM solution for BYOD users that will allow the company to retain control over company emails residing on the devices and limit data exfiltration that might occur if the devices are lost or stolen. Which of the following would BEST meet these requirements? (Select TWO).

• A. Full-device encryption
• B. Network usage rules
• C. Geofencing
• D. Containerization
• E. Application whitelisting
• F. Remote control

Answer: AB

NEW QUESTION 11
Which of the following policies would help an organization identify and mitigate potential single points of failure in the company’s IT/security operations?

• A. Least privilege
• B. Awareness training
• C. Separation of duties
• D. Mandatory vacation

Answer: C

NEW QUESTION 12
A user enters a password to log in to a workstation and is then prompted to enter an authentication code. Which of the following MFA factors or attributes are being utilized in the authentication process? (Select TWO).

• A. Something you know
• B. Something you have
• C. Somewhere you are
• D. Someone you are
• E. Something you are
• F. Something you can do

Answer: BE

NEW QUESTION 13
A root cause analysis reveals that a web application outage was caused by one of the company’s developers uploading a newer version of the third-party libraries that were shared among several applications. Which of the following implementations would be BEST to prevent the issue from reoccurring?

• A. CASB
• B. SWG
• C. Containerization
• D. Automated failover

Answer: C

NEW QUESTION 14
A security analyst is investigation an incident that was first reported as an issue connecting to network shares and the internet, While reviewing logs and tool output, the analyst sees the following:

Which of the following attacks has occurred?

• A. IP conflict
• B. Pass-the-hash
• C. MAC flooding
• D. Directory traversal
• E. ARP poisoning

Answer: E

NEW QUESTION 15
An employee has been charged with fraud and is suspected of using corporate assets. As authorities collect evidence, and to preserve the admissibility of the evidence, which of the following forensic techniques should be used?

• A. Order of volatility
• B. Data recovery
• C. Chain of custody
• D. Non-repudiation

Answer: C

NEW QUESTION 16
An organization needs to implement more stringent controls over administrator/root credentials and service accounts. Requirements for the project include:
Check-in/checkout of credentials
The ability to use but not know the password
Automated password changes
Logging of access to credentials
Which of the following solutions would meet the requirements?

• A. OAuth 2.0
• B. Secure Enclave
• C. A privileged access management system
• D. An OpenID Connect authentication system

Answer: D

NEW QUESTION 17
A network engineer notices the VPN concentrator overloaded and crashes on days when there are a lot of remote workers. Senior management has placed greater importance on the availability of VPN resources for the remote workers than the security of the end users’ traffic. Which of the following would be BEST to solve this issue?

• A. iPSec
• B. Always On
• C. Split tunneling
• D. L2TP

Answer: B

NEW QUESTION 18
A small company that does not have security staff wants to improve its security posture. Which of the following would BEST assist the company?

• A. MSSP
• B. SOAR
• C. IaaS
• D. PaaS

Answer: B

NEW QUESTION 19
A Chief Security Office's (CSO's) key priorities are to improve preparation, response, and recovery practices to minimize system downtime and enhance organizational resilience to ransomware attacks. Which of the following would BEST meet the CSO's objectives?

• A. Use email-filtering software and centralized account management, patch high-risk systems, and restrict administration privileges on fileshares.
• B. Purchase cyber insurance from a reputable provider to reduce expenses during an incident.
• C. Invest in end-user awareness training to change the long-term culture and behavior of staff and executives, reducing the organization's susceptibility to phishing attacks.
• D. Implement application whitelisting and centralized event-log management, and perform regular testing and validation of full backups.

Answer: D

NEW QUESTION 20
An organization just experienced a major cyberattack modem. The attack was well coordinated sophisticated and highly skilled. Which of the following targeted the organization?

• A. Shadow IT
• B. An insider threat
• C. A hacktivist
• D. An advanced persistent threat

Answer: D

NEW QUESTION 21
......