CPIM-8.0 Exam Dumps | While conducting an information asset audit, it was determined that several devices were running unpatched

<< Prev Question Next Question >>

Question 86/280

While conducting an information asset audit, it was determined that several devices were running unpatched Operating Systems (0S). Further review Indicated the OS was no longer supported by the vendor. Which of the following BEST indicates the appropriate asset lifecycle stage of the devices?

A. Dispose

B. Modify

C. Maintain

D. Procure

Question List (280q): Question 1: During an investigation, a forensic analyst executed a task ...; Question 2: An organization is implementing Zero Trust Network Access (Z...; Question 3: Which of the following tools is used to evaluate the impact ...; Question 4: Which of the following is MOST important for an internationa...; Question 5: A cybersecurity analyst has recently been assigned to work w...; Question 6: Which of the following criteria is used to determine safety ...; Question 7: An organization is considering options to outsource their In...; Question 8: Business management should be engaged in the creation of Bus...; Question 9: According to best practice, at which step in the system life...; Question 10: Health information stored in paper form may be destroyed usi...; Question 11: A security professional is accessing an organization-issued ...; Question 12: A department manager executes threat modeling at the beginni...; Question 13: Which of the following activities is an example of collabora...; Question 14: For a company that uses first in, first out (FIFO) inventory...; Question 15: Which of the following Internet Protocol Security (IPSec) co...; Question 16: A customer of a financial Institution denies that a transact...; Question 17: A reduction In purchased lot sizes will reduce which of the ...; Question 18: An organization is migrating its access controls to a certif...; Question 19: Which of the following product design approaches are likely ...; Question 20: A security officer has been tasked with performing security ...; Question 21: In which of the following situations would you use an X-bar ...; Question 22: According to quality function deployment (QFD), customer nee...; Question 23: In Company XYZ, transaction-costing capability has been Inte...; Question 24: When implementing a data classification program, Which is MO...; Question 25: Labor3 people Work hours10 hours per day Days4 days per week...; Question 26: Which of the following prioritization rules will have the gr...; Question 27: Which approach will BEST mitigate risks associated with root...; Question 28: Following the go-live of a new financial software, an organi...; Question 29: An organization intends to host an application on a multi-te...; Question 30: When resolving conflicts, which canon within the ISC2 Code o...; Question 31: The development team wants new commercial software to integr...; Question 32: When designing a production cell, which of the following ite...; Question 33: Which of the following states of data becomes MOST important...; Question 34: Database security includes which of the following requiremen...; Question 35: An organization is running a cloud-based application to proc...; Question 36: A webmaster has repeatedly used the same certificate sign re...; Question 37: After a recent cybersecurity incident, a manufacturing organ...; Question 38: Which of the following is the MOST significant flaw when usi...; Question 39: Who is responsible for ensuring compliance when an organizat...; Question 40: What is the MAIN reason security is considered as part of th...; Question 41: An organization's security team is looking at ways to minimi...; Question 42: Privacy requirements across national boundaries MOST often r...; Question 43: A security engineer is responsible for verifying software re...; Question 44: A security engineer needs to perform threat modeling on a mi...; Question 45: What can help a security professional assess and mitigate vu...; Question 46: Which of the following actions best supports a company's str...; Question 47: While doing a penetration test, auditors found an old creden...; Question 48: Which protocol is the BEST option to provide authentication,...; Question 49: An information system containing Protected Health Informatio...; Question 50: What are the FIRST two steps an organization should conduct ...; Question 51: In order for an organization to mature their data governance...; Question 52: Which of the following ports needs to be open for Kerberos K...; Question 53: A third-party vendor is procured to conduct a non-financial ...; Question 54: Which of the following factors is used to determine safety s...; Question 55: Which of the following Secure Shell (SSH) remote access prac...; Question 56: A security team leader needs to communicate the value of the...; Question 57: Which of the following provides for continuous improvement o...; Question 58: An organization currently has a network with 55,000 unique I...; Question 59: When the discrete available-to-promise (ATP) method is used,...; Question 60: A lengthy power outage led to unavailability of time critica...; Question 61: An organization's system engineer arranged a meeting with th...; Question 62: An organization has network services in a data center that a...; Question 63: A disadvantage of a capacity-lagging strategy may be:...; Question 64: Which of the following is the benefit of using Security Cont...; Question 65: An advantage of applying ABC classification to a firm's repl...; Question 66: Organization A provides scalable Information Technology (IT)...; Question 67: The Business Continuity Plan (BCP) has multiple components. ...; Question 68: What is the MOST likely cause for a penetration tester havin...; Question 69: The help desk received a call from a user noting the digital...; Question 70: In order to meet retention requirements, it may be necessary...; Question 71: Check sheets can be used to:; Question 72: An organization provides customer call center operations for...; Question 73: Which of the following is typically used to control physical...; Question 74: What is the total load requirement for this work center base...; Question 75: The production plan relates to a firm's financial planning b...; Question 76: Which of the following is MOST accurate when comparing patch...; Question 77: The Chief Information Security Officer (CISO) for an interna...; Question 78: A security engineer developing software for a professional s...; Question 79: A newly hired Chief Information Security Officer (CISO) is n...; Question 80: When assessing a new vendor as a possible business partner, ...; Question 81: An organization processes healthcare data, stores credit car...; Question 82: What is the MOST appropriate action to take when media class...; Question 83: A company has a demand for 30 units of A, 40 units of B, and...; Question 84: Which of the following outcomes Is a benefit of mixed-model ...; Question 85: A cybersecurity professional has been tasked with institutin...; Question 86: While conducting an information asset audit, it was determin...; Question 87: Which of the following capabilities BEST distinguishes a Nex...; Question 88: An organization is aiming to be System and Organization Cont...; Question 89: An effective approach to projecting requirements for materia...; Question 90: An organization's computer incident response team PRIMARILY ...; Question 91: A security assessor has been engaged to perform a penetratio...; Question 92: As the organization requires user friendly access to a new w...; Question 93: A planner has chosen to increase the order point for a raw m...; Question 94: The question below is based on the following standard and ac...; Question 95: In the context of mobile device security, which of the follo...; Question 96: An organization has decided to leverage open source software...; Question 97: Which of the following is the MOST important consideration i...; Question 98: During a manual source code review, an organization discover...; Question 99: An organization wants to control access at a high-traffic en...; Question 100: In pyramid forecasting, the "roll up" process begins with:...; Question 101: What is the BEST reason to include a Hardware Security Modul...; Question 102: Given the bill of material (BOM) information below and indep...; Question 103: Which of the following mechanisms should a practitioner focu...; Question 104: An organization has integrated its enterprise resource plann...; Question 105: Which of the following statements about demonstrated capacit...; Question 106: When performing threat modeling using Spoofing, Tampering, R...; Question 107: Which software development methodology is an iterative custo...; Question 108: Management should support investments in new process technol...; Question 109: Which of the following is the BEST way to identify the vario...; Question 110: An organization implemented a threat modeling program focusi...; Question 111: Capacity requirements planning (CRP) is applicable primarily...; Question 112: An organization recently created a new accounting department...; Question 113: An infrastructure team is setting up a wireless network for ...; Question 114: An example of a flexibility metric for an organization Is:...; Question 115: After a recent threat modeling workshop, the organization ha...; Question 116: Which of the following controls should a financial Instituti...; Question 117: What priority control technique is most appropriate for a fi...; Question 118: What is the MOST beneficial principle of threat modeling?...; Question 119: What function prevents unauthorized devices from gaining acc...; Question 120: A team is tasked with developing new email encryption softwa...; Question 121: What is an important countermeasure to consider when hardeni...; Question 122: Which of the following security techniques can be used to en...; Question 123: An organization has a requirement that all documents must be...; Question 124: It takes an average of 3 hours to set up a model and 1 hour ...; Question 125: What is the main negative effect of changing the due dates o...; Question 126: A Generic Routing Encapsulation (GRE) tunnel moves data acro...; Question 127: To mitigate risk related to natural disasters, an organizati...; Question 128: An organization has decided to give decommissioned computers...; Question 129: A security engineer must address resource sharing between va...; Question 130: What is the following is the MAIN reason why hot-spot usuall...; Question 131: Which of the following should be done FIRST when implementin...; Question 132: Which of the following is the BEST activity to mitigate risk...; Question 133: If an organization wanted to protect is data against loss of...; Question 134: Which of the following may authorize an organization to moni...; Question 135: The planned channels of Inventory disbursement from one or m...; Question 136: Before securing a email system using OpenPGP in an organizat...; Question 137: Which of the following is a methodology for threat modeling ...; Question 138: A firm that currently produces all items to stock is impleme...; Question 139: An organization wishes to utilize a managed Domain Name Syst...; Question 140: Which of the following represents the level of confidence th...; Question 141: A startup organization has been growing rapidly and is plann...; Question 142: How much data an organization can afford to lose is determin...; Question 143: An organization is implementing an enterprise resource plann...; Question 144: A manufacturer has a primary assembly line supported by outp...; Question 145: A champion is assigned to lead a threat modeling exercise. W...; Question 146: Which of the following is an information security management...; Question 147: Which specification enables organizations to ensure penetrat...; Question 148: An organizational policy requires that any data from organiz...; Question 149: Corporate fraud has historically been difficult to detect. W...; Question 150: In an organization that develops aircrafts for military usag...; Question 151: During a security incident investigation, a security analyst...; Question 152: What is the PRIMARY benefit an organization obtains by cyber...; Question 153: An audit of antivirus server reports shows a number of works...; Question 154: What order BEST reflects the steps when adding threat modeli...; Question 155: What is the PRIMARY benefit an organization obtains by adapt...; Question 156: An organization is opening a new data center and is looking ...; Question 157: The question below is based on the following information: (E...; Question 158: A security practitioner has been asked to investigate the pr...; Question 159: Access Control Lists (ACL), protection bits, and file passwo...; Question 160: An Information Technology (IT) professional is seeking a con...; Question 161: A web application is found to have SQL injection (SQLI) vuln...; Question 162: An organization's computer incident responses team PRIMARY r...; Question 163: The most relevant measure of customer service performance Is...; Question 164: An organization has a legacy application used in production....; Question 165: Who is ultimately responsible for ensuring that specific dat...; Question 166: Remote sensors have been deployed at a utility site to reduc...; Question 167: Once an organization has identified and properly classified ...; Question 168: Internet Small Computer Systems Interface (iSCSI) protocol r...; Question 169: Which Open Systems Interconnection (OSI) layer is concerned ...; Question 170: Which of the following BEST describes the responsibility of ...; Question 171: A manufacturing facility uses common wireless technologies t...; Question 172: An example of an assignable cause of variation in process pe...; Question 173: Which of the following trade-offs should be evaluated when d...; Question 174: Which of the following BEST defines whether an organization ...; Question 175: Which of the following does a federated Identity Provider (I...; Question 176: How would blockchain technology support requirements for sha...; Question 177: Which of the following can allow an attacker to bypass authe...; Question 178: Which of the following threats MUST be included while conduc...; Question 179: An organization's security policy requires remote hosts to b...; Question 180: Which of the following situations is most likely to occur wh...; Question 181: What General Data Protection Regulation (GDPR) principle say...; Question 182: What MUST be completed before developing physical security c...; Question 183: A security practitioner has been asked to investigate the pr...; Question 184: Which of the following factors typically would distort a sal...; Question 185: Given the following data, calculate the appropriate takt tim...; Question 186: An organization routes traffic between two of its sites usin...; Question 187: Which of the following statements best characterizes enterpr...; Question 188: Reducing distribution network inventory days of supply will ...; Question 189: A financial institution is implementing an Information Techn...; Question 190: The master schedule is an Important tool in the sales and op...; Question 191: An organization starts to develop a drone inspection and def...; Question 192: An organization provides customer call center operations for...; Question 193: A computer forensic analyst is examining suspected malware f...; Question 194: Which of the following roles is the BEST choice for classify...; Question 195: Which of the following stock location systems would you use ...; Question 196: A security practitioner notices that workforce members retai...; Question 197: An organization wants to ensure a risk does not occur. The a...; Question 198: Maintaining software asset security is MOST dependent on wha...; Question 199: During the sales and operations planning (S&OP) process,...; Question 200: An organization's security policy requires sensitive informa...; Question 201: A company that uses concurrent engineering is likely to expe...; Question 202: What is the MAIN benefit of network segmentation?...; Question 203: What is the PRIMARY secure protocol used by a Content Delive...; Question 204: If all other factors remain the same, when finished goods in...; Question 205: Which of the following systems would be the most cost-effici...; Question 206: An organization has been the subject of increasingly sophist...; Question 207: The cost accountant has discovered a consistent overage in a...; Question 208: An organization wants to ensure the security of communicatio...; Question 209: An organization experienced multiple compromises of endpoint...; Question 210: The trade-off of increasing safety stock to improve customer...; Question 211: A contractor hacked into an unencrypted session on an organi...; Question 212: During an emergency management and planning session, an orga...; Question 213: A company assembles kits of hand tools after receipt of the ...; Question 214: What is the HIGHEST security concern on trans-border data?...; Question 215: An information system security manager is tasked with proper...; Question 216: If the total part failure rate of a machine is 0.00055 failu...; Question 217: Which of the following design considerations would offer the...; Question 218: Which security concept states that a subject (user, applicat...; Question 219: Which of the following are compromised in an untrusted netwo...; Question 220: A Managed Service Provider (MSP) provides hardware and softw...; Question 221: Which of the following factors Is considered a carrying cost...; Question 222: A company decided not to pursue a business opportunity In a ...; Question 223: What does the Role-Based Access Control (RBAC) method define...; Question 224: Which of the following methods most likely Introduces a temp...; Question 225: An organization is preparing to deploy Multi-Factor Authenti...; Question 226: Additional requirements that are outside the original design...; Question 227: An audit report of security operations has listed some anoma...; Question 228: Which of the following statements correctly describes the re...; Question 229: A bank recently informed a customer that their account has b...; Question 230: Which of the following techniques is BEST suited to preserve...; Question 231: Which of the following MUST be in place for security to be e...; Question 232: Which of the following measurements indicates there may be b...; Question 233: A security team member is assessing an organization's backup...; Question 234: Which of the following BEST describes an individual modifyin...; Question 235: What is the BEST item to consider when designing security fo...; Question 236: Which of the following is the MOST effective approach to red...; Question 237: A Software As A Service (SaaS) solution was compromised due ...; Question 238: The project manager has updated the project steering committ...; Question 239: Which of the following is the MOST effective practice for tr...; Question 240: An organization has hired a new auditor to review its critic...; Question 241: Employees at an organization use web based services provided...; Question 242: Improvements in an Input/output control (I/O control) system...; Question 243: In the design and development of a manufacturing process, pr...; Question 244: A health care organization's new cloud-based customer-facing...; Question 245: A large volume of outbound Transmission Control Protocol (TC...; Question 246: An organization wants to establish an information security p...; Question 247: Which of the following circumstances would cause a move from...; Question 248: Which of the following should be done FIRST when implementin...; Question 249: A security specialist is responsible to improve the security...; Question 250: When conducting a vulnerability test using a scanner tool, w...; Question 251: An organization decides to conduct penetration testing. Seni...; Question 252: Which of the following BEST describes the purpose of black h...; Question 253: In restoring the entire corporate email system after a major...; Question 254: An organization has been struggling to improve their securit...; Question 255: A security engineer has determined the need to implement pre...; Question 256: An organization is planning to streamline its Identity and A...; Question 257: How would blockchain technology support requirements for sha...; Question 258: Forecast error typically triggers forecast revision when it ...; Question 259: A logistics manager Is faced with delivering an order via ra...; Question 260: Which of the following tools shows process changes and rando...; Question 261: Which technology is BEST suited to establish a secure commun...; Question 262: Which of the following conditions is most likely to result i...; Question 263: Which of the following environments is most suitable for the...; Question 264: The primary consideration In maintenance, repair, and operat...; Question 265: A Structured Query Language (SQL) database is hosted on a ha...; Question 266: Which of the following MUST exist for an activity to be cons...; Question 267: Which of the following BEST represents a security benefit of...; Question 268: Zombieload, Meltdown, Spectre, and Fallout are all names of ...; Question 269: Which of the following factors is the MOST important conside...; Question 270: The project manager for a new application development is bui...; Question 271: The time spent In queue by a specific manufacturing job is d...; Question 272: An organization has identified that an individual has failed...; Question 273: One of the benefits of Integrating a poka-yoke into the prod...; Question 274: A security consultant is working with an organization to hel...; Question 275: Which assessing whether real-world threats to the security o...; Question 276: A security team is analyzing the management of data within t...; Question 277: An organization's penetration test engineer noticed that tra...; Question 278: An attacker was able to identify an organization's wireless ...; Question 279: A vendor has been awarded a contract to supply key business ...; Question 280: A cybersecurity analyst is responsible for identifying poten...

Question 86/280

LEAVE A REPLY

Download PDF File