SY0-401 Exam Dumps | The software developer is responsible for writing the code and promoting from the development network

<< Prev Question Next Question >>

Question 832/998

The software developer is responsible for writing the code and promoting from the development network to the quality network. The network administrator is responsible for promoting code to the application servers.
Which of the following practices are they following to ensure application integrity?

A. Least privilege

B. Implicit deny

C. Separation of duties

D. Job rotation

Question List (998q): Question 1: A security administrator must implement a network that is im...; Question 2: A database administrator would like to start encrypting data...; Question 3: An administrator deploys a WPA2 Enterprise wireless network ...; Question 4: Identifying a list of all approved software on a system is a...; Question 5: Recent data loss on financial servers due to security breach...; Question 6: A server crashes at 6 pm. Senior management has determined t...; Question 7: The fundamental information security principals include conf...; Question 8: Ann, the security administrator, wishes to implement multifa...; Question 9: A bank is planning to implement a third factor to protect cu...; Question 10: Which of the following can affect electrostatic discharge in...; Question 11: Which of the following BEST describes disk striping with par...; Question 12: Which of the following is an attack designed to activate bas...; Question 13: An application developer has tested some of the known exploi...; Question 14: Which of the following is a vulnerability associated with di...; Question 15: Users need to exchange a shared secret to begin communicatin...; Question 16: The finance department works with a bank which has recently ...; Question 17: Which of the following can be used on a smartphone to BEST p...; Question 18: In which of the following scenarios would it be preferable t...; Question 19: Which of the following would MOST likely involve GPS?...; Question 20: The IT department has set up a share point site to be used o...; Question 21: Which of the following does full disk encryption prevent?...; Question 22: The access control list (ACL) for a file on a server is as f...; Question 23: Which of the following tools will allow a technician to dete...; Question 24: Ann, a security administrator, wishes to replace their RADIU...; Question 25: Which of the following is the MOST intrusive type of testing...; Question 26: Which of the following would be a reason for developers to u...; Question 27: Which of the following types of authentication packages user...; Question 28: A company is concerned that a compromised certificate may re...; Question 29: A security administrator wishes to implement a secure a meth...; Question 30: Which of the following ports is used for TELNET by default?...; Question 31: Which of the following is true about the recovery agent?...; Question 32: Jane, a VPN administrator, was asked to implement an encrypt...; Question 33: A company uses PGP to ensure that sensitive email is protect...; Question 34: Which of the following steps in incident response procedures...; Question 35: A security technician has been tasked with opening ports on ...; Question 36: The security manager reports that the process of revoking ce...; Question 37: Vendors typically ship software applications with security s...; Question 38: The Chief Information Officer (CIO) has asked a security ana...; Question 39: After Matt, a user, enters his username and password at the ...; Question 40: Which of the following cryptographic related browser setting...; Question 41: Joe, a network security engineer, has visibility to network ...; Question 42: The new Chief Information Officer (CIO) of company ABC, Joe ...; Question 43: A Human Resources user is issued a virtual desktop typically...; Question 44: Which of the following devices is BEST suited for servers th...; Question 45: Which of the following describes the process of removing unn...; Question 46: A new security analyst is given the task of determining whet...; Question 47: Matt, the Chief Information Security Officer (CISO), tells t...; Question 48: A system administrator wants to prevent password compromises...; Question 49: Which of the following should a company implement to BEST mi...; Question 50: Which of the following provides a static record of all certi...; Question 51: Joe, a user, wants to protect sensitive information stored o...; Question 52: The security administration team at a company has been taske...; Question 53: Which of the following authentication services requires the ...; Question 54: Which of the following can be mitigated with proper secure c...; Question 55: Company XYZ has suffered leaks of internally distributed con...; Question 56: Which of the following is true about asymmetric encryption?...; Question 57: To ensure compatibility with their flagship product, the sec...; Question 58: A security administrator wants to test the reliability of an...; Question 59: An employee finds a USB drive in the employee lunch room and...; Question 60: A customer has provided an email address and password to a w...; Question 61: During the information gathering stage of a deploying role-b...; Question 62: Which of the following may be used with a BNC connector?...; Question 63: A product manager is concerned about continuing operations a...; Question 64: A security technician has been asked to recommend an authent...; Question 65: A security administrator is notified that users attached to ...; Question 66: Which of the following should be enabled in a laptop's BIOS ...; Question 67: Which of the following algorithms has well documented collis...; Question 68: Which of the following is primarily used to provide fault to...; Question 69: The chief Risk officer is concerned about the new employee B...; Question 70: Which of the following protocols encapsulates an IP packet w...; Question 71: During an audit, the security administrator discovers that t...; Question 72: A new mobile banking application is being developed and uses...; Question 73: A company has 5 users. Users 1, 2 and 3 need access to payro...; Question 74: A major medical corporation is investigating deploying a web...; Question 75: A company is planning to encrypt the files in several sensit...; Question 76: Which of the following provides dedicated hardware-based cry...; Question 77: A security administrator needs to implement a technology tha...; Question 78: The internal audit group discovered that unauthorized users ...; Question 79: Which of the following file systems is from Microsoft and wa...; Question 80: A password audit has revealed that a significant percentage ...; Question 81: A technician wants to secure communication to the corporate ...; Question 82: Searching for systems infected with malware is considered to...; Question 83: An internal auditing team would like to strengthen the passw...; Question 84: To mitigate the risk of intrusion, an IT Manager is concerne...; Question 85: Pete, a developer, writes an application. Jane, the security...; Question 86: Sara, a security engineer, is testing encryption ciphers for...; Question 87: Software developers at a company routinely make changes to p...; Question 88: A small IT security form has an internal network composed of...; Question 89: A security administrator is responsible for ensuring that th...; Question 90: Ann wants to send a file to Joe using PKI. Which of the foll...; Question 91: A group policy requires users in an organization to use stro...; Question 92: An administrator implements SELinux on a production web serv...; Question 93: After a recent internal audit, the security administrator wa...; Question 94: Which of the following is the best practice to put at the en...; Question 95: Which of the following protocols is the security administrat...; Question 96: Which of the following should a security technician implemen...; Question 97: A Chief Executive Officer (CEO) is steering company towards ...; Question 98: Fuzzing is a security assessment technique that allows teste...; Question 99: Which of the following is the below pseudo-code an example o...; Question 100: Which of the following access methods uses radio frequency w...; Question 101: A malicious user has collected the following list of informa...; Question 102: Joe has read and write access to his own home directory. Joe...; Question 103: The ore-sales engineering team needs to quickly provide accu...; Question 104: An employee reports work was being completed on a company ow...; Question 105: Establishing a method to erase or clear cluster tips is an e...; Question 106: A security administrator wishes to protect session leys shou...; Question 107: A user reports being unable to access a file on a network sh...; Question 108: An organization is trying to decide which type of access con...; Question 109: Ann, a security administrator, is strengthening the security...; Question 110: While setting up a secure wireless corporate network, which ...; Question 111: A system administrator is configuring a new file server and ...; Question 112: A company has several public conference room areas with expo...; Question 113: A company requires that a user's credentials include providi...; Question 114: A company uses SSH to support internal users. They want to b...; Question 115: A network administrator, Joe, arrives at his new job to find...; Question 116: Which of the following is true about PKI? (Choose two.)...; Question 117: Jane, a security administrator, has observed repeated attemp...; Question 118: During a routine audit it is discovered that someone has bee...; Question 119: A risk management team indicated an elevated level of risk d...; Question 120: Joe must send Ann a message and provide Ann with assurance t...; Question 121: After analyzing and correlating activity from multiple senso...; Question 122: A security analyst has been investigating an incident involv...; Question 123: Attempting to inject 50 alphanumeric key strokes including s...; Question 124: Devices on the SCADA network communicate exclusively at Laye...; Question 125: Which of the following can be performed when an element of t...; Question 126: An administrator wants to configure a switch port so that it...; Question 127: Two organizations want to share sensitive data with one anot...; Question 128: Ann, a member of the Sales Department, has been issued a com...; Question 129: Which of the following is a hardware based encryption device...; Question 130: The process of applying a salt and cryptographic hash to a p...; Question 131: A security technician has removed the sample configuration f...; Question 132: Ann a new small business owner decides to implement WiFi acc...; Question 133: A security Operations Center was scanning a subnet for infec...; Question 134: Which of the following password attacks is MOST likely to cr...; Question 135: The Chief Information Security Officer (CISO) is concerned t...; Question 136: A security administrator has been asked to implement a VPN t...; Question 137: A security engineer would like to analyze the effect of depl...; Question 138: An application developer needs to allow employees to use the...; Question 139: A system administrator is configuring UNIX accounts to authe...; Question 140: Which of the following technologies when applied to android ...; Question 141: A company needs to provide web-based access to shared data s...; Question 142: Which of the following is the difference between identificat...; Question 143: Full disk encryption is MOST effective against the following...; Question 144: During a security assessment, an administrator wishes to see...; Question 145: A thief has stolen mobile device and removed its battery to ...; Question 146: By hijacking unencrypted cookies an application allows an at...; Question 147: Which of the following concepts is enforced by certifying th...; Question 148: A security administrator must implement a secure key exchang...; Question 149: Ann has taken over as the new head of the IT department. One...; Question 150: In the course of troubleshooting wireless issues from users,...; Question 151: Human Resources suspects an employee is accessing the employ...; Question 152: Joe, a system architect, wants to implement appropriate solu...; Question 153: An employee in the accounting department recently received a...; Question 154: Due to hardware limitation, a technician must implement a wi...; Question 155: Which of the following steps of incident response does a tea...; Question 156: Suspicious traffic without a specific signature was detected...; Question 157: Public key certificates and keys that are compromised or wer...; Question 158: Which of the following is BEST used to capture and analyze n...; Question 159: Employee badges are encoded with a private encryption key an...; Question 160: The call center supervisor has reported that many employees ...; Question 161: Use of a smart card to authenticate remote servers remains M...; Question 162: Which of the following is an important implementation consid...; Question 163: When implementing a mobile security strategy for an organiza...; Question 164: During a code review a software developer discovers a securi...; Question 165: Which of the following protocols uses TCP instead of UDP and...; Question 166: A security analyst has a sample of malicious software and ne...; Question 167: Which of the following ports should be opened on a firewall ...; Question 168: A network manager needs a cost-effective solution to allow f...; Question 169: Company XYZ's laptops was recently stolen from a user which ...; Question 170: Virtualization that allows an operating system kernel to run...; Question 171: A CRL is comprised of.; Question 172: A project team is developing requirements of the new version...; Question 173: A security administrator wants to get a real time look at wh...; Question 174: A security specialist has been asked to evaluate a corporate...; Question 175: A software company sends their offsite backup tapes to a thi...; Question 176: Which of the following explains the difference between a pub...; Question 177: Which of the following BEST describes malware that tracks a ...; Question 178: Joe, an employee, reports to the security manager that sever...; Question 179: Which of the following security concepts identifies input va...; Question 180: Which of the following would a security administrator implem...; Question 181: Matt, a security analyst, needs to select an asymmetric encr...; Question 182: Ann, the software security engineer, works for a major softw...; Question 183: Ann, a security administrator is hardening the user password...; Question 184: An application developer has coded a new application with a ...; Question 185: Which of the following transportation encryption protocols s...; Question 186: Which of the following is the BEST technology for the sender...; Question 187: A technician has implemented a system in which all workstati...; Question 188: Which of the following authentication services uses a defaul...; Question 189: A system security analyst wants to capture data flowing in a...; Question 190: A company wishes to prevent unauthorized employee access to ...; Question 191: A network technician is configuring clients for VLAN access....; Question 192: A new employee has joined the accounting department and is u...; Question 193: Which of the following actions in PKI takes a certificate au...; Question 194: A software security concern when dealing with hardware and d...; Question 195: Which of the following was based on a previous X.500 specifi...; Question 196: An administrator has concerns regarding the company's server...; Question 197: A hacker has discovered a simple way to disrupt business for...; Question 198: A process in which the functionality of an application is te...; Question 199: A user has reported inadvertently sending an encrypted email...; Question 200: An administrator needs to submit a new CSR to a CA. Which of...; Question 201: A security technician is implementing PKI on a Network. The ...; Question 202: Which of the following metrics is important for measuring th...; Question 203: A technician installed two ground plane antennae on 802.11n ...; Question 204: One of the most basic ways to protect the confidentiality of...; Question 205: An IT security technician is actively involved in identifyin...; Question 206: Which of the following authentication services uses a defaul...; Question 207: A business has recently adopted a policy allowing employees ...; Question 208: A small company has a website that provides online customer ...; Question 209: A security administrator has installed a new KDC for the cor...; Question 210: The chief information officer (CIO) of a major company inten...; Question 211: Log file analysis on a router reveals several unsuccessful t...; Question 212: The chief security officer (CSO) has reported a rise in data...; Question 213: Which of the following is an example of multifactor authenti...; Question 214: Which of the following BEST explains Platform as a Service?...; Question 215: A security administrator implements access controls based on...; Question 216: Which of the following would provide the STRONGEST encryptio...; Question 217: A security administrator must implement a wireless encryptio...; Question 218: A company with a US-based sales force has requested that the...; Question 219: A website is breached, exposing the usernames and MD5 passwo...; Question 220: The Chief Executive Officer (CEO) receives a suspicious voic...; Question 221: Encryption used by RADIUS is BEST described as:...; Question 222: An attacker unplugs the access point at a coffee shop. The a...; Question 223: Which of the following can take advantage of man-in-the-midd...; Question 224: Which of the following is replayed during wireless authentic...; Question 225: A system administrator runs a network inventory scan every F...; Question 226: A company's BYOD policy requires the installation of a compa...; Question 227: A security administrator suspects that an employee in the IT...; Question 228: A BYOD policy in which employees are able to access the wire...; Question 229: A web administrator has just implemented a new web server to...; Question 230: The company's sales team plans to work late to provide the C...; Question 231: Which of the following application security testing techniqu...; Question 232: Which of the following types of encryption will help in prot...; Question 233: In performing an authorized penetration test of an organizat...; Question 234: A user has several random browser windows opening on their c...; Question 235: Pete, the system administrator, has concerns regarding users...; Question 236: Which of the following tools would a security administrator ...; Question 237: An insurance company requires an account recovery process so...; Question 238: Which of the following are examples of network segmentation?...; Question 239: Ann has recently transferred from the payroll department to ...; Question 240: Four weeks ago a network administrator applied a new IDS and...; Question 241: Which of the following is mainly used for remote access into...; Question 242: The security administrator notices a user logging into a cor...; Question 243: Each server on a subnet is configured to only allow SSH acce...; Question 244: A company has had several security incidents in the past six...; Question 245: Which of the following BEST explains the use of an HSM withi...; 1 commentQuestion 246: An attacker has gained access to the company's web server by...; Question 247: An administrator is implementing a new management system for...; Question 248: A user has forgotten their account password. Which of the fo...; Question 249: Which of the following is a black box testing methodology?...; Question 250: Which of the following design components is used to isolate ...; Question 251: Which of the following is MOST critical in protecting contro...; Question 252: The librarian wants to secure the public Internet kiosk PCs ...; Question 253: Which of the following is an advantage of implementing indiv...; Question 254: What is a system that is intended or designed to be broken i...; Question 255: Which of the following authentication services should be rep...; Question 256: Which of the following is an example of a false positive?...; Question 257: Which of the following types of malware, attempts to circumv...; Question 258: Which of the following would be used when a higher level of ...; Question 259: Users are trying to communicate with a network but are unabl...; Question 260: A project manager is evaluating proposals for a cloud commut...; Question 261: A technician wants to verify the authenticity of the system ...; Question 262: The network security manager has been notified by customer s...; Question 263: A technician needs to implement a system which will properly...; Question 264: A server administrator notes that a fully patched applicatio...; Question 265: The marketing department wants to distribute pens with embed...; Question 266: A security manager installed a standalone fingerprint reader...; Question 267: Jane, a security analyst, is reviewing logs from hosts acros...; Question 268: One month after a software developer was terminated, the hel...; Question 269: Which of the following can be used for both encryption and d...; Question 270: A recent audit has discovered that at the time of password e...; Question 271: Ann, a technician, wants to implement a single protocol on a...; Question 272: An administrator, Ann, wants to ensure that only authorized ...; Question 273: Which of the following would a security administrator implem...; Question 274: The security administrator installed a newly generated SSL c...; Question 275: Which of the following components MUST be trusted by all par...; Question 276: Which of the following is BEST described by a scenario where...; Question 277: Internet banking customers currently use an account number a...; Question 278: An administrator is configuring a new Linux web server where...; Question 279: A bank Chief Information Security Officer (CISO) is responsi...; Question 280: A security administrator has implemented a policy to prevent...; Question 281: A company has recently begun to provide internal security aw...; Question 282: The Chief Executive Officer (CEO) Joe notices an increase in...; Question 283: Which of the following is true about input validation in a c...; Question 284: Which of the following is an XML based open standard used in...; Question 285: Which of the following are unique to white box testing metho...; Question 286: Deploying a wildcard certificate is one strategy to:...; Question 287: One of the senior managers at a company called the help desk...; Question 288: Pete, an employee, needs a certificate to encrypt data. Whic...; Question 289: A user authenticates to a local directory server. The user t...; Question 290: A security administrator wishes to prevent certain company d...; Question 291: Which of the following should Matt, a security administrator...; Question 292: Which of the following types of cryptography should be used ...; Question 293: Joe, a security technician, is configuring two new firewalls...; Question 294: A security administrator is troubleshooting an authenticatio...; Question 295: A company is starting to allow employees to use their own pe...; Question 296: A software developer utilizes cryptographic functions to gen...; Question 297: Which of the following would Jane, an administrator, use to ...; Question 298: A network engineer is configuring a VPN tunnel connecting a ...; Question 299: The user of a news service accidently accesses another user'...; Question 300: Which of the following is the MOST likely cause of users bei...; Question 301: Recently clients are stating they can no longer access a sec...; Question 302: A corporation has experienced several media leaks of proprie...; Question 303: The BEST methods for a web developer to prevent the website ...; Question 304: A company wants to improve its overall security posture by d...; Question 305: Which of the following is BEST utilized to identify common m...; Question 306: A system administrator is setting up a file transfer server....; Question 307: A program displays: ERROR: this program has caught an except...; Question 308: Using a protocol analyzer, a security consultant was able to...; Question 309: Which of the following offers the LEAST secure encryption ca...; Question 310: Joe, the system administrator, is setting up a wireless netw...; Question 311: An administrator is hardening systems and wants to disable u...; Question 312: Which of the following presents the STRONGEST access control...; Question 313: A user tries to visit a website with a revoked certificate. ...; Question 314: A new application needs to be deployed on a virtual server. ...; Question 315: If Organization A trusts Organization B and Organization B t...; Question 316: While preparing for an audit a security analyst is reviewing...; Question 317: Which of the following is the BEST reason for placing a pass...; Question 318: A security administrator finds that an intermediate CA withi...; Question 319: Access mechanisms to data on encrypted USB hard drives must ...; Question 320: An employee's mobile device associates with the company's gu...; Question 321: Ann a new security specialist is attempting to access the in...; Question 322: Which of the following cryptographic algorithms is MOST ofte...; Question 323: An administrator is implementing a security control that onl...; Question 324: The security administrator generates a key pair and sends on...; Question 325: Which of the following authentication methods requires the u...; Question 326: Which of the following attacks impact the availability of a ...; Question 327: A company has a corporate infrastructure where end users man...; Question 328: Which of the following should be used when a business needs ...; Question 329: It has been discovered that students are using kiosk tablets...; Question 330: A security manager is preparing the training portion of an i...; Question 331: The process of making certain that an entity (operating syst...; Question 332: Users are utilizing thumb drives to connect to USB ports on ...; Question 333: A security technician is attempting to access a wireless net...; Question 334: ABC company has a lot of contractors working for them. The p...; Question 335: Joe has hired several new security administrators and have b...; Question 336: Ann, the IT director, wants to ensure that as hoc changes ar...; Question 337: Which of the following is an authentication and accounting s...; Question 338: Which of the following allows a network administrator to imp...; Question 339: Joe, a computer forensic technician, responds to an active c...; Question 340: A company uses port security based on an approved MAC list t...; Question 341: A technician has deployed a new VPN concentrator. The device...; Question 342: Which of the following BEST describes an attack where commun...; Question 343: A Chief Privacy Officer, Joe, is concerned that employees ar...; Question 344: Joe is a helpdesk specialist. During a routine audit, a comp...; Question 345: Which of the following is true about an email that was signe...; Question 346: A network administrator has a separate user account with rig...; Question 347: A security technician is concerned there4 is not enough secu...; Question 348: Anne, an employee, receives the following email: From: Human...; Question 349: A security manager must remain aware of the security posture...; Question 350: In order to securely communicate using PGP, the sender of an...; Question 351: Which of the following relies on the use of shared secrets t...; Question 352: Joe, a sales employee, is connecting to a wireless network a...; Question 353: Which of the following would Matt, a security administrator,...; Question 354: The system administrator is tasked with changing the adminis...; Question 355: An administrator is investigating a system that may potentia...; Question 356: In order to enter a high-security data center, users are req...; Question 357: A team of firewall administrators have access to a `master p...; Question 358: Which of the following would a security administrator implem...; Question 359: RC4 is a strong encryption protocol that is general used wit...; Question 360: A security technician is working with the network firewall t...; Question 361: Which of the following devices would be the MOST efficient w...; Question 362: Prior to leaving for an extended vacation, Joe uses his mobi...; Question 363: During a disaster recovery planning session, a security admi...; Question 364: A Windows- based computer is infected with malware and is ru...; Question 365: A company recently received accreditation for a secure netwo...; Question 366: Several employee accounts appear to have been cracked by an ...; Question 367: Users have reported receiving unsolicited emails in their in...; Question 368: Which of the following authentication services combines auth...; Question 369: A network administrator is configuring access control for th...; Question 370: Privilege creep among long-term employees can be mitigated b...; Question 371: Joe noticed that there is a larger than normal account of ne...; Question 372: Which of the following internal security controls is aimed a...; Question 373: Input validation is an important security defense because it...; Question 374: Which of the following is the BEST practice when dealing wit...; Question 375: Which of the following pseudocodes can be used to handle pro...; Question 376: A security administrator is evaluating three different servi...; Question 377: Jane, a security administrator, has been tasked with explain...; Question 378: A security administrator would like to ensure that some memb...; Question 379: Ann a security technician receives a report from a user that...; Question 380: Pete, a security auditor, has detected clear text passwords ...; Question 381: A company recently experienced several security breaches tha...; Question 382: Joe, an application developer, is building an external facin...; Question 383: A security administrator has deployed all laptops with Self ...; Question 384: During a company-wide initiative to harden network security,...; Question 385: A company requires that all wireless communication be compli...; Question 386: If an organization wants to implement a BYOD policy, which o...; Question 387: Which of the following protocols provides for mutual authent...; Question 388: A chief information security officer (CISO) is providing a p...; Question 389: A network administrator noticed various chain messages have ...; Question 390: The helpdesk is receiving numerous reports that a newly inst...; Question 391: An administrator was asked to review user accounts. Which of...; Question 392: Which of the following can use RC4 for encryption? (Choose t...; Question 393: Given a class C network a technician has been tasked with cr...; Question 394: Which of the following should be used to authenticate and lo...; Question 395: A security administrator is using a software program to test...; Question 396: Which of the following controls mitigates the risk of Matt, ...; Question 397: The security team would like to gather intelligence about th...; Question 398: After disabling SSID broadcast, a network administrator stil...; Question 399: A system administrator must configure the company's authenti...; Question 400: Which of the following data security techniques will allow M...; Question 401: When designing a corporate NAC solution, which of the follow...; Question 402: A financial company requires a new private network link with...; Question 403: Given the log output: Max 15 00:15:23.431 CRT: #SEC_LOGIN-5-...; Question 404: A user, Ann, has been issued a smart card and is having prob...; Question 405: Which of the following encompasses application patch managem...; Question 406: Which of the following is a requirement when implementing PK...; Question 407: Ann, a security administrator at a call center, has been exp...; Question 408: Users report that after downloading several applications, th...; Question 409: Which of the following best describes the reason for using h...; Question 410: Ann, a security administrator at a call center, has been exp...; Question 411: The IT department needs to prevent users from installing unt...; Question 412: A network administrator is looking for a way to automaticall...; Question 413: An attacker crafts a message that appears to be from a trust...; Question 414: A security administrator would like the corporate webserver ...; Question 415: A system administrator has noticed vulnerability on a high i...; Question 416: A security assurance officer is preparing a plan to measure ...; Question 417: A network technician at a company, Joe is working on a netwo...; Question 418: Which of the following assessments would Pete, the security ...; Question 419: After a security incident involving a physical asset, which ...; Question 420: An SSL session is taking place. After the handshake phase ha...; Question 421: An administrator receives a security alert that appears to b...; Question 422: A network security engineer notices unusual traffic on the n...; Question 423: A security administrator wants to deploy security controls t...; Question 424: Ann, a security administrator, has been tasked by the Chief ...; Question 425: A network inventory discovery application requires non-privi...; Question 426: Which of the following symmetric key algorithms are examples...; Question 427: Joe, the security administrator, has determined that one of ...; Question 428: A network administrator argues that WPA2 encryption is not n...; Question 429: Recently, the desktop support group has been performing a ha...; Question 430: Which of the following is an attack designed to activate bas...; Question 431: An administrator has two servers and wants them to communica...; Question 432: During a recent audit, it was discovered that several user a...; Question 433: Company XYZ has encountered an increased amount of buffer ov...; Question 434: Which of the following tests a number of security controls i...; Question 435: Which of the following is an important step in the initial s...; Question 436: A security engineer is tasked with encrypting corporate emai...; Question 437: RC4 is a strong encryption protocol that is generally used w...; Question 438: A user attempting to log on to a workstation for the first t...; Question 439: A security analyst has a sample of malicious software and ne...; Question 440: A company is implementing a system to transfer direct deposi...; Question 441: Which of the following will allow Pete, a security analyst, ...; Question 442: Which of the following is considered the MOST effective prac...; Question 443: A Chief Information Security Officer (CISO) wants to impleme...; Question 444: In order for network monitoring to work properly, you need a...; Question 445: Joe, the chief technical officer (CTO) is concerned that the...; Question 446: Which of the following can be implemented with multiple bit ...; Question 447: Which of the following authenticate connections using point-...; Question 448: A software development company wants to implement a digital ...; Question 449: While working on a new project a security administrator want...; Question 450: Joe, a network administrator, is able to manage the backup s...; Question 451: Which of the following tools would allow Ann, the security a...; Question 452: While responding to an incident on a Linux server, the admin...; Question 453: Pete, an employee, is terminated from the company and the le...; Question 454: A security administrator is required to submit a detailed im...; Question 455: Joe, an administrator, installs a web server on the Internet...; Question 456: Symmetric encryption utilizes __________, while asymmetric e...; Question 457: The sales force in an organization frequently travel to remo...; Question 458: Which of the following would allow users from outside of an ...; Question 459: One of the most consistently reported software security vuln...; Question 460: Which of the following is a proprietary protocol commonly us...; Question 461: Company XYZ recently salvaged company laptops and removed al...; Question 462: Without validating user input, an application becomes vulner...; Question 463: A system administrator needs to ensure that certain departme...; Question 464: A bank has a fleet of aging payment terminals used by mercha...; Question 465: Which of the following BEST describes part of the PKI proces...; Question 466: The finance department just procured a software application ...; Question 467: A forensic analyst is reviewing electronic evidence after a ...; Question 468: A malicious individual used an unattended customer service k...; Question 469: Joe, a website administrator, believes he owns the intellect...; Question 470: Four weeks ago, a network administrator applied a new IDS an...; Question 471: Given the following set of firewall rules: From the inside t...; Question 472: The security department has implemented a new laptop encrypt...; Question 473: The recovery agent is used to recover the:...; Question 474: A large multinational corporation with networks in 30 countr...; Question 475: A file on a Linux server has default permissions of rw-rw-r-...; Question 476: Which of the following best describes the objectives of succ...; Question 477: When viewing IPS logs the administrator see systems all over...; Question 478: During a recent audit, the auditors cited the company's curr...; Question 479: Users in an organization are experiencing when attempting to...; Question 480: The act of magnetically erasing all of the data on a disk is...; Question 481: An IT security technician needs to establish host based secu...; Question 482: A company is exploring the option of letting employees use t...; Question 483: Which of the following security benefits would be gained by ...; Question 484: A company wants to prevent unauthorized access to its secure...; Question 485: An administrator is investigating a system that may potentia...; Question 486: Which of the following controls can be implemented together ...; Question 487: A security administrator has been tasked with setting up a n...; Question 488: A company hosts a web server that requires entropy in encryp...; Question 489: A news and weather toolbar was accidently installed into a w...; Question 490: Which of the following practices reduces the management burd...; Question 491: Which of the following common access control models is commo...; Question 492: Which of the following types of malware is designed to provi...; Question 493: While reviewing the security controls in place for a web-bas...; Question 494: Which of the following allows an organization to store a sen...; Question 495: One of the servers on the network stops responding due to la...; Question 496: Jane, an IT security technician, needs to create a way to se...; Question 497: Many employees are receiving email messages similar to the o...; Question 498: Which of the following controls should critical application ...; Question 499: Joe, a system administrator, receives reports that users att...; Question 500: Mobile tablets are used by employees on the sales floor to a...; Question 501: Which of the following attacks initiates a connection by sen...; Question 502: A company is looking to improve their security posture by ad...; Question 503: Which of the following would be used to identify the securit...; Question 504: A company wants to ensure that all aspects if data are prote...; Question 505: Which of the following is a notification that an unusual con...; Question 506: Which of the following will allow the live state of the virt...; Question 507: Two users need to securely share encrypted files via email. ...; Question 508: A software developer places a copy of the source code for a ...; Question 509: A recent review of accounts on various systems has found tha...; Question 510: A review of administrative access has discovered that too ma...; Question 511: A consultant has been tasked to assess a client's network. T...; Question 512: Which of the following application security principles invol...; Question 513: While troubleshooting a new wireless 802.11 ac network an ad...; Question 514: A company requires that all users enroll in the corporate PK...; Question 515: An organizations' security policy requires that users change...; Question 516: A university has a building that holds the power generators ...; Question 517: A company wants to ensure that all credentials for various s...; Question 518: When information is shared between two separate organization...; Question 519: An administrator wants to provide onboard hardware based cry...; Question 520: A network administrator was to implement a solution that wil...; Question 521: A new employee has been hired to perform system administrati...; Question 522: A set of standardized system images with a pre-defined set o...; Question 523: Users can authenticate to a company's web applications using...; Question 524: A website administrator has received an alert from an applic...; Question 525: A security administrator is reviewing logs and notices multi...; Question 526: The concept of rendering data passing between two points ove...; Question 527: Sara, an application developer, implemented error and except...; Question 528: Which of the following describes purposefully injecting extr...; Question 529: Which of the following access control methodologies provides...; Question 530: An attacker is attempting to insert malicious code into an i...; Question 531: The system administrator notices that many employees are usi...; Question 532: A breach at a credit card company resulted in customer's cre...; Question 533: Sara, the Chief Information Officer (CIO), has requested an ...; Question 534: A periodic update that corrects problems in one version of a...; Question 535: Which of the following is the best practice for error and ex...; Question 536: Ann a network administrator has been tasked with strengtheni...; Question 537: Which of the following provides RADIUS?...; Question 538: A technician wants to implement a dual factor authentication...; Question 539: Which of the following is a way to implement a technical con...; Question 540: After receiving the hard drive from detectives, the forensic...; Question 541: Which of the following are restricted to 64-bit block sizes?...; Question 542: Which of the following is used to inform users of the reperc...; Question 543: Use of group accounts should be minimized to ensure the foll...; Question 544: Which device monitors network traffic in a passive manner?...; Question 545: Which of the following BEST allows Pete, a security administ...; Question 546: A systems administrator has implemented PKI on a classified ...; Question 547: Which of the following can BEST help prevent cross-site scri...; Question 548: After Ann, a user, logs into her banking websites she has ac...; Question 549: After visiting a website, a user receives an email thanking ...; Question 550: Which of the following provides Digital Signatures?...; Question 551: A supervisor in the human resources department has been give...; Question 552: An employee from the fire Marshall's office arrives to inspe...; Question 553: Users require access to a certain server depending on their ...; Question 554: A custom PKI application downloads a certificate revocation ...; Question 555: Which of the following hardware based encryption devices is ...; Question 556: Which of the following protocols is MOST likely to be levera...; Question 557: A system security analyst using an enterprise monitoring too...; Question 558: A company's application is hosted at a data center. The data...; Question 559: The system administrator wishes to implement a hardware-base...; Question 560: Which of the following is a best practice when setting up a ...; Question 561: Which of the following is a hardware-based security technolo...; Question 562: Which of the following is a measure of biometrics performanc...; Question 563: Users in the HR department were recently informed that they ...; Question 564: The system administrator is reviewing the following logs fro...; Question 565: When creating a public / private key pair, for which of the ...; Question 566: An administrator must select an algorithm to encrypt data at...; Question 567: Which of the following devices is used for the transparent s...; Question 568: A system administrator has noticed that users change their p...; Question 569: Which of the following is an application security coding pro...; Question 570: An information system owner has supplied a new requirement t...; Question 571: Joe, a network administrator, is setting up a virtualization...; Question 572: After an audit, it was discovered that an account was not di...; Question 573: A company has experienced problems with their ISP, which has...; Question 574: Which of the following protocols uses an asymmetric key to o...; Question 575: A security administrator wants to ensure that the message th...; Question 576: Employees are reporting that they have been receiving a larg...; Question 577: Which of the following is built into the hardware of most la...; Question 578: A rogue programmer included a piece of code in an applicatio...; Question 579: A quality assurance analyst is reviewing a new software prod...; Question 580: Matt, a developer, recently attended a workshop on a new app...; Question 581: A network stream needs to be encrypted. Sara, the network ad...; Question 582: Which of the following types of trust models is used by a PK...; Question 583: When employing PKI to send signed and encrypted data the ind...; Question 584: In order to maintain oversight of a third party service prov...; Question 585: The security administrator runs an rpm verify command which ...; Question 586: Pete, the compliance manager, wants to meet regulations. Pet...; Question 587: A recent audit has revealed that several users have retained...; Question 588: Which of the following are MOST susceptible to birthday atta...; Question 589: The public key is used to perform the following: (Choose thr...; Question 590: Protecting the confidentiality of a message is accomplished ...; Question 591: Which of the following protocols provides transport security...; Question 592: A computer is found to be infected with malware and a techni...; Question 593: A security analyst implemented group-based privileges within...; Question 594: Joe, a user, reports to the system administrator that he is ...; Question 595: Which of the following represents a cryptographic solution w...; Question 596: Mike, a security professional, is tasked with actively verif...; Question 597: An SSL/TLS private key is installed on a corporate web proxy...; Question 598: Which of the following is an authentication service that use...; Question 599: When reviewing a digital certificate for accuracy, which of ...; Question 600: A security administrator wants to perform routine tests on t...; Question 601: The security consultant is assigned to test a client's new s...; Question 602: A system requires administrators to be logged in as the "roo...; Question 603: A security analyst is working on a project team responsible ...; Question 604: An assessment too reports that the company's web server may ...; Question 605: A security administrator is concerned about the strength of ...; Question 606: Joe the system administrator has noticed an increase in netw...; Question 607: Which of the following techniques enables a highly secured o...; Question 608: Which of the following is considered a risk management BEST ...; Question 609: A system administrator is notified by a staff member that th...; Question 610: A new network administrator is setting up a new file server ...; Question 611: Which of the following types of attacks is based on coordina...; Question 612: In Kerberos, the Ticket Granting Ticket (TGT) is used for th...; Question 613: A security administrator must implement a system to allow cl...; Question 614: A new client application developer wants to ensure that the ...; Question 615: Which of the following would an attacker use to generate and...; Question 616: Joe, an end user, has received a virus detection warning. Wh...; Question 617: A security director has contracted an outside testing compan...; Question 618: An administrator has to determine host operating systems on ...; Question 619: An attacker went to a local bank and collected disposed pape...; Question 620: A technician has been assigned a service request to investig...; Question 621: A webpage displays a potentially offensive advertisement on ...; Question 622: Which of the following can be used to mitigate risk if a mob...; Question 623: Joe, the information security manager, is tasked with calcul...; Question 624: A security administrator has been tasked to ensure access to...; Question 625: A system administrator is configuring shared secrets on serv...; Question 626: An organization has introduced token-based authentication to...; Question 627: A company has had their web application become unavailable s...; Question 628: A security administrator is reviewing the below output from ...; Question 629: A technician reports a suspicious individual is seen walking...; Question 630: A security technician wants to improve the strength of a wea...; Question 631: Which of the following is public keys used for?...; Question 632: Ann, a system analyst, discovered the following log. Which o...; Question 633: The security administrator receives a service ticket saying ...; Question 634: Which of the following is commonly LDAP and Kerberos used fo...; Question 635: Which of the following authentication services uses a ticket...; Question 636: A worker dressed in a fire suppression company's uniform ask...; Question 637: Which of the following password attacks involves attempting ...; Question 638: An administrator finds that non-production servers are being...; Question 639: A security administrator needs a locally stored record to re...; Question 640: Which of the following documents outlines the responsibility...; Question 641: When employees that use certificates leave the company they ...; Question 642: Ann a user has been promoted from a sales position to sales ...; Question 643: Which of the following is a software vulnerability that can ...; Question 644: In order to enter a high-security datacenter, users are requ...; Question 645: An administrator is building a development environment and r...; Question 646: A company needs to receive data that contains personally ide...; Question 647: Which of the following should be done before resetting a use...; Question 648: An employee needs to connect to a server using a secure prot...; Question 649: A company has a BYOD policy that includes tablets and smart ...; Question 650: An administrator uses a server with a trusted OS and is conf...; Question 651: Which of the following techniques can be used to prevent the...; Question 652: A security administrator needs a method to ensure that only ...; Question 653: Which of the following would be used as a secure substitute ...; Question 654: A technician is configuring a switch to support VOPIP phones...; Question 655: During a penetration test from the Internet, Jane, the syste...; Question 656: Which of the following is used to certify intermediate autho...; Question 657: A new MPLS network link has been established between a compa...; Question 658: Which of the following techniques describes the use of appli...; Question 659: An information bank has been established to store contacts, ...; Question 660: Which of the following ciphers would be BEST used to encrypt...; Question 661: Which of the following is a penetration testing method?...; Question 662: An attacker impersonates a fire marshal and demands access t...; Question 663: In order to use a two-way trust model the security administr...; Question 664: An administrator requests a new VLAN be created to support t...; Question 665: The Chief Security Officer (CSO) for a datacenter in a hosti...; Question 666: A security administrator is aware that a portion of the comp...; Question 667: A company must send sensitive data over a non-secure network...; Question 668: The security manager wants to unify the storage of credentia...; Question 669: A classroom utilizes workstations running virtualization sof...; Question 670: Data confidentiality must be enforced on a secure database. ...; Question 671: A security administrator working for a law enforcement organ...; Question 672: A company has purchased an application that integrates into ...; Question 673: A company would like to implement two-factor authentication ...; Question 674: A user attempts to install new and relatively unknown softwa...; Question 675: A penetration tester is measuring a company's posture on soc...; Question 676: The help desk is experiencing a higher than normal amount of...; Question 677: An attacker Joe configures his service identifier to be as a...; Question 678: A company needs to provide a secure backup mechanism for key...; Question 679: A security technician received notification of a remotely ex...; Question 680: Which of the following can be implemented in hardware or sof...; Question 681: Client computers login at specified times to check and updat...; Question 682: A network administrator uses an RFID card to enter the datac...; Question 683: In order for Sara, a client, to logon to her desktop compute...; Question 684: An organization is working with a cloud services provider to...; Question 685: During an office move a sever containing the employee inform...; Question 686: Methods to test the responses of software and web applicatio...; Question 687: An administrator discovers that many users have used their s...; Question 688: A security technician wants to implement stringent security ...; Question 689: A bank has recently deployed mobile tablets to all loan offi...; Question 690: Ann, a security analyst, is preparing for an upcoming securi...; Question 691: A user attempts to install a new and relatively unknown soft...; Question 692: Disabling unnecessary services, restricting administrative a...; Question 693: Ann is a member of the Sales group. She needs to collaborate...; Question 694: A new security policy being implemented requires all email w...; Question 695: Speaking a passphrase into a voice print analyzer is an exam...; Question 696: Which of the following is an authentication method that can ...; Question 697: A one-time security audit revealed that employees do not hav...; Question 698: An employee connects a wireless access point to the only jac...; Question 699: Which of the following MUST Matt, a security administrator, ...; Question 700: An administrator is instructed to disable IP-directed broadc...; Question 701: Which of the following services are used to support authenti...; Question 702: A system administrator is conducting baseline audit and dete...; Question 703: A company would like to prevent the use of a known set of ap...; Question 704: An administrator wants to ensure that the reclaimed space of...; Question 705: In PKI, a key pair consists of: (Choose two.)...; Question 706: A system administrator has made several unauthorized changes...; Question 707: An organization wants to conduct secure transactions of larg...; Question 708: An organization has a need for security control that identif...; Question 709: In an effort to reduce data storage requirements, a company ...; Question 710: Jane, a security administrator, needs to implement a secure ...; Question 711: When an authorized application is installed on a server, the...; Question 712: A network was down for several hours due to a contractor ent...; Question 713: A security manager received reports of several laptops conta...; Question 714: An organization uses a Kerberos-based LDAP service for netwo...; Question 715: Which of the following types of security services are used t...; Question 716: Which of the following is used to verify data integrity?...; Question 717: Which of the following is commonly used for federated identi...; Question 718: Which of the following BEST represents the goal of a vulnera...; Question 719: Ann works at a small company and she is concerned that there...; Question 720: Joe, a user, upon arriving to work on Monday morning noticed...; Question 721: Company A sends a PGP encrypted file to company B. If compan...; Question 722: A group of users from multiple departments are working toget...; Question 723: Which of the following exploits either a host file on a targ...; Question 724: After encrypting all laptop hard drives, an executive office...; Question 725: Company policy requires employees to change their passwords ...; Question 726: A CA is compromised and attacks start distributing malicious...; Question 727: The database server used by the payroll system crashed at 3 ...; Question 728: In regard to secure coding practices, why is input validatio...; Question 729: A programmer has allocated a 32-bit variable to store the re...; Question 730: A security administrator implements a web server that utiliz...; Question 731: A security analyst is reviewing the following packet capture...; Question 732: A recently installed application update caused a vital appli...; Question 733: Which of the following is a control that allows a mobile app...; Question 734: Which of the following is replayed during wireless authentic...; Question 735: The security manager must store a copy of a sensitive docume...; Question 736: A network technician has received comments from several user...; Question 737: An administrator performs a risk calculation to determine if...; Question 738: A technician is reviewing the logical access control method ...; Question 739: A server administrator discovers the web farm is using weak ...; Question 740: While performing surveillance activities, an attacker determ...; Question 741: Which of the following is the BEST way to prevent Cross-Site...; Question 742: An administrator is having difficulty configuring WPA2 Enter...; Question 743: During a Linux security audit at a local college, it was not...; Question 744: Which of the following must a user implement if they want to...; Question 745: Which of the following security architecture elements also h...; Question 746: A Chief Security Officer (CSO) has been unsuccessful in atte...; Question 747: A Company has recently identified critical systems that supp...; Question 748: A large corporation has data centers geographically distribu...; Question 749: A security administrator has been tasked with assisting in t...; Question 750: An organization has an internal PKI that utilizes client cer...; Question 751: The firewall administrator is adding a new certificate for t...; Question 752: Which of the following will provide data encryption, key man...; Question 753: In an effort to test the effectiveness of an organization's ...; Question 754: Joe needs to track employees who log into a confidential dat...; Question 755: Which of the following can hide confidential or malicious da...; Question 756: A security administrator is reviewing the company's data bac...; Question 757: A defense contractor wants to use one of its classified syst...; Question 758: Which of the following BEST describes using a smart card and...; Question 759: Ann is traveling for business and is attempting to use the h...; Question 760: A security analyst performs the following activities: monito...; Question 761: An attacker captures the encrypted communication between two...; Question 762: An organization currently uses FTP for the transfer of large...; Question 763: A government agency wants to ensure that the systems they us...; Question 764: Which of the following describes the implementation of PAT?...; Question 765: While testing a new host based firewall configuration a secu...; Question 766: The IT department has setup a website with a series of quest...; Question 767: A new security policy in an organization requires that all f...; Question 768: An administrator needs to protect against downgrade attacks ...; Question 769: A security administrator at a company which implements key e...; Question 770: A security administrator wants to implement a company-wide p...; Question 771: Which of the following can be used as an equipment theft det...; Question 772: Which of the following allows lower level domains to access ...; Question 773: Which of the following would prevent a user from installing ...; Question 774: Which of the following can be used to maintain a higher leve...; Question 775: In which of the following scenarios is PKI LEAST hardened?...; Question 776: Which of the following authentication provides users XML for...; Question 777: A security manager is discussing change in the security post...; Question 778: Which of the following technical controls helps to prevent S...; Question 779: Which of the following has a storage root key?...; Question 780: A load balancer has the ability to remember which server a p...; Question 781: Joe, a technician, is tasked with finding a way to test oper...; Question 782: Joe wants to employ MD5 hashing on the company file server. ...; Question 783: Ann was reviewing her company's event logs and observed seve...; Question 784: A company is rolling out a new e-commerce website. The secur...; Question 785: When using PGP, which of the following should the end user p...; Question 786: A risk assessment team is concerned about hosting data with ...; Question 787: Which of the following provides the HIGHEST level of confide...; Question 788: When confidentiality is the primary concern, and a secure ch...; Question 789: Which of the following is the term for a fix for a known sof...; Question 790: Having adequate lighting on the outside of a building is an ...; Question 791: Which of the following cryptographic methods is most secure ...; Question 792: An administrator would like to utilize encryption that has c...; Question 793: A company has implemented full disk encryption. Clients must...; Question 794: Based on information leaked to industry websites, business m...; Question 795: Ann, a college professor, was recently reprimanded for posti...; Question 796: Which of the following must be kept secret for a public key ...; Question 797: A network security administrator is trying to determine how ...; Question 798: In order to gain an understanding of the latest attack tools...; Question 799: Which of the following authentication protocols makes use of...; Question 800: Which of the following would be MOST appropriate if an organ...; Question 801: An organization's security policy states that users must aut...; Question 802: Which of the following is a document that contains detailed ...; Question 803: After correctly configuring a new wireless enabled thermosta...; Question 804: A security engineer is asked by the company's development te...; Question 805: A company used a partner company to develop critical compone...; Question 806: The chief security officer (CSO) has issued a new policy to ...; Question 807: A security analyst must ensure that the company's web server...; Question 808: Which of the following should an administrator implement to ...; Question 809: A resent OS patch caused an extended outage. It took the IT ...; Question 810: During a review a company was cited for allowing requestors ...; Question 811: A company often processes sensitive data for the government....; Question 812: Which of the following technologies was developed to allow c...; Question 813: A datacenter has suffered repeated burglaries which led to e...; Question 814: A cyber security administrator receives a list of IPs that h...; Question 815: Which of the following uses both a public and private key?...; Question 816: Which of the following access controls enforces permissions ...; Question 817: The Chief Executive Officer (CEO) of a major defense contrac...; Question 818: Joe notices there are several user accounts on the local net...; Question 819: Which of the following allows a company to maintain access t...; Question 820: A network administrator identifies sensitive files being tra...; Question 821: Jane has recently implemented a new network design at her or...; Question 822: Which of the following is BEST utilized to actively test sec...; Question 823: Which of the following is considered an environmental contro...; Question 824: After a few users report problems with the wireless network,...; Question 825: A system administrator wants to use open source software but...; Question 826: After working on his doctoral dissertation for two years, Jo...; Question 827: Which of the following incident response plan steps would MO...; Question 828: Joe, a company's network engineer, is concerned that protoco...; Question 829: A merchant acquirer has the need to store credit card number...; Question 830: A company plans to expand by hiring new engineers who work i...; Question 831: An internal audit has detected that a number of archived tap...; Question 832: The software developer is responsible for writing the code a...; Question 833: A software development company has hired a programmer to dev...; Question 834: A recent audit has revealed that all employees in the bookke...; Question 835: A security administrator is selecting an MDM solution for an...; Question 836: Company employees are required to have workstation client ce...; Question 837: A way to assure data at-rest is secure even in the event of ...; Question 838: An administrator is concerned that a company's web server ha...; Question 839: In an environment where availability is critical such as Ind...; Question 840: A company has identified a watering hole attack. Which of th...; Question 841: Joe, a technician, is tasked with finding a way to test oper...; Question 842: A programmer must write a piece of code to encrypt passwords...; Question 843: A security administrator wants to implement a solution which...; Question 844: Which of the following can Joe, a security administrator, im...; Question 845: A security administrator has concerns regarding employees sa...; Question 846: Which of the following devices will help prevent a laptop fr...; Question 847: Which of the following is the FIRST step in a forensics inve...; Question 848: Which of the following would provide the MOST objective resu...; Question 849: The Quality Assurance team is testing a third party applicat...; Question 850: A security architect is designing an enterprise solution for...; Question 851: A small company has recently purchased cell phones for manag...; Question 852: A security administrator is tasked with implementing central...; Question 853: Which of the following, if implemented, would improve securi...; Question 854: Joe a company's new security specialist is assigned a role t...; Question 855: When Ann an employee returns to work and logs into her works...; Question 856: Which of the following provides the strongest authentication...; Question 857: Joe an employee has reported to Ann a network technician an ...; Question 858: A security administrator is tackling issues related to authe...; Question 859: Which of the following is a common coding error in which bou...; Question 860: Which of the following attacks involves the use of previousl...; Question 861: On a train, an individual is watching a proprietary video on...; Question 862: A system administrator has noticed network performance issue...; Question 863: Which of the following ports will be used for logging into s...; Question 864: A hospital IT department wanted to secure its doctor's table...; Question 865: Which of the following should a company deploy to prevent th...; Question 866: A company discovers an unauthorized device accessing network...; Question 867: Users report that they are unable to access network printing...; Question 868: Which of the following can a security administrator implemen...; Question 869: Which of the following forms of software testing can best be...; Question 870: To protect corporate data on removable media, a security pol...; Question 871: Given the following list of corporate access points, which o...; Question 872: Which of the following types of technologies is used by secu...; Question 873: The information security technician wants to ensure security...; Question 874: A user has plugged in a wireless router from home with defau...; Question 875: Joe uses his badge to enter the server room, Ann follows Joe...; Question 876: A security administrator has concerns that employees are ins...; Question 877: A Company transfers millions of files a day between their se...; Question 878: A system administrator is implementing a firewall ACL to blo...; Question 879: A corporate wireless guest network uses an open SSID with a ...; Question 880: A new intern was assigned to the system engineering departme...; Question 881: A security administrator wants to check user password comple...; Question 882: Various employees have lost valuable customer data due to ha...; Question 883: A company's security administrator wants to manage PKI for i...; Question 884: Joe, an employee, was escorted from the company premises due...; Question 885: An organization must implement controls to protect the confi...; Question 886: An IT auditor tests an application as an authenticated user....; Question 887: While responding to an incident on a new Windows server, the...; Question 888: An organization receives an email that provides instruction ...; Question 889: A security engineer discovers that during certain times of d...; Question 890: Which of the following MOST interferes with network-based de...; Question 891: Which of the following concepts is used by digital signature...; Question 892: An incident occurred when an outside attacker was able to ga...; Question 893: An outside security consultant produces a report of several ...; Question 894: Which of the following is it MOST difficult to harden agains...; Question 895: The Quality Assurance team is testing a new third party deve...; Question 896: A user has called the help desk to report an enterprise mobi...; Question 897: Which of the following provides a user ID and password toget...; Question 898: After several thefts a Chief Executive Officer (CEO) wants t...; Question 899: a malicious attacker has intercepted HTTP traffic and insert...; Question 900: Which of the following is an indication of an ongoing curren...; Question 901: Which of the following provides additional encryption streng...; Question 902: Which of the following solutions provides the most flexibili...; Question 903: Which of the following means a password history value of thr...; Question 904: A user Ann has her assigned token but she forgotten her pass...; Question 905: A switch is set up to allow only 2 simultaneous MAC addresse...; Question 906: Which of the following is the GREATEST security concern of a...; Question 907: A network administrator has identified port 21 being open an...; Question 908: A new hire wants to use a personally owned phone to access c...; Question 909: Joe, a security analyst, is attempting to determine if a new...; Question 910: Verifying the integrity of data submitted to a computer prog...; Question 911: A user contacts the help desk after being unable to log in t...; Question 912: Company A and Company B both supply contractual services to ...; Question 913: A workstation is exhibiting symptoms of malware and the netw...; Question 914: A system administrator wants to implement an internal commun...; Question 915: Ann is concerned that the application her team is currently ...; Question 916: Which of the following is synonymous with a server's certifi...; Question 917: Which of the following is the BEST method for ensuring all f...; Question 918: A security analyst, while doing a security scan using packet...; Question 919: A company wants to prevent end users from plugging unapprove...; Question 920: A security administrator discovers an image file that has se...; Question 921: A small company wants to employ PKI. The company wants a cos...; Question 922: A security administrator wants to block unauthorized access ...; Question 923: A security administrator is designing an access control syst...; Question 924: Which of the following security concepts can prevent a user ...; Question 925: During a routine configuration audit, a systems administrato...; Question 926: A company is deploying a new video conferencing system to be...; Question 927: Which of the following protocols is used to validate whether...; Question 928: Which of the following assessment techniques would a securit...; Question 929: A recent online password audit has identified that stale acc...; Question 930: One of the findings of risk assessment is that many of the s...; Question 931: A forensics analyst is tasked identifying identical files on...; Question 932: Which of the following authentication methods can use the SC...; Question 933: An attacker Joe configures his service identifier to be the ...; Question 934: The key management organization has implemented a key escrow...; Question 935: After connecting to the corporate network a user types the U...; Question 936: A system administrator wants to confidentially send a user n...; Question 937: Account lockout is a mitigation strategy used by Jane, the a...; Question 938: While an Internet café a malicious user is causing all surro...; Question 939: Which of the following is true about the CRL?...; Question 940: Which of the following types of authentication solutions use...; Question 941: When considering a vendor-specific vulnerability in critical...; Question 942: A security administrator must implement a system that will s...; Question 943: During an anonymous penetration test, Jane, a system adminis...; Question 944: Which of the following is a concern when encrypting wireless...; Question 945: When confidentiality is the primary concern, which of the fo...; Question 946: The IT department has been tasked with reducing the risk of ...; Question 947: Which of the following identifies certificates that have bee...; Question 948: Which of the following MUST be updated immediately when an e...; Question 949: Which of the following would a security administrator implem...; Question 950: Ann is the data owner of financial records for a company. Sh...; Question 951: Malware that changes its binary pattern on specific dates at...; Question 952: Sara, a security manager, has decided to force expiration of...; Question 953: Several users report to the administrator that they are havi...; Question 954: A chief information officer (CIO) is concerned about PII con...; Question 955: Which of the following would be used to allow a subset of tr...; Question 956: A company has been attacked and their website has been alter...; Question 957: The below report indicates that the system is MOST likely in...; Question 958: A company hired Joe, an accountant. The IT administrator wil...; Question 959: A system administrator is using a packet sniffer to troubles...; Question 960: An organization is required to log all user internet activit...; Question 961: A network administrator is responsible for securing applicat...; Question 962: A company is about to release a very large patch to its cust...; Question 963: All of the following are valid cryptographic hash functions ...; Question 964: Which of the following passwords is the LEAST complex?...; Question 965: An agent wants to create fast and efficient cryptographic ke...; Question 966: An administrator is configuring a network for all users in a...; Question 967: The IT department has installed new wireless access points b...; Question 968: A company hires outside security experts to evaluate the sec...; Question 969: A technician has been tasked with installing and configuring...; Question 970: An administrator needs to renew a certificate for a web serv...; Question 971: A developer needs to utilize AES encryption in an applicatio...; Question 972: A security analyst discovered data such as images and word d...; Question 973: A project manager is working with an architectural firm that...; Question 974: A router was shut down as a result of a DoS attack. Upon rev...; Question 975: Allowing unauthorized removable devices to connect to comput...; Question 976: An organization is implementing a password management applic...; Question 977: Which of the following types of cloud computing would be MOS...; Question 978: A company's password and authentication policies prohibit th...; Question 979: Which of the following practices is used to mitigate a known...; Question 980: A security administrator is reviewing the web logs and notic...; Question 981: A company hires a penetration testing team to test its overa...; Question 982: Failure to validate the size of a variable before writing it...; Question 983: A wireless site survey has been performed at a company. One ...; Question 984: An attack that is using interference as its main attack to i...; Question 985: A recent audit of a company's identity management system sho...; Question 986: Joe, a web developer, wants to make sure his application is ...; Question 987: Joe, a technician, initiated scans if the company's 10 route...; Question 988: A security administrator determined that users within the co...; Question 989: Which of the following types of data encryption would Matt, ...; Question 990: Which of the following is a security advantage of using NoSQ...; Question 991: A security administrator is investigating a recent server br...; Question 992: Which of the following can be used to ensure that sensitive ...; Question 993: An auditing team has found that passwords do not meet the be...; Question 994: A computer is suspected of being compromised by malware. The...; Question 995: An administrator would like users to authenticate to the net...; Question 996: A video surveillance audit recently uncovered that an employ...; Question 997: An employee reports work was being completed on a company-ow...; Question 998: During a recent investigation, an auditor discovered that an...

Question 832/998

LEAVE A REPLY

Download PDF File