<< Prev Question Next Question >>

Question 35/64

A security analyst is providing a risk assessment for a medical device that will be installed on the corporate network. During the assessment, the analyst discovers the device has an embedded operating system that will be at the end of its life in two years. Due to the criticality of the device, the security committee makes a risk- based policy decision to review and enforce the vendor upgrade before the end of life is reached.
Which of the following risk actions has the security committee taken?

LEAVE A REPLY

Your email address will not be published. Required fields are marked *

Question List (64q)
Question 1: The help desk noticed a security analyst that emails from a ...
Question 2: After a breach involving the exfiltration of a large amount ...
Question 3: An information security analyst is reviewing backup data set...
Question 4: A security analyst discovered a specific series of IP addres...
Question 5: A network attack that is exploiting a vulnerability in the S...
Question 6: An organization suspects it has had a breach, and it is tryi...
Question 7: The inability to do remote updates of certificates, keys, so...
Question 8: Which of the following sets of attributes BEST illustrates t...
Question 9: Which of the following software assessment methods would be ...
Question 10: A web developer wants to create a new web part within the co...
Question 11: A company wants to establish a threat-hunting team. Which of...
Question 12: A storage area network (SAN) was inadvertently powered off w...
Question 13: Which of the following roles is ultimately responsible for d...
Question 14: A large software company wants to move as source control and...
Question 15: A development team signed a contract that requires access to...
Question 16: A security team wants to make SaaS solutions accessible from...
Question 17: A cybersecurity analyst has access to several threat feeds a...
Question 18: A product manager is working with an analyst to design a new...
Question 19: A user's computer has been running slowly when the user trie...
Question 20: A cybersecurity analyst is currently checking a newly deploy...
Question 21: While analyzing logs from a WAF, a cybersecurity analyst fin...
Question 22: A company's Chief Information Security Officer (CISO) is con...
Question 23: It is important to parameterize queries to prevent:...
Question 24: An organization needs to limit its exposure to accidental di...
Question 25: A security manager has asked an analyst to provide feedback ...
Question 26: A cyber-incident response analyst is investigating a suspect...
Question 27: A developer wrote a script to make names and other Pll data ...
Question 28: A security analyst has received reports of very slow, interm...
Question 29: A security analyst has observed several incidents within an ...
Question 30: A team of security analysts has been alerted to potential ma...
Question 31: A security analyst conducted a risk assessment on an organiz...
Question 32: Which of the following attacks can be prevented by using out...
Question 33: A security analyst is trying to determine if a host is activ...
Question 34: A web-based front end for a business intelligence applicatio...
Question 35: A security analyst is providing a risk assessment for a medi...
Question 36: Which of the following BEST describes the process by which c...
Question 37: Risk management wants IT to implement a solution that will p...
Question 38: A cybersecurity analyst is supposing an incident response ef...
Question 39: A company just chose a global software company based in Euro...
Question 40: An organization developed a comprehensive modern response po...
Question 41: A cybersecurity analyst is supporting an incident response e...
Question 42: An organization is moving its infrastructure to the cloud in...
Question 43: A security analyst is reviewing the following log entries to...
Question 44: A security analyst needs to assess the web server versions o...
Question 45: During a cyber incident, which of the following is the BEST ...
Question 46: A security analyst is responding to an incident on a web ser...
Question 47: An analyst performs a routine scan of a host using Nmap and ...
Question 48: A security analyst has been alerted to several emails that s...
Question 49: A hybrid control is one that:
Question 50: Data spillage occurred when an employee accidentally emailed...
Question 51: Which of the following should be found within an organizatio...
Question 52: A security analyst is reviewing a web application. If an una...
Question 53: Joe, a penetration tester, used a professional directory to ...
Question 54: You are a cybersecurity analyst tasked with interpreting sca...
Question 55: Which of the following technologies can be used to store dig...
Question 56: As part of an exercise set up by the information security of...
Question 57: As part of a merger with another organization, a Chief Infor...
Question 58: Which of the following policies would slate an employee shou...
Question 59: Which of the following are components of the intelligence cy...
Question 60: A security analyst working in the SOC recently discovered Ba...
Question 61: Which of me following BEST articulates the benefit of levera...
Question 62: A security analyst discovers accounts in sensitive SaaS-base...
Question 63: An analyst identifies multiple instances of node-to-node com...
Question 64: A security analyst implemented a solution that would analyze...