MultipleChoice
A company detects suspicious activity associated with inbound connections. Security detection tools are unable to categorize this activity. Which option best is the best solution to help the company overcome this challenge?
OptionsMultipleChoice
A company detects suspicious activity associated with inbound connections. Security detection tools are unable to categorize this activity. Which of the following is the best solution to help the company overcome this challenge?
OptionsMultipleChoice
Consultants for a company learn that customs agents at foreign border crossings are demanding device inspections. The company wants to:
* Minimize the risk to its data by storing its most sensitive data inside of a security container.
* Obfuscate containerized data on command.
Which of the following technologies is the best way to accomplish this goal?
OptionsMultipleChoice
A Chief Information Security Officer requests an action plan to remediate vulnerabilities. A security analyst reviews the output from a recent vulnerability scan and notices hundreds of unique vulnerabilities. The output includes the CVSS score, IP address, hostname, and the list of vulnerabilities. The analyst determines more information is needed in order to decide which vulnerabilities should be fixed immediately. Which of the following is the best source for this information?
OptionsMultipleChoice
A security analyst is reviewing the following vulnerability assessment report:
192.168.1.5, Host = Server1, CVSS 7.5, Web Server, Remotely Executable = Yes, Exploit = Yes
205.1.3.5, Host = Server2, CVSS 6.5, Bind Server, Remotely Executable = Yes, Exploit = POC
207.1.5.7, Host = Server3, CVSS 5.5, Email Server, Remotely Executable = Yes, Exploit = Yes
192.168.1.6, Host = Server4, CVSS 9.8, Domain Controller, Remotely Executable = Yes, Exploit = Yes
Which of the following should be patched first to minimize attacks against internet-facing hosts?
OptionsMultipleChoice
A company SIEM collects information about the log sources. Given the following report information:

Which option best actions should a security engineer take to enhance the security monitoring posture?
OptionsMultipleChoice
[Governance, Risk, and Compliance (GRC)]
A systems administrator wants to introduce a newly released feature for an internal application. The administrate docs not want to test the feature in the production environment. Which of the following locations is the best place to test the new feature?
OptionsMultipleChoice
[Identity and Access Management (IAM)]
A security analyst is reviewing the following authentication logs:

Which of thefollowing should the analyst do first?
OptionsMultipleChoice
[Emerging Technologies and Threats]
Which of the following AI concerns is most adequately addressed by input sanitation?
OptionsMultipleChoice
A company is migrating from a Windows Server to Linux-based servers. A security engineer must deploy a configuration management solution that maintains security software across all the Linux servers. Which of the following configuration file snippets is the most appropriate to use?
A.
---
- name: deployment
hosts: linux_servers
remote_user: root
tasks:
- name: Install security software
ansible.builtin.apt:
B.
<hosts>linux_servers</hosts>
<os_type>Linux 3.1</os_type>
<SElinux>true</SElinux>
<source>com.canonical.io</source>
C.
{'name':'deployment',
'hosts':'linux_servers',
'remote_user':'Administrator',
'tasks':{'name':'Install security software',
'com.microsoft.store.latest'}
}
D.
{'task':'install',
'hosts':'linux_servers',
'remote_user':'root',
'se_linux':'false',
'application':'AppX'}
Options