NEW QUESTION 1
What is the first thing that should be done during the containment step of incident handling?

• A. Change all the passwords
• B. Secure the area
• C. Prepare the Jump bag
• D. Notify management
• E. Prepare a report

Answer: B

NEW QUESTION 2
What would the following IP tables command do?
IP tables -I INPUT -s 99.23.45.1/32 -j DROP

• A. Drop all packets from the source address
• B. Input all packers to the source address
• C. Log all packets to or from the specified address
• D. Drop all packets to the specified address

Answer: A

NEW QUESTION 3
Which command would allow an administrator to determine if a RPM package was already installed?

• A. rpm -s
• B. rpm -q
• C. rpm -a
• D. rpm -t

Answer: B

NEW QUESTION 4
Which of the following is a type of countermeasure that can be deployed to ensure that a threat vector does not meet a vulnerability?

• A. Prevention controls
• B. Detection controls
• C. Monitoring controls
• D. Subversive controls

Answer: A

NEW QUESTION 5
Who is responsible for deciding the appropriate classification level for data within an organization?

• A. Data custodian
• B. Security auditor
• C. End user
• D. Data owner

Answer: B

NEW QUESTION 6
What type of formal document would include the following statement?
Employees are responsible for exercising good judgment regarding the reasonableness of personal use. Individual departments are responsible for creating guidelines concerning personal application of Internet/Intranet/Extranet systems. In the absence of such policies, employees should be guided by departmental policies, and if there is any uncertainty, employees should consult their supervisor or manager.

• A. Company privacy statement
• B. Remote access policy
• C. Acceptable use policy
• D. Non-disclosure agreement

Answer: C

NEW QUESTION 7
You have an automated system for patching the operating systems of all your computers. All patches are supposedly current. Yet your automated vulnerability scanner has just reported vulnerabilities that you believe have been patched. Which of the actions below should you take next?

• A. Check some systems manuall
• B. Rerun the system patching routine
• C. Contact the incident response tea
• D. Ignore the findings as false positive

Answer: A

NEW QUESTION 8
Which of the following statements best describes where a border router is normally placed?

• A. Between your firewall and your internal network
• B. Between your firewall and DNS server
• C. Between your ISP and DNS server
• D. Between your ISP and your external firewall

Answer: D

NEW QUESTION 9
You work as a Network Administrator for Net World Inc. The company has a Linux-based network. You are optimizing performance and security on your Web server. You want to know the ports that are listening to FTP. Which of the following commands will you use?

• A. netstat -a | grep FTP
• B. FTP netstat -r
• C. FTP netstat -a
• D. netstat -r | grep FTP

Answer: A

NEW QUESTION 10
Which of the following protocols are used to provide secure communication between a client and a server over the Internet?
Each correct answer represents a part of the solution. Choose two.

• A. SSL
• B. HTTP
• C. TLS
• D. SNMP

Answer: AC

NEW QUESTION 11
What is the process of simultaneously installing an operating system and a Service Pack called?

• A. Synchronous Update
• B. Slipstreaming
• C. Simultaneous Update
• D. Synchronizing

Answer: B

NEW QUESTION 12
Which of the following heights of fence deters only casual trespassers?

• A. 8 feet
• B. 2 to 2.5 feet
• C. 6 to 7 feet
• D. 3 to 4 feet

Answer: D

NEW QUESTION 13
What is the name of the command-line tool for Windows that can be used to manage audit policies on remote systems?

• A. SECEDTT.EXE
• B. POLCLI.EXE
• C. REMOTEAUDIT.EXE
• D. AUDITPOL.EXE

Answer: D

NEW QUESTION 14
Which of the following fields CANNOT be hashed by Authentication Header (AH) in transport mode?

• A. Length
• B. Source IP
• C. TTL
• D. Destination IP

Answer: C

NEW QUESTION 15
Your IT security team is responding to a denial of service attack against your server. They have taken measures to block offending IP addresses. Which type of threat control is this?

• A. Detective
• B. Preventive
• C. Responsive
• D. Corrective

Answer: D

NEW QUESTION 16
......