NEW QUESTION 1
A security analyst reviews the datacenter access logs for a fingerprint scanner and notices an abundance of errors that correlate with users' reports of issues accessing the facility. Which of the following MOST likely the cause of the cause of the access issues?

• A. False rejection
• B. Cross-over error rate
• C. Efficacy rale
• D. Attestation

Answer: B

NEW QUESTION 2
A forensics investigator is examining a number of unauthorized payments the were reported on the company's website. Some unusual log entries show users received an email for an unwanted mailing list and clicked on a link to attempt to unsubscribe. One of the users reported the email to the phishing team, and the forwarded email revealed the link to be:

Which of the following will the forensics investigator MOST likely determine has occurred?

• A. SQL injection
• B. CSRF
• C. XSS
• D. XSRF

Answer: B

NEW QUESTION 3
A recent audit uncovered a key finding regarding the use of a specific encryption standard in a web application that is used to communicate with business customers. Due to the technical limitations of its customers the company is unable to upgrade the encryption standard. Which of the following types of controls should be used to reduce the risk created by this scenario?

• A. Physical
• B. Detective
• C. Preventive
• D. Compensating

Answer: D

NEW QUESTION 4
A security analyst sees the following log output while reviewing web logs:

Which of the following mitigation strategies would be BEST to prevent this attack from being successful?

• A. Secure cookies
• B. Input validation
• C. Code signing
• D. Stored procedures

Answer: B

NEW QUESTION 5
Which of the following allows for functional test data to be used in new systems for testing and training purposes to protect the read data?

• A. Data encryption
• B. Data masking
• C. Data deduplication
• D. Data minimization

Answer: B

NEW QUESTION 6
The IT department at a university is concerned about professors placing servers on the university network in an attempt to bypass security controls. Which of the following BEST represents this type of threat?

• A. A script kiddie
• B. Shadow IT
• C. Hacktivism
• D. White-hat

Answer: B

NEW QUESTION 7
Which of the following would be BEST to establish between organizations that have agreed cooperate and are engaged in early discussion to define the responsibilities of each party, but do not want to establish a contractually binding agreement?

• A. An SLA
• B. AnNDA
• C. ABPA
• D. AnMOU

Answer: D

NEW QUESTION 8
A global pandemic is forcing a private organization to close some business units and reduce staffing at others. Which of the following would be BEST to help the organization’s executives determine the next course of action?

• A. An incident response plan
• B. A communications plan
• C. A disaster recovery plan
• D. A business continuity plan

Answer: D

NEW QUESTION 9
An organization has hired a security analyst to perform a penetration test. The analyst captures 1Gb worth of inbound network traffic to the server and transfer the pcap back to the machine for analysis. Which of the following tools should the analyst use to further review the pcap?

• A. Nmap
• B. cURL
• C. Netcat
• D. Wireshark

Answer: D

NEW QUESTION 10
A security analyst needs to make a recommendation for restricting access to certain segments of the network using only data-link layer security. Which of the following controls will the analyst MOST likely recommend?

• A. MAC
• B. ACL
• C. BPDU
• D. ARP

Answer: A

NEW QUESTION 11
A security analyst needs to be proactive in understand the types of attacks that could potentially target the company's execute. Which of the following intelligence sources should to security analyst review?

• A. Vulnerability feeds
• B. Trusted automated exchange of indicator information
• C. Structured threat information expression
• D. Industry information-sharing and collaboration groups

Answer: D

NEW QUESTION 12
A company has limited storage available and online presence that cannot for more than four hours. Which of the following backup methodologies should the company implement to allow for the FASTEST database restore time In the event of a failure, which being maindful of the limited available storage space?

• A. Implement fulltape backup every Sunday at 8:00 p.m and perform nightly tape rotations.
• B. Implement different backups every Sunday at 8:00 and nightly incremental backups at 8:00 p.m
• C. Implement nightly full backups every Sunday at 8:00 p.m
• D. Implement full backups every Sunday at 8:00 p.m and nightly differential backups at 8:00

Answer: B

NEW QUESTION 13
A Chief Executive Officer's (CEO) personal information was stolen in a social engineering attack. Which of the following sources would reveal if the CEO's personal information is for sale?

• A. Automated information sharing
• B. Open-source intelligence
• C. The dark web
• D. Vulnerability databases

Answer: C

NEW QUESTION 14
A security analyst is reviewing information regarding recent vulnerabilities. Which of the following will the analyst MOST likely consult to validate which platforms have been affected?

• A. OSINT
• B. SIEM
• C. CVSS
• D. CVE

Answer: D

NEW QUESTION 15
An engineer wants to access sensitive data from a corporate-owned mobile device. Personal data is not allowed on the device. Which of the following MDM configurations must be considered when the engineer travels for business?

• A. Screen locks
• B. Application management
• C. Geofencing
• D. Containerization

Answer: D

NEW QUESTION 16
Users at organization have been installing programs from the internet on their workstations without first proper authorization. The organization maintains a portal from which users can install standardized programs. However, some users have administrative access on their workstations to enable legacy programs to function property. Which of the following should the security administrator consider implementing to address this issue?

• A. Application code signing
• B. Application whitellsting
• C. Data loss prevention
• D. Web application firewalls

Answer: B

NEW QUESTION 17
A startup company is using multiple SaaS and IaaS platform to stand up a corporate infrastructure and build out a customer-facing web application. Which of the following solutions would be BEST to provide security, manageability, and visibility into the platforms?

• A. SIEM
• B. DLP
• C. CASB
• D. SWG

Answer: C

NEW QUESTION 18
A cybersecurity administrator has a reduced team and needs to operate an on-premises network and security infrastructure efficiently. To help with the situation, the administrator decides to hire a service provider. Which of the following should the administrator use?

• A. SDP
• B. AAA
• C. IaaS
• D. MSSP
• E. Microservices

Answer: D

NEW QUESTION 19
A company is implementing MFA for all applications that store sensitive data. The IT manager wants MFA to be non-disruptive and user friendly. Which of the following technologies should the IT manager use when implementing MFA?

• A. One-time passwords
• B. Email tokens
• C. Push notifications
• D. Hardware authentication

Answer: C

NEW QUESTION 20
A financial analyst is expecting an email containing sensitive information from a client. When the email arrives, the analyst receives an error and is unable to open the encrypted message. Which of the following is the MOST likely cause of the issue?

• A. The S/MME plug-in is not enabled.
• B. The SLL certificate has expired.
• C. Secure IMAP was not implemented
• D. POP3S is not supported.

Answer: A

NEW QUESTION 21
An organization that is located in a flood zone is MOST likely to document the concerns associated with the restoration of IT operation in a:

• A. business continuity plan
• B. communications plan.
• C. disaster recovery plan.
• D. continuity of operations plan

Answer: C

NEW QUESTION 22
An organization is developing a plan in the event of a complete loss of critical systems and data. Which of the following plans is the organization MOST likely developing?

• A. Incident response
• B. Communications
• C. Disaster recovery
• D. Data retention

Answer: C

NEW QUESTION 23
A security administrator needs to create a RAIS configuration that is focused on high read speeds and fault tolerance. It is unlikely that multiple drivers will fail simultaneously. Which of the following RAID configurations should the administration use?

• A. RA1D 0
• B. RAID1
• C. RAID 5
• D. RAID 10

Answer: C

NEW QUESTION 24
......