A company is migrating systems from an on-premises facility to a third-party managed datacenter. For continuity of operations and business agility, remote access to all hardware platforms must be available at all times. Access controls need to be very robust and provide an audit trail. Which of the following security controls will meet the company's objectives? (Select two.)

• A.Access to hardware platforms is restricted to the systems administrator's IP address
• B.Integrated platform management interfaces are configured to allow access only via SSH
• C.Application logs are hashed cryptographically and sent to the SIEM
• D.The IP addresses of server management interfaces are located within the company's extranet
• E.Access is captured in event logs that include source address, time stamp, and outcome
• F.Access is limited to interactive logins on the VDi

Comment: *

Name: *

Email: *

Verification: *

Which of the following provides the BEST risk calculation methodology?

• A.Annual Loss Expectancy (ALE) x Value of Asset
• B.Potential Loss x Event Probability x Control Failure Probability
• C.Impact x Threat x Vulnerability
• D.Risk Likelihood x Annual Loss Expectancy (ALE)

Comment: *

Name: *

Email: *

Verification: *

An attacker attempts to create a DoS event against the VoIP system of a company. The attacker uses a tool to flood the network with a large number of SIP INVITE traffic. Which of the following would be LEAST likely to thwart such an attack?

• A.Install IDS/IPS systems on the network
• B.Force all SIP communication to be encrypted
• C.Create separate VLANs for voice and data traffic
• D.Implement QoS parameters on the switches

Comment: *

Name: *

Email: *

Verification: *

A system owner has requested support from data owners to evaluate options for the disposal of equipment containing sensitive data. Regulatory requirements state the data must be rendered unrecoverable via logical means or physically destroyed.
Which of the following factors is the regulation intended to address?

• A.Sovereignty
• B.E-waste
• C.Remanence
• D.Deduplication

Comment: *

Name: *

Email: *

Verification: *

An organization's network engineering team recently deployed a new software encryption solution to
ensure the confidentiality of data at rest, which was found to add 300ms of latency to data read-write
requests in storage, impacting business operations.
Which of the following alternative approaches would BEST address performance requirements while
meeting the intended security objective?

• A.Employ hardware FDE or SED solutions.
• B.Replace HDDs with SSD arrays.
• C.Utilize a more efficient cryptographic hash function.
• D.Use a FIFO pipe a multithreaded software solution.

Comment: *

Name: *

Email: *

Verification: *