A security engineer is assessing the controls that are in place to secure the corporate-Internet- facing DNS server. The engineer notices that security ACLs exist but are not being used properly.
The DNS server should respond to any source but only provide information about domains it has authority over. Additionally, the DNS administrator have identified some problematic IP addresses that should not be able to make DNS requests. Given the ACLs below:

Which of the following should the security administrator configure to meet the DNS security needs?

• A.
• B.
• C.
• D.

Comment: *

Name: *

Email: *

Verification: *

Customers are receiving emails containing a link to malicious software. These emails are subverting spam filters. The email reads as follows:
Delivered-To: [email protected]
Received: by 10.14.120.205
Mon, 1 Nov 2010 11:15:24 -0700 (PDT)
Received: by 10.231.31.193
Mon, 01 Nov 2010 11:15:23 -0700 (PDT)
Return-Path: <[email protected]>
Received: from 127.0.0.1 for <[email protected]>; Mon, 1 Nov 2010 13:15:14 -0500 (envelope-from <[email protected]>) Received: by smtpex.example.com (SMTP READY) with ESMTP (AIO); Mon, 01 Nov 2010 13:15:14 -0500 Received: from 172.18.45.122 by 192.168.2.55; Mon, 1 Nov 2010 13:15:14 -0500 From: Company <[email protected]> To: "[email protected]" <[email protected]> Date: Mon, 1 Nov 2010 13:15:11 -0500 Subject: New Insurance Application Thread-Topic: New Insurance Application Please download and install software from the site below to maintain full access to your account.
www.examplesite.com
________________________________
Additional information: The authorized mail servers IPs are 192.168.2.10 and 192.168.2.11.
The network's subnet is 192.168.2.0/25.
Which of the following are the MOST appropriate courses of action a security administrator could take to eliminate this risk? (Select TWO).

• A.Identify the origination point for malicious activity on the unauthorized mail server.
• B.Block port 25 on the firewall for all unauthorized mail servers.
• C.Disable open relay functionality.
• D.Shut down the SMTP service on the unauthorized mail server.
• E.Enable STARTTLS on the spam filter.

Comment: *

Name: *

Email: *

Verification: *

Using SSL, an administrator wishes to secure public facing server farms in three subdomains: dc1.east.company.com, dc2.central.company.com, and dc3.west.company.com. Which of the following is the number of wildcard SSL certificates that should be purchased?

• A.0
• B.1
• C.3
• D.6

Comment: *

Name: *

Email: *

Verification: *

The Chief Information Officer (CIO) has been asked to develop a security dashboard with the relevant metrics.
The board of directors will use the dashboard to monitor and track the overall security posture of the organization. The CIO produces a basic report containing both KPI and KRI data in two separate sections for the board to review.
Which of the following BEST meets the needs of the board?

• A.KRI:
  - EDR coverage across the fleet
  - Backlog of unresolved security investigations
  - Time to patch critical issues on a monthly basis
  - Threat landscape rating
  KPI:
  - Time to resolve open security items
  - Compliance with regulations
  - % of suppliers with approved security control frameworks
  - Severity of threats and vulnerabilities reported by sensors
• B.KPI:
  - Compliance with regulations
  - % of suppliers with approved security control frameworks
  - Severity of threats and vulnerabilities reported by sensors
  - Threat landscape rating
  KRI:
  - Time to resolve open security items
  - Backlog of unresolved security investigations
  - EDR coverage across the fleet
  - Time to patch critical issues on a monthly basis
• C.KRI:
  - Compliance with regulations
  - Backlog of unresolved security investigations
  - Severity of threats and vulnerabilities reported by sensors
  - Time to patch critical issues on a monthly basis
  KPI:
  - Time to resolve open security items
  - % of suppliers with approved security control frameworks
  - EDR coverage across the fleet
  - Threat landscape rating
• D.KRI:
  - EDR coverage across the fleet
  - % of suppliers with approved security control framework
  - Backlog of unresolved security investigations
  - Threat landscape rating
  KPI:
  - Time to resolve open security items
  - Compliance with regulations
  - Time to patch critical issues on a monthly basis
  - Severity of threats and vulnerabilities reported by sensors

Comment: *

Name: *

Email: *

Verification: *

A company's chief cybersecurity architect wants to configure mutual authentication to access an internal payroll website. The architect has asked the administration team to determine the configuration that would provide the best defense against MITM attacks. Which of the following implementation approaches would BEST support the architect's goals?

• A.Installareverse proxyinthe corporate DMZconfiguredto decryptTLSsessions.
• B.ImplementTLSandrequire the clienttouse itsowncertificate duringhandshake.
• C.Configurea web application proxyandinstitute monitoring ofHTTPStransactions.
• D.Utilizea challenge-response promptasrequiredinputat username/passwordentry.

Comment: *

Name: *

Email: *

Verification: *