An organization designs and develops safety-critical embedded firmware (inclusive of embedded OS and services) for the automotive industry. The organization has taken great care to exercise secure software development practices for the firmware Of paramount importance is the ability to defeat attacks aimed at replacing or corrupting running firmware once the vehicle leaves production and is in the field Integrating, which of the following host and OS controls would BEST protect against this threat?

• A.Configure the host to require measured boot with attestation using platform configuration registers extended through the OS and into application space.
• B.Require software engineers to adhere to a coding standard, leverage static and dynamic analysis within the development environment, and perform exhaustive state space analysis before deployment
• C.Ensure the firmware includes anti-malware services that will monitor and respond to any introduction of malicious logic.
• D.Perform reverse engineering of the hardware to assess for any implanted logic or other supply chain integrity violations
• E.Implement out-of-band monitoring to analyze the state of running memory and persistent storage and, in a failure mode, signal a check-engine light condition for the operator.

Comment: *

Name: *

Email: *

Verification: *

A company is in the process of outsourcing its customer relationship management system to a cloud provider.
It will host the entire organization's customer database. The database will be accessed by both the company's users and its customers. The procurement department has asked what security activities must be performed for the deal to proceed. Which of the following are the MOST appropriate security activities to be performed as part of due diligence? (Select TWO).

• A.Physical penetration test of the datacenter to ensure there are appropriate controls.
• B.Penetration testing of the solution to ensure that the customer data is well protected.
• C.Security clauses are implemented into the contract such as the right to audit.
• D.Review of the organizations security policies, procedures and relevant hosting certifications.
• E.Code review of the solution to ensure that there are no back doors located in the software.

Comment: *

Name: *

Email: *

Verification: *

A company that has been breached multiple times is looking to protect cardholder data. The previous undetected attacks all mimicked normal administrative-type behavior. The company must deploy a host solution to meet the following requirements:
* Detect administrative actions
* Block unwanted MD5 hashes
* Provide alerts
* Stop exfiltration of cardholder data
Which of the following solutions would BEST meet these requirements? (Choose two.)

• A.DLP
• B.EDR
• C.HIPS
• D.HIDS
• E.EFS
• F.AV

Comment: *

Name: *

Email: *

Verification: *

A Chief Information Security Officer (CISO) recently changed jobs into a new industry. The CISO's first task is to write a new, relevant risk assessment for the organization. Which of the following help to the CISO find relevant risks to the organization? (Choose two.)

• A.Perform a penetration test.
• B.Conduct a regulatory audit.
• C.Hire a third-party consultant.
• D.Define the threat model.
• E.Review the existing BIA.
• F.Perform an attack path analysis.

Comment: *

Name: *

Email: *

Verification: *

A systems administrator at a medical imaging company discovers protected health information (PHI) on a general purpose file server. Which of the following steps should the administrator take NEXT?

• A.Delete all PHI from the network until the legal department is consulted
• B.Isolate all of the PHI on its own VLAN and keep it segregated at Layer 2
• C.Consult the legal department to determine legal requirements
• D.Immediately encrypt all PHI with AES 256

Comment: *

Name: *

Email: *

Verification: *