A security analyst who is concerned about sensitive data exfiltration reviews the following:

Which of the following tools would allow the analyst to confirm if data exfiltration is occuring?

• A.SCAP tool
• B.Protocol analyzer
• C.File integrity monitor
• D.Port scanner

Comment: *

Name: *

Email: *

Verification: *

A company wants to secure a newly developed application that is used to access sensitive information and data from corporate resources The application was developed by a third-party organization, and it is now being used heavily despite lacking the following controls:
* Certificate pinning
* Tokenization
* Biometric authentication
The company has already implemented the following controls:
* Full device encryption
* Screen lock
* Device password
* Remote wipe
The company wants to defend against interception of data attacks Which of the following compensating controls should the company implement NEXT?

• A.Implement an out-of-band second factor to authenticate authorized users
• B.Implement a geofencing solution that disables the application according to company requirements.
• C.Install the application in a secure container requiring additional authentication controls.
• D.Enforce the use of a VPN when using the newly developed application.

Comment: *

Name: *

Email: *

Verification: *

A new database application was added to a company's hosted VM environment. Firewall ACLs were modified to allow database users to access the server remotely. The company's cloud security broker then identified abnormal from a database user on-site. Upon further investigation, the security team noticed the user ran code on a VM that provided access to the hypervisor directly and access to other sensitive data.
Which of the following should the security do to help mitigate future attacks within the VM environment?
(Choose two.)

• A.Update virus definitions on all endpoints.
• B.Install the appropriate patches.
• C.Configure VM isolation.
• D.Install perimeter NGFW.
• E.Deprovision database VM.
• F.Change the user's access privileges.

Comment: *

Name: *

Email: *

Verification: *

A systems administrator receives an advisory email that a recently discovered exploit is being used in another country and the financial institutions have ceased operations while they find a way to respond to the attack.
Which of the following BEST describes where the administrator should look to find information on the attack to determine if a response must be prepared for the systems? (Choose two.)

• A.Antivirus vendor websites
• B.CVE database
• C.Trade industry association websites
• D.Company's legal department
• E.Hacker forums
• F.Bug bounty websites

Comment: *

Name: *

Email: *

Verification: *

During the migration of a company's human resources application to a PaaS provider, the Chief Privacy Officer (CPO) expresses concern the vendor's staff may be able to access data within the migrating applications. The application stack includes a multitier architecture and uses commercially available, vendor-supported software packages. Which of the following BEST addresses the CPO's concerns?

• A.Impalement a CASB that tokenizes company data in transit to the migrated applications.
• B.Enable MFA to the vendor's tier of the architecture.
• C.Execute non-disclosure agreements and background checks on vendor staff.
• D.Ensure the platform vendor implement date-at-rest encryption on its storage.

Comment: *

Name: *

Email: *

Verification: *