IT staff within a company often conduct remote desktop sharing sessions with vendors to troubleshoot vendor product-related issues. Drag and drop the following security controls to match the associated security concern.
Options may be used once or not at all.

Correct Answer:

Explanation

Vendor may accidentally or maliciously make changes to the IT system - Allow view-only access.
With view-only access, the third party can view the desktop but cannot interact with it. In other words, they cannot control the keyboard or mouse to make any changes.
Desktop sharing traffic may be intercepted by network attackers - Use SSL for remote sessions.
SSL (Secure Sockets Layer) encrypts data in transit between computers. If an attacker intercepted the traffic, the data would be encrypted and therefore unreadable to the attacker.
No guarantees that shoulder surfing attacks are not occurring at the vendor - Identified control gap.
Shoulder surfing is where someone else gains information by looking at your computer screen. This should be identified as a risk. A control gap occurs when there are either insufficient or no actions taken to avoid or mitigate a significant risk.
Vendor may inadvertently see confidential material from the company such as email and IMs - Limit desktop session to certain windows.
The easiest way to prevent a third party from viewing your emails and IMs is to close the email and IM application windows for the duration of the desktop sharing session.

Comment: *

Name: *

Email: *

Verification: *

A recent security assessment revealed a web application may be vulnerable to clickjacking.
According to the application developers, a fix may be months away. Which of the following should a security engineer configure on the web server to help mitigate the issue?

• A.File upload size limits
• B.X-Frame-Options header
• C.HttpOnly cookie field
• D.Input validation

Comment: *

Name: *

Email: *

Verification: *

A threat advisory alert was just emailed to the IT security staff. The alert references specific types of host operating systems that can allow an unauthorized person to access files on a system remotely. A fix was recently published, but it requires a recent endpoint protection engine to be installed prior to running the fix.
Which of the following MOST likely need to be configured to ensure the system are mitigated accordingly?
(Select two.)

• A.Patch management
• B.Application whitelisting
• C.Firmware updates
• D.Antivirus
• E.Group policy implementation
• F.HIPS

Comment: *

Name: *

Email: *

Verification: *

A factory-floor system uses critical legacy, and unsupported application software to enable factory operations A latent vulnerability was recently exposed, which permitted attackers to send a specific string of characters followed by arbitrary code for execution Patches are unavailable, as the manufacturer is no longer m business Which of the following would be the BEST approach the company should take to mitigate the risk of this vulnerability and other latent vulnerability exploits'' (Select TWO)

• A.Create a factory-floor enclave segregated from direct LANWAN reachability
• B.Install network and host-based IDS feeding logs to SIEM and alerts to SOC operators
• C.implement a proxy that will sanitize input provided to the application
• D.install server-side X 509 certificates and enable TLS 1.0 or later for client access
• E.Configure a host-based firewall on the application server and restrict access to necessary ports and services
• F.Create a hunt team focused on the factory-floor operations

Comment: *

Name: *

Email: *

Verification: *

Management is reviewing the results of a recent risk assessment of the organization's policies and procedures. During the risk assessment it is determined that procedures associated with background checks have not been effectively implemented. In response to this risk, the organization elects to revise policies and procedures related to background checks and use a third-party to perform background checks on all new employees.
Which of the following risk management strategies has the organization employed?

• A.Avoid
• B.Mitigate
• C.Accept
• D.Transfer
• E.Reject

Comment: *

Name: *

Email: *

Verification: *