A security administrator must configure the database server shown below to comply with the four requirements listed. Drag and drop the appropriate ACL that should be configured on the database server to its corresponding requirement. Answer options may be used once or not at all.

Correct Answer:

Comment: *

Name: *

Email: *

Verification: *

An engineer is evaluating the control profile to assign to a system containing PII, financial, and proprietary data.

Based on the data classification table above, which of the following BEST describes the overall classification?

• A.Low availability, low confidentiality
• B.High integrity, low availability
• C.High confidentiality, medium availability
• D.High confidentiality, high availability

Comment: *

Name: *

Email: *

Verification: *

A company has decided to move an ERP application to a public cloud vendor. The company wants to replicate some of its global policies from on premises to cloud. The policies include data encryption, token management, and limited user access to the ERP application. The Chief Information Officer (CIO) is mainly concerned about privileged accounts that might be compromised and used to alter data in the ERP application. Which of the following is the BEST option to meet the requirements?

• A.Sandboxing
• B.CASB
• C.MFA
• D.Security as a service

Comment: *

Name: *

Email: *

Verification: *

ABC Corporation uses multiple security zones to protect systems and information, and all of the VM hosts are part of a consolidated VM infrastructure. Each zone has different VM administrators. Which of the following restricts different zone administrators from directly accessing the console of a VM host from another zone?

• A.Ensure hypervisor layer firewalling between all VM hosts regardless of security zone.
• B.Maintain a separate virtual switch for each security zone and ensure VM hosts bind to only the correct virtual NIC(s).
• C.Organize VM hosts into containers based on security zone and restrict access using an ACL.
• D.Require multi-factor authentication when accessing the console at the physical VM host.

Comment: *

Name: *

Email: *

Verification: *

The government is concerned with remote military missions being negatively being impacted by the use of technology that may fail to protect operational security. To remediate this concern, a number of solutions have been implemented, including the following:
* End-to-end encryption of all inbound and outbound communication, including personal email and chat sessions that allow soldiers to securely communicate with families.
* Layer 7 inspection and TCP/UDP port restriction, including firewall rules to only allow TCP port 80 and 443 and approved applications
* A host-based whitelist of approved websites and applications that only allow mission-related tools and sites
* The use of satellite communication to include multiple proxy servers to scramble the source IP address Which of the following is of MOST concern in this scenario?

• A.Malicious actors intercepting inbound and outbound communication to determine the scope of the mission
• B.The use of centrally managed military network and computers by soldiers when communicating with external parties
• C.The effect of communication latency that may negatively impact real-time communication with mission control
• D.Family members posting geotagged images on social media that were received via email from soldiers

Comment: *

Name: *

Email: *

Verification: *