An information security manager is concerned that connectivity used to configure and troubleshoot critical network devices could be attacked. The manager has tasked a network security engineer with meeting the following requirements:
- Encrypt all traffic between the network engineer and critical
devices.
- Segregate the different networking planes as much as possible.
- Do not let access ports impact configuration tasks.
Which of the following would be the BEST recommendation for the network security engineer to present?

• A.Use SSH over out-of-band management.
• B.Force only TACACS to be allowed.
• C.Deploy control plane protections.
• D.Require the use of certificates for AAA.

Comment: *

Name: *

Email: *

Verification: *

A Chief Information Security Officer (CISO) is reviewing the results of a gap analysis with an outside cybersecurity consultant. The gap analysis reviewed all procedural and technical controls and found the following:
* High-impact controls implemented: 6 out of 10
* Medium-impact controls implemented: 409 out of 472
* Low-impact controls implemented: 97 out of 1000
The report includes a cost-benefit analysis for each control gap. The analysis yielded the following information:
* Average high-impact control implementation cost: $15,000; Probable ALE for each high-impact control gap:
$95,000
* Average medium-impact control implementation cost: $6,250; Probable ALE for each medium-impact control gap: $11,000 Due to the technical construction and configuration of the corporate enterprise, slightly more than 50% of the medium-impact controls will take two years to fully implement. Which of the following conclusions could the CISO draw from the analysis?

• A.The enterprise security team has focused exclusively on mitigating high-level risks
• B.Because of the significant ALE for each high-risk vulnerability, efforts should be focused on those controls
• C.Too much emphasis has been placed on eliminating low-risk vulnerabilities in the past
• D.The cybersecurity team has balanced residual risk for both high and medium controls

Comment: *

Name: *

Email: *

Verification: *

An engineer is assisting with the design of a new virtualized environment that will house critical company services and reduce the datacenter's physical footprint. The company has expressed concern about the integrity of operating systems and wants to ensure a vulnerability exploited in one datacenter segment would not lead to the compromise of all others.
Which of the following design objectives should the engineer complete to BEST mitigate the company's concerns? (Choose two.)

• A.Deploy to a private cloud with hosted hypervisors on each physical machine
• B.Deploy virtual desktop infrastructure with an OOB management network
• C.Use a community CSP with independently managed security services
• D.Employ the use of vT PM with boot attestation
• E.Leverage separate physical hardware for sensitive services and data

Comment: *

Name: *

Email: *

Verification: *

A security engineer is performing an assessment again for a company. The security engineer examines the following output from the review:

Which of the following tools is the engineer utilizing to perform this assessment?

• A.Port scanner
• B.SCAP scanner
• C.Interception proxy
• D.Vulnerability scanner

Comment: *

Name: *

Email: *

Verification: *

The Chief Information Officer (CIO) has been asked to develop a security dashboard with the relevant metrics.
The board of directors will use the dashboard to monitor and track the overall security posture of the organization. The CIO produces a basic report containing both KPI and KRI data in two separate sections for the board to review.
Which of the following BEST meets the needs of the board?

• A.KRI:
  - EDR coverage across the fleet
  - Backlog of unresolved security investigations
  - Time to patch critical issues on a monthly basis
  - Threat landscape rating
  KPI:
  - Time to resolve open security items
  - Compliance with regulations
  - % of suppliers with approved security control frameworks
  - Severity of threats and vulnerabilities reported by sensors
• B.KRI:
  - Compliance with regulations
  - Backlog of unresolved security investigations
  - Severity of threats and vulnerabilities reported by sensors
  - Time to patch critical issues on a monthly basis
  KPI:
  - Time to resolve open security items
  - % of suppliers with approved security control frameworks
  - EDR coverage across the fleet
  - Threat landscape rating
• C.KRI:
  - EDR coverage across the fleet
  - % of suppliers with approved security control framework
  - Backlog of unresolved security investigations
  - Threat landscape rating
  KPI:
  - Time to resolve open security items
  - Compliance with regulations
  - Time to patch critical issues on a monthly basis
  - Severity of threats and vulnerabilities reported by sensors
• D.KPI:
  - Compliance with regulations
  - % of suppliers with approved security control frameworks
  - Severity of threats and vulnerabilities reported by sensors
  - Threat landscape rating
  KRI:
  - Time to resolve open security items
  - Backlog of unresolved security investigations
  - EDR coverage across the fleet
  - Time to patch critical issues on a monthly basis

Comment: *

Name: *

Email: *

Verification: *