A Chief information Security Officer (CISO) has launched to create a rebuts BCP/DR plan for the entire company. As part of the initiative , the security team must gather data supporting s operational importance for the applications used by the business and determine the order in which the application must be back online. Which of the following be the FIRST step taken by the team?

• A.Create an SLA for each application that states when the application will come back online and distribute this information to the business units.
• B.Perform a review of all policies an procedures related to BGP a and DR and created an educated educational module that can be assigned to at employees to provide training on BCP/DR events.
• C.Implement replication of all servers and application data to back up detacenters that are geographically from the central datacenter and release an upload BPA to all clients.
• D.Have each business unit conduct a BIA and categories the application according to the cumulative data gathered.

Comment: *

Name: *

Email: *

Verification: *

A large number of emails have been reported, and a security analyst is reviewing the following information from the emails:

As part of the image process, which of the following is the FIRST step the analyst should take?

• A.Validate the final "Received" header against the DNS entry of the domain.
• B.Ignore the emails, as SPF validation is successful, and it is a false positive
• C.Block the email address carl b@comptia1 com, as it is sending spam to subject matter experts
• D.Compare the 'Return-Path" and "Received" fields.

Comment: *

Name: *

Email: *

Verification: *

A company wants to improve Its active protection capabilities against unknown and zero-day malware. Which of the following Is the MOST secure solution?

• A.Endpoint log collection
• B.Sandbox detonation
• C.HIDS
• D.Application allow list
• E.NIDS

Comment: *

Name: *

Email: *

Verification: *

An organization mat provides a SaaS solution recently experienced an incident involving customer data loss. The system has a level of sell-healing that includes monitoring performance and available resources. When me system detects an issue, the self-healing process is supposed to restart pans of me software.
During the incident, when me self-healing system attempted to restart the services, available disk space on the data drive to restart all the services was inadequate. The self-healing system did not detect that some services did not fully restart and declared me system as fully operational. Which of the following BEST describes me reason why the silent failure occurred?

• A.The number of nodes in me self-healing cluster was healthy,
• B.Conditional checks prior to the service restart succeeded.
• C.The disk utilization alarms are higher than what me service restarts require.
• D.The system logs rotated prematurely.

Comment: *

Name: *

Email: *

Verification: *

A threat analyst notices the following URL while going through the HTTP logs.

Which of the following attack types is the threat analyst seeing?

• A.Session hijacking
• B.SQL injection
• C.CSRF
• D.XSS

Comment: *

Name: *

Email: *

Verification: *