During a tabletop exercise, it is determined that a security analyst is required to ensure patching and scan reports are available during an incident, as well as documentation of all critical systems. To which of the following stakeholders should the analyst provide the reports?

• A.Security operations
• B.Management
• C.Affected vendors
• D.Legal

Comment: *

Name: *

Email: *

Verification: *

Company A permits visiting business partners from Company B to utilize Ethernet ports available in
Company A's conference rooms. This access is provided to allow partners the ability to establish VPNs
back to Company B's network. The security architect for Company A wants to ensure partners from
Company B are able to gain direct Internet access from available ports only, while Company A employees
can gain access to the Company A internal network from those same ports. Which of the following can be
employed to allow this?

• A.MAC
• B.SIEM
• C.NAC
• D.ACL
• E.SAML

Comment: *

Name: *

Email: *

Verification: *

A security analyst performs various types of vulnerability scans.
Review the vulnerability scan results to determine the type of scan that was executed and if a false positive occurred for each device.
Instructions:
Select the Results Generated drop-down option to determine if the results were generated from a credentialed scan, non-credentialed scan, or a compliance scan.
For ONLY the credentialed and non-credentialed scans, evaluate the results for false positives and check the findings that display false positives. NOTE: If you would like to uncheck an option that is currently selected, click on the option a second time.
Lastly, based on the vulnerability scan results, identify the type of Server by dragging the Server to the results.
The Linux Web Server, File-Print Server and Directory Server are draggable.
If at any time you would like to bring back the initial state of the simulation, please select the Reset button. When you have completed the simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue.

Correct Answer:

Comment: *

Name: *

Email: *

Verification: *

A common mobile device vulnerability has made unauthorized modifications to a device. The device owner removes the vendor/carrier provided limitations on the mobile device. This is also known as:

• A.cracking.
• B.jailbreaking.
• C.hashing.
• D.fuzzing.

Comment: *

Name: *

Email: *

Verification: *

Oven the following log snippet:

Which of the following describes the events that have occurred?

• A.An attempt to make an SSH connection from 192 168 1 166 was done using PKI.
• B.An attempt to make an SSH connection from an unknown IP address was done using a password.
• C.An attempt to make an SSH connection from 'superman' was done using a password.
• D.An attempt to make an SSH connection from outside the network was done using PKI.

Comment: *

Name: *

Email: *

Verification: *