What goal of security is enhanced by a strong business continuity program?

Which one of the following controls is NOT particularly effective against the insider threat?

A team activates procedures to mitigate a cyberattack. What plan is this?

Embedded systems and network-enabled devices that communicate with the Internet are considered:

What is the primary goal of input validation?

Removing the belief that a network has any trusted space and enforcing security at the most granular level is known as:

XenServer, LVM, Hyper-V, and ESXi are:

A centralized organizational function that monitors, detects, and analyzes security events to prevent disruptions is called:

John is concerned about a possible conflict of interest from a consulting side job. Which source should he consult?

Example of token-based authentication:

Ping flood attacks target which OSI layer?

Which technology should be implemented to increase the work effort required for buffer overflow attacks?

What is the purpose of multi-factor authentication (MFA) in IAM?

Malware that disguises itself as legitimate software is called:

What does internal consistency of information refer to?

The process of applying secure configurations to reduce the attack surface is known as:

A popular way of implementing the principle of least privilege is:

Port forwarding is also known as:

A transaction over $50,000 requires approval from both a manager and an accountant. Which concept applies?

Example of a technical control:

255.255.255.0 represents:

Shaun is planning to protect data in all states (at rest, in motion, and in use), defending against data leakage. What is the BEST solution to implement?

A set of rules that everyone must comply with and that usually carry monetary penalties for noncompliance are:

Which TLS extension is used to optimize the TLS handshake process by reducing the number of round trips between the client and server?

Which uses encrypted, machine-generated codes to verify a user's identity?

Which type of network is set up similar to the internet but is private to an organization? Select the MOST appropriate answer.

What does the termbusinessin business continuity planning refer to?

A device that forwards traffic to the port of a known destination device is a:

What is the main purpose of using multi-factor authentication (MFA) in a security system?

A scam where a malicious website is made to look exactly like a trusted site is called:

Which security control is most commonly used to prevent data breaches?

Exhibit.

What is the purpose of a Security Information and Event Management (SIEM) system?

A security event in which an intruder gains or attempts unauthorized access to a system is called:

Which OSI layer associates MAC addresses with network devices?

Which works by encapsulating one packet inside another?

Methods or mechanisms used to gain unauthorized access are called:

How many bits represent the Organizationally Unique Identifier (OUI) in MAC addresses?

What is the purpose of defense in depth?

A company wants employees to access resources from anywhere in the world. Which access control model is best?

Which is very likely to be used in a Disaster Recovery effort?

A newly enforced BYOD policy represents which control type?

Which attack most effectively maintains remote access and control over a victim’s computer?

Which of the following is a characteristic of cloud computing?

What is the primary goal of network segmentation in cybersecurity?

A system architecture where one instance serves multiple user groups:

An organization develops procedures to restore critical business processes after a major disruption. What plan is this?

Port used by DNS.

What is the recommended fire suppression system for server rooms?

Difference between sniffing and spoofing:

Type 1 authentication poses which risks?

A hacker launches a specific attack to exploit a known vulnerability. This is called:

How often should an organization test its BCP?

What principle states that individuals should only have the minimum set of permissions necessary to carry out their job functions?

Which type of control is used to restore systems or processes to their normal state after an attack?

Which is related to privacy?

If a device is found to be non-compliant with the security baseline, what action should the security team take?

Faking the sender address to gain unauthorized access is known as:

A standard that defines wired communication for network devices:

Which of the following vulnerabilities cannot be discovered during a routine vulnerability assessment?

Which is the loopback address?

Token Ring operates at which OSI layer?

The highest-level governance documents approved by management are:

Which is an example of a deterrent control?

Which type of risk involves unauthorized use or disclosure of confidential information such as passwords, financial data, or personal information?

A structured approach used to oversee and manage risk for an enterprise is called:

A measure of the degree to which an organization depends on information or systems to achieve its mission is called:

In Mandatory Access Control (MAC), which statement is true?

What does Personally Identifiable Information (PII) pertain to?

Risk tolerance is also known as:

Which can be considered a fingerprint of a file or message?

Governments can impose financial penalties as a consequence of breaking a:

What is the end goal of a Disaster Recovery Plan (DRP)?

Which aspect of cybersecurity is MOST impacted by Distributed Denial of Service (DDoS) attacks?

When operating in a cloud environment, which cloud deployment model provides security teams with the greatest access to forensic information?

The method of distributing network traffic equally across a pool of resources is called:

What is the primary goal of incident management?

A weighted factor based on the probability that a threat will exploit a vulnerability is called:

A tool used to inspect outbound traffic to reduce threats:

A company wants to ensure that its employees can evacuate the building in case of an emergency. Which physical control is best suited?

Which cloud service model provides the most suitable environment for customers to build and operate their own software?

Which scenario best represents defense in depth?

What is the recommended temperature range for optimal data center uptime?

What is the benefit of subnetting?

Which of the following is unlikely to be a member of the disaster recovery team?

A practitioner needing step-by-step instructions to complete a provisioning task should consult a:

Which principle states that users should have access only to the specific data and resources needed to perform required tasks?

The means by which a threat actor carries out their objectives.

Which is the most efficient and effective way to test a business continuity plan?

In which access control model can the creator of an object delegate permissions?

Which service uses a registered port?

Which protocol would be most suitable to fulfill the secure communication requirements between clients and the server for a company deploying a new application?

Walmart has a large e-commerce presence worldwide. Which solution would ensure the LOWEST possible latency for customers using their services?

Which is the first step in the risk management process?

Which of the following is NOT one of the three main components of an SQL database?

A common network device used to filter traffic?

Which one of the following cryptographic algorithms does NOT depend upon the prime factorization problem?

Which device is used to control traffic flow between networks?

What is meant by non-repudiation?

A backup is which type of security control?

What drove the introduction of IPv6?

Which concept prevents crime by designing a physical environment that positively influences human behavior?

Mark is configuring an automated data transfer between two hosts and needs an authentication method. What approach is best suited?

Which of the following is often associated with Disaster Recovery planning?

When the ISC2 mail server sends mail to other mail servers, it becomes a —?

A company’s servers are down due to malware. What is the FIRST step the DR team should take?

The evaluation of security controls to determine whether they are implemented correctly and operating as intended is known as:

An ISC2 member is offered an illicit copy of a movie. What should they do?

Hashing safeguards which CIA triad principle?

A system crash results in loss of data. What term best describes this?

A logical group of workstations, servers, and network devices that appear to be on the same LAN despite their geographical distribution.

Which provides confidentiality by hiding or obscuring a message so it cannot be understood by unauthorized parties?

What is the primary purpose of a honeytoken in cybersecurity?

Juli is listening to network traffic and capturing passwords as they are sent to the authentication server. She plans to use the passwords as part of a future attack. What type of attack is this?

Communication between end systems is encrypted using a key, often known as ________?

What is a security token used to authenticate a user to a web application, typically after they log in?

Which is NOT a function of an Intrusion Prevention System (IPS)?

Which version of TLS is considered the most secure and recommended for use?

Exhibit.

IPSec works in which layer of OSI Model

In which cloud model does the customer have theleast responsibilityover infrastructure?

A company experiences a major IT outage and cannot perform critical business functions. Which plan helps recovery?