A.  

Software Whitelisting System

B.  

System Configuration Enforcement System

C.  

Patch Management System

D.  

Penetration Testing System

A.  

Configure all data center systems to use local time

B.  

Configure all data center systems to use GMT time

C.  

Configure all systems to use their default time settings

D.  

Synchronize between Seattle and New York, and use local time for London and Tokyo

A.  

Enable encryption if it ’s not enabled by default

B.  

Disable software-level encryption to increase speed of transfer

C.  

Develop a unique encryption scheme

A.  

Define processes to manually review logs for the problem servers

B.  

Restart or reinstall the logging service on each of the problem servers

C.  

Perform analysis to identify the source of the logging problems

D.  

Document the missing logs in the core evaluation report as a minor issue

A.  

Privilege Escalation

B.  

Exploitation

C.  

Initial Compromise

D.  

Reconnaissance

A.  

Keep the files in the log archives synchronized with another location.

B.  

Store the files read-only and keep hashes of the logs separately.

C.  

Install a tier one timeserver on the network to keep log devices synchronized.

D.  

Encrypt the log files with an asymmetric key and remove the cleartext version.

A.  

Controlled Use of Administrative Privilege

B.  

Account Monitoring and Control

C.  

Data Protection

D.  

Penetration Tests and Red Team Exercises

A.  

How long does it take to identify new unauthorized listening ports on the network systems

B.  

How long does it take to remove unauthorized software from the organization’s systems

C.  

What percentage of the organization’s applications are using sandboxing products

D.  

What percentage of assets will have their settings enforced and redeployed

E.  

What percentage of systems in the organization are using Network Level Authentication (NLA)

A.  

Package diagram

B.  

Deployment diagram

C.  

Class diagram

D.  

Use case diagram

A.  

Verify the file size of the backup

B.  

Confirm the backup service is running at the proper time

C.  

Compare data hashes of backed up data to original systems

D.  

Restore the data to a system

A.  

Making sure that all hosts are patched during regularly scheduled maintenance

B.  

Providing end-user security training to both internal staff and vendors

C.  

Establishing network activity baselines among public-facing servers

D.  

Having a plan to scan vulnerabilities of an application prior to deployment

A.  

Deploy an access control list on the perimeter router and limit inbound ICMP messages to echo requests only

B.  

Deploy antivirus software on internet-facing hosts, and ensure that the signatures are updated regularly

C.  

Ensure that rotation of duties is used with employees in order to compartmentalize the most important tasks

D.  

Ensure only necessary services are running on Internet-facing hosts, and that they are hardened according to best practices

A.  

Sender Policy Framework

B.  

DNS Security Extensions

C.  

Public-Key Cryptography

D.  

Simple Mail Transfer Protocol