Conquest Book 1

critical flaw · 98問 · 2年前

通報

問題一覧

With respect to risk management, which of the following options should be prioritized?

The frequency of occurrence is low, and the expected impact value is high

Which of these is NOT a change management component?

Governance

According to ISC2, which are the six phases of data handling?

Create → Store → Use → Share → Archive → Destroy

Which of the following is NOT a feature of a cryptographic hash function?

Reversible

Which of these tools is commonly used to crack passwords? (★)

John the Ripper

Which concept describes an information security strategy that integrates people, technology and operations in order to establish security controls across multiple layers of the organization?

Defense in Depth

Which tool is commonly used to sniff network traffic? (★)

Wireshark

The predetermined set of instructions or procedures to sustain business operations after a disaster is commonly known as:

Business Continuity Plan

Sensitivity is a measure of the …:

… importance assigned to information by its owner, or the purpose of representing its need for protection

Which of the following cloud models allows access to fundamental computer resources? (★)

IaaS

Which device is used to connect a LAN to the Internet?

Router

When a company hires an insurance company to mitigate risk, which risk management technique is being applied?

Risk transfer

Which of the following attacks take advantage of poor input validation in websites?

Cross-Site Scripting

Which of the following is NOT an element of System Security Configuration Management?

Audit logs

In order to find out whether personal tablet devices are allowed in the office, which of the following policies would be helpful to read?

BYOD

An exploitable weakness or flaw in a system or component is a:

Vulnerability

Which of these is the PRIMARY objective of a Disaster Recovery Plan?

Restore company operation to the last-known reliable operation state

Which type of attack embeds malicious payload inside a reputable or trusted software?

Trojans

In which of these activities are security posters PRIMARILY used? (★)

Security Awareness

Which type of attack attempts to gain information by observing the device's power consumption? (★)

Side Channels

A web server that accepts requests from external clients should be placed in which network?

DMZ

How many layers does the OSI model have?

In which cloud model does the cloud customer have LESS responsibility over the infrastructure? (★)

SaaS

What type of security control is the biometric reader that grants access to the data center building?

Physical Control

Which of these would be the best option if a network administrator needs to control access to a network?

NAC

Which of the following is a public IP?

13.16.123.1

Which of these has the PRIMARY objective of identifying and prioritizing critical business processes?

Business Impact Analysis

Which access control is more effective at protecting a door against unauthorized access?

Locks

Which of these is not an attack against an IP network?

Side-channel Attack

Which devices have the PRIMARY objective of collecting and analyzing security events?

SIEM

Which type of attack PRIMARILY aims to make a resource inaccessible to its intended users?

Denial of Service

What is an effective way of hardening a system?

Patch the system

Which of the following areas is connected to PII?

Confidentiality

Which type of attack has the PRIMARY objective controlling the system from outside?

Backdoors

Which access control model can grant access to a given object based on complex rules?

ABAC

Which of the following properties is NOT guaranteed by Digital Signatures?

Confidentiality

Which devices would be more effective in detecting an intrusion into a network?

NIDS

The address 8be2:4382:8d84:7ce2:ec0f:3908:d29a:903a is an:

IPv6 address

In incident terminology, the meaning of Zero Day is:

A previously unknown system vulnerability

Which of the following is LESS likely to be part of an Incident Response Team (IRT)?

Human Resources

A best practice of patch management is to:

Test patches before applying them

Which of the following principles aims primarily at fraud detection?

Separation of Duties

After an earthquake disrupting business operations, which document contains the procedures required to return business to normal operation?

The Disaster Recovery Plan

If there is no time constraint, which protocol should be employed to establish a reliable connection between two devices?

TCP

Which of the following is NOT a protocol of the OSI Level 3?

SNMP

Which of the following is a detection control?

Smoke sensors

Which regulations address data protection and privacy in Europe?

GDPR

Which of these is the most efficient and effective way to test a business continuity plan?

Simulations

Governments can impose financial penalties as a consequence of breaking a:

Regulation

An entity that acts to exploit a target organization’s system vulnerabilities is a:

Threat Actor

In which of the following access control models can the creator of an object delegate permission?

DAC

The magnitude of the harm expected as a result of the consequences of an unauthorized disclosure, modification, destruction, or loss of information, is known as the:

Impact

Which of the following is NOT an example of a physical security control?

Firewalls

Which of the following is an example of an administrative security control?

Acceptable Use Policies

Which of the following is a data handling policy procedure?

Destroy

What does SIEM mean?

Security Information and Event Manager

Which cloud deployment model is suited to companies with similar needs and concerns?

Community cloud

Which access control model specifies access to an object based on the subject's role in the organization?

RBAC

The Bell and LaPadula access control model is a form of: (★)

MAC

In the event of a disaster, which of these should be the PRIMARY objective? (★)

Guarantee the safety of people

Which of the following is an example of 2FA?

One-Time passwords (OTA)

The implementation of Security Controls is a form of:

Risk reduction

Which of the following is NOT a possible model for an Incident Response Team (IRT)?

Pre-existing

Which protocol uses a three-way handshake to establish a reliable connection?

TCP

In Change Management, which component addresses the procedures needed to undo changes?

Rollback

Which of the following documents contains elements that are NOT mandatory?

Guidelines

Which type of attack has the PRIMARY objective of encrypting devices and their data, and then demanding a ransom payment for the decryption key?

Ransomware

The last phase in the data security cycle is:

Destruction

Which security principle states that a user should only have the necessary permission to execute a task?

Least Privilege

The process that ensures that system changes do not adversely impact business operations is known as:

Change Management

Malicious emails that aim to attack company executives are an example of:

Whaling

Which type of attack will most effectively provide privileged access (root access in Unix/Linux platforms) to a computer while hiding its presence?

Rootkits

Which of the following areas is the most distinctive property of PHI?

Confidentiality

Risk Management is:

The identification, evaluation and prioritization of risks

Which of the following is NOT a social engineering technique? (★)

Segregation

A device found not to comply with the security baseline should be:

Disabled or isolated into a quarantine area until it can be checked and updated

A security safeguard is the same as a:

Security control

Which of the following types of devices inspect packet header information to either allow or deny network traffic?

Firewalls

The process of verifying or proving the user's identification is known as:

Authentication

How many data labels are considered manageable?

2 – 3

In which of the following phases of an Incident Recovery Plan are incident responses prioritized?

Detection and Analysis

Which are the three packets used on the TCP connection handshake? (★)

SYN → SYN/ACK → ACK

Which of the following is NOT an ethical canon of the ISC2?

Provide active and qualified service to principal

The cloud deployment model where a company has resources on-premise and in the cloud is known as:

Hybrid cloud

What is the consequence of a Denial of Service attack?

Exhaustion of device resources

The detailed steps to complete tasks supporting departmental or organizational policies are typically documented in:

Procedures

Which of the following is NOT a type of learning activity used in Security Awareness?

Tutorial

Which type of attack attempts to trick the user into revealing personal information by sending a fraudulent message?

Phishing

Which of the following canons is found in the ISC2 code of ethics?

Provide diligent and competent service to principals

Which physical access control would be MOST effective against tailgating?

Turnstiles

The SMTP protocol operates at OSI Level:

Which type of key can be used to both encrypt and decrypt the same message?

A symmetric key

Which port is used to secure communication over the web (HTTPS)?

443

Which of these types of user is LESS likely to have a privileged account?

External Worker

Logging and monitoring systems are essential to:

Identifying inefficient performing systems, detecting compromises, and providing a record of how systems are used

According to the canon "Provide diligent and competent service to principals", ISC2 professionals are to:

Avoid apparent or actual conflicts of interest

Which of the following is an example of a technical security control?

Access control lists

Which are the components of an incident response plan?

Preparation → Detection and Analysis → Containment, Eradication and Recovery → Post-Incident Activity

Which of the following Cybersecurity concepts guarantees that information is accessible only to those authorized to access it?

Confidentiality

100

Which of the following are NOT types of security controls?

Storage controls

xj9 - 19628 - a

xj9 - 19628 - a

98問 • 2年前

critical flaw · 30問 · 2年前

xj9 - 19628 - b

xj9 - 19628 - b

30問 • 2年前

critical flaw · 99問 · 1年前

xj9 - 19628 - c

xj9 - 19628 - c

99問 • 1年前

critical flaw · 99問 · 1年前

xj9 - 19628 - d1

xj9 - 19628 - d1

99問 • 1年前

critical flaw · 98問 · 1年前

xj9 - 19628 - d2

xj9 - 19628 - d2

98問 • 1年前

critical flaw · 50問 · 1年前

1. Shattershot

1. Shattershot

50問 • 1年前

k3ch - 2910116 - D1 - A

k3ch - 2910116 - D1 - A

critical flaw · 65問 · 1年前

k3ch - 2910116 - D1 - B

k3ch - 2910116 - D1 - B

65問 • 1年前

k3ch - 2910116 - D2 - A

k3ch - 2910116 - D2 - A

critical flaw · 55問 · 1年前

k3ch - 2910116 - D2 - B

k3ch - 2910116 - D2 - B

55問 • 1年前

k3ch - 2910116 - D3 - A

k3ch - 2910116 - D3 - A

critical flaw · 63問 · 1年前

k3ch - 2910116 - D3 - B

k3ch - 2910116 - D3 - B

63問 • 1年前

k3ch - 2910116 - D4 - A

k3ch - 2910116 - D4 - A

1. X-Tinction Agenda

1. X-Tinction Agenda

2. X-Tinction Agenda

2. X-Tinction Agenda

3. X-Tinction Agenda

3. X-Tinction Agenda

critical flaw · 90問 · 1年前

4. X-Tinction Agenda

4. X-Tinction Agenda

90問 • 1年前

critical flaw · 30問 · 1年前

Executioner's Song Book 1

Executioner's Song Book 1

30問 • 1年前