Listening Awareness Can Do All of the Following Except

IBM Cybersecurity Analyst Professional person Document Cess Exam Quiz Answers

Warning: Jo Answer Green hai wo correct hai but

Jo Light-green Nahi hai. Usme se jo ek wrong selection tha usko hata diya hai

Question 1)

Implementing a Security Awareness grooming program would exist an case of which type of command?

• Administrative command

Question 2)

Putting locks on a door is an example of which type of control?

• Preventative

Question iii)

How would you classify a slice of malicious code that can replicate itself and spread to new systems?

• A worm

Question 4)

To engage in packet sniffing, you lot must implement promiscuous style on which device ?

• A network card
• An Intrusion Detection System (IDS)
• A sniffing router

Question 5)

Which mechanism would aid assure the integrity of a message, but non do much to assure confidentiality or availability.

• Hashing

Question 6)

An organization wants to restrict employee after-hours access to its systems so it publishes a policy forbidding employees to work outside of their assigned hours, and and so makes certain the office doors remain locked on weekends. What two (two) types of controls are they using? (Select 2)

• Physical
• Administrative

Question vii)

Which ii factors contribute to cryptographic strength? (Select 2)

• The use of cyphers that are based on complex mathematical algorithms
• The use of cyphers that have undergone public scrutiny

Question 8)

Trying to interruption an encryption key by trying every possible combination of characters is chosen what?

• A creature force attack

Question 9)

Which of the post-obit describes the core goals of It security?

• The Open Web Application Security Projection (OWASP) Framework
• The Business Process Direction Framework
• The CIA Triad

Question ten)

Which three (three) roles are typically establish in an Information Security organization? (Select 3)

• Vulnerability Assessor
• Chief Information Security Officeholder (CISO)
• Penetration Tester

Question 11)

Trouble Management, Change Management, and Incident Management are all cardinal processes of which framework?

• ITIL

Question 12)

Alice sends a bulletin to Bob that is intercepted by Trudy. Which scenario describes an integrity violation?

• Trudy changes the message so forrard information technology on
• Trudy deletes the message without forwarding information technology
• Trudy reads the message
• Trudy cannot read it considering information technology is encrypted but allows it to be delivered to Bob in its original form

Question 13)

In cybersecurity, Accountability is defined every bit what?

• Being able to map an activeness to an identity

Question 14)

Multifactor authentication (MFA) requires more than one authentication method to be used earlier identity is authenticated. Which three (3) are authentication methods? (Select iii)

• Something a person is
• Something a person has
• Something a person knows

Question 15)

Which three (3) of the post-obit are Physical Admission Controls? (Select three)

• Door locks
• Security guards
• Fences

Question 16)

If you are setting upwards a Windows 10 laptop with a 32Gb hard bulldoze, which ii (2) file system could you select? (Select 2)

• NTFS
• FAT32

Question 17)

Which three (three) permissions can be set on a file in Linux? (Select 3)

• write
• execute
• read

Question eighteen)

If price is the principal concern, which type of cloud should be considered first?

• Public deject

Question 19)

Consolidating and virtualizing workloads should be done when?

• Earlier moving the workloads to the cloud

Question 20)

Which of the following is a cocky-regulating standard set up by the credit card industry in the U.s.?

• PCI-DSS

Question 21)

Which 2 (2) of the following attack types target endpoints?

• Advert Network
• Spear Phishing

Question 22)

If an Endpoint Detection and Response (EDR) system detects that an endpoint does not have a required patch installed, which statement best characterizes the actions information technology is able to take automatically?

• The endpoint can be quarantined from all network resources except those that allow it to download and install the missing patch

Question 23)

Granting access to a user based upon how high upward he is in an organisation violates what bones security premise?

• The principle of least privileges

Question 24)

The Windows Security App available in Windows 10 provides uses with which of the post-obit protections?

• Firewall and network protection
• Family options (parental controls)
• All of the in a higher place

Question 25)

Hashing ensures which of the following?

• Integrity

Question 26)

Which of the post-obit practices helps assure the all-time results when implementing encryption?

• Choose a reliable and proven published algorithm
• Develop a unique cryptographic algorithm for your system and continue them secret

Question 27)

Which of these methods ensures the authentication, not-repudiation and integrity of a digital communication?

• Use of digital signatures

Question 28)

Which of the following practices volition aid assure the confidentiality of data in transit?

• Disable document pinning
• Accept self-signed certificates
• Implement HTTP Strict Transport Protocol (HSTS)

Question 29)

Which iii (three) of these are benefits you lot can realize from using a NAT (Network Accost Translation) router? (Select three)

• Allows static 1-to-1 mapping of local IP addresses to global IP addresses
• Allows dynamic mapping of many local IP addresses to a smaller number of global IP address only when they are needed
• Allows internal IP addresses to be subconscious from outside observers

Question xxx)

Which statement all-time describes configuring a NAT router to apply static mapping?

• The organization volition need equally many registered IP addresses as it has computers that demand Internet admission

Question 31)

If a figurer needs to send a message to a organisation that is part of the local network, where does it send the message?

• To the system's MAC accost

Question 32)

Which are properties of a highly available system?

• Redundancy, failover and monitoring

Question 33)

Which 3 (three) of these statements nearly the UDP protocol are True? (Select 3)

• UDP is faster than TCP
• UDP packets are reassembled by the receiving organisation in whatever society they are received
• UDP is connectionless

Question 34)

What is one difference between a Stateful Firewall and a Next Generation Firewall?

• A NGFW empathize which awarding sent a given packet

Question 35)

You are concerned that your system is really not very experienced with securing data sources. Which hosting model would require you to secure the fewest data sources?

• SaaS

Question 36)

Hassan is an engineer who works a normal day shift from his company's headquarters in Austin, TX United states. Which two (2) of these activities enhance the most cause for concern? (Select 2)

• Each dark Hassan logs into his business relationship from an ISP in China
• I evening, Hassan downloads all of the files associated with the new production he is working on

Question 37)

Which three (three) of the following are considered safe coding practices? (Select iii)

• Apply library functions in identify of Bone commands
• Avoid using Os commands whenever possible
• Avert running commands through a shell interpreter

Question 38)

Which three (3) items should exist included in the Planning step of a penetration exam? (Select 3)

• Informing Demand-to-know employees
• Establishing Boundaries
• Setting Objectives

Question 39)

Which portion of the pentest report would embrace the take a chance ranking, recommendations and roadmap?

• Executive Summary

Question 40)

Spare workstations and servers, bare removable media, packet sniffers and protocol analyzers, all belong to which Incident Response resource category?

• Incident Mail-Analysis Resources
• Incident Analysis Hardware and Software

Question 41)

NIST recommends considering a number of items, including a high level of testing and monitoring, during which stage of a comprehensive Containment, Eradication & Recovery strategy?

• Recovery

Question 42)

True or Simulated. Digital forensics is effective in solving cyber crimes only is non considered effective in solving trigger-happy crimes such every bit rape and murder.

• False

Question 43)

Which three (3) are common obstacles faced when trying to examine forensic data? (Select three)

• Selecting the right tools to help filter and exclude irrelevant data
• Finding the relevant files among the hundreds of thousands found on nigh hard drives
• Bypassing controls such as passwords

Question 44)

What scripting concept will repeatedly execute the same block of code while a specified status remains truthful?

• Loops

Question 45)

Which ii (ii) statements about Python are true? (Select 2)

• Python code is considered easy to debug compared with other popular programming languages
• Python code is considered very readable past novice programmers

Question 46)

In the Python statement

pi="3"

What information blazon is the data blazon of the variable pi?

• str

Question 47)

What will be printed by the following block of Python code?

def Add5(in)

 out=in+5

 return out

 print(Add5(10))

• fifteen

Question 48)

Which threat intelligence framework was developed past the The states Regime to enable consequent characterization and categorization of cyberthreat events?

• Cyber Threat Framework

Question 49)

Truthful or False. An organization'due south security immune system should be integrated with exterior organizations, including vendors and other tertiary-parties.

• Truthful

Question fifty)

Which three (iii) of these are among the top 12 capabilities that a skillful data security and protection solution should provide? (Select 3)

• Vulnerability assessment
• Real-time alerting
• Tokenization

Question 51)

True or False. For iOS and Android mobile devices, users must interact with the operating arrangement only through a series of applications, but non directly.

• True

Question 52)

All industries have their own unique information security challenges. Which of these industries has a particular business organisation with PCI-DSS compliance while having a big number of access points staffed by low-level employees who have access to payment card information?

• Retail

Question 53)

True or False. WireShark has an impressive array of features and is distributed gratuitous of charge.

• True

Question 54)

In which component of a Common Vulnerability Score (CVSS) would privileges required exist reflected?

• Base of operations-Exploitability Subscore

Question 55)

The Decommission step in the DevSecOps Release, Deploy & Decommission stage contains which of these activities?

• IAM controls to regulate authorization

Question 56)

You lot summate that at that place is a ii% probability that a cybercriminal will be able to steal credit card numbers from your online storefront which will outcome in $10M in losses to your company. What take you just determined?

• A risk

Question 57)

Which 1 of the OWASP Superlative x Application Security Risks would be occur when an awarding's API exposes financial, healthcare or other PII data?

• Sensitive data exposure

Question 58)

Which three (iii) of these are Solution Edifice Blocks (SBBs)? (Select iii)

• Virus Protection
• Awarding Firewall
• Spam Filter

Question 59)

A robust cybersecurity defense includes contributions from 3 areas, homo expertise, security analytics and artificial intelligence. Rapidly analyzing large quantities of unstructured data lends itself best to which of these areas?

• Bogus intelligence

Question 60)

The triad of a security operations centers (SOC) is People, Process and Technology. Which part of the triad would network monitoring vest?

• Technology

Question 61)

Which of these is a good definition for cyber threat hunting?

• The human activity of proactively and aggressively identifying, intercepting, tracking, investigating and eliminating cyber adversaries as early as possible in the cyber impale chain

Question 62)

At that place is value brought past each of the IBM i2 EIA employ cases. Which one of these provides firsthand alerting on make compromises and fraud on the nighttime web.

• Threat Discovery

.

Question 63)

Which 3 (three) soft skills are important to take in an organisation's incident response team? (Select 3)

• Advice
• Teamwork
• Problem solving and Critical thinking

Question 64)

Implementing potent endpoint detection and mitigation strategies falls into which phase of the incident response lifecycle?

• Detection & Analysis

Question 65)

Which three (3) of these statistics most phishing attacks are real? (Select 3)

• Effectually 15 million new phishing sites are created each month
• Phishing accounts for most 20% of data breaches
• 30% of phishing messages are opened by their targeted users

Question 66)

Which iii (3) of these command processes are included in the PCI-DSS standard? (Select 3)

• Implement stiff access control measures
• Regularly monitor and test networks
• Maintain an information security policy

Question 67)

Which iii (3) are malware types commonly used in PoS attacks to steal credit bill of fare information? (Select 3)

• Alina
• BlackPOS
• vSkimmer

Question 68)

According to a 2022 Ponemon study, what pct of consumers indicated they would exist willing to pay more for a product or service from a provider with better security?

• 52%

Question 69)

You get a phone call from a technician at the "Windows company" who tells you that they have detected a problem with your system and would like to assistance y'all resolve it. In order to assistance, they need you to go to a spider web site and download a uncomplicated utility that volition permit them to fix the settings on your computer. Since you just ain an Apple Mac, you are suspicious of this caller and hang up. What would the set on vector accept been if you had downloaded the "unproblematic utility" as asked?

• Remote Desktop Protocol (RDP)

Question seventy)

What is an effective fully automated way to prevent malware from entering your arrangement as an email attachment?

• Anti-virus software

 Question 71)

True or False. The large majority of stolen credit card numbers are used quickly by the thief or a fellow member of his/her family.

• Simulated

Question 72)

Which three (3) of these are PCI-DSS requirements for whatsoever company handling, processing or transmitting credit card data? (Select 3)

• Restrict access to cardholder data by business organization demand-to-know
• Assign a unique ID to each person with computer admission
• Restrict physical access to cardholder information

Question 73)

Truthful or False. Communications of a information breach should be handled by a team equanimous of members of the IR team, legal personnel and public relations.

• Truthful

Question 74)

A Coordinating incident response team model is characterized by which of the following?

• Multiple incident response teams inside an organization all of whom coordinate their activities only within their country or department

• Multiple incident response teams within an arrangement but i with authorization to clinch consistent policies and practices are followed across all teams

• This term refers to a structure that assures the incident response team'south activities are coordinated with senior management and all appropriate departments within and organization

Question 75)

The cyber hunting squad and the SOC analysts are informally referred to as the ____ and ____ teams, respectively.

• Blue Red

• Red, Blue

Question 76)

The partnership between security analysts and engineering science tin be said to be grouped into 3 domains, human expertise, security analytics and artificial intelligence. The human being expertise domain would contain which three (3) of these topics?

• Abstraction
• Dilemmas
• Morals

Question 77)

Solution architectures often incorporate diagrams like the one beneath. What does this diagram evidence?

<<Solution Architecture Data Menstruum.png>>

• Functional components and data flow

Question 78)

Port numbers 1024 through 49151 are known as what?

• Registered Ports

Question 79)

Which layer of the OSI model to packet sniffers operate on?

• Data Link

Question 80)

True or False. Internal attacks from trusted employees represents every scrap as pregnant a threat as external attacks from professional cyber criminals.

• True

Question 81)

According to the FireEye Mandiant'southward Security Effectiveness Report 2020, what fraction of security tools are deployed with default settings and thus underperform expectations?

• lxxx%

Question 82)

Which country had the highest boilerplate cost per breach in 2022 at $8.19M

• United States

Question 83)

Which two (two) of these Python libraries provides useful statistical functions? (Select 2)

• StatsModels

• Scikit-learn

Question 84)

What will print out when this block of Python code is run?

i=1

#i=i+1

#i=i+2

#i=i+3

impress(i)

• 1

Question 85)

Which three (3) statements about Python variables are true? (Select 3)

• A variable name must start with a letter or the underscore "_" character
• Variables tin alter type after they accept been set
• Variables practice non accept to be declared in advance of their apply

Question 86)

PowerShell is a configuration direction framework for which operating system?

• Windows

Question 87)

In digital forensics documenting the chain of custody of show is critical. Which of these should be included in your chain of custody log?

• All of the to a higher place

Question 88)

Forensic analysis should e'er exist conducted on a copy of the original data. Which two (2) types of copying are appropriate for getting information from a laptop acquired from a terminated employee, if you lot suspect he has deleted incriminating files? (Select ii)

• An incremental backup

• A logical backup

Question 89)

Which of the following would be considered an incident forerunner?

• An alert from your antivirus software indicating it had detected malware on your system

• An announced threat against your arrangement by a hactivist group

Question ninety)

If a penetration test calls for you to create a diagram of the target network including the identity of hosts and servers as well as a listing of open ports and published services, which tool would be the best fit for this task?

• Nmap

Question 91)

Which type of list is considered best for prophylactic coding practice?

• Whitelist

Question 92)

In reviewing the security logs for a company's headquarters in New York Urban center, which of these activities should non raise much of a security concern?

• A recently hired data scientist in the Medical Analytics department has repeatedly attempted to access the corporate financial database

• An employee has started logging in from habitation for an hr or and then during the last ii weeks of each quarter

Question 93)

Data sources such equally newspapers, books and spider web pages are considered which type of data?

• Unstructured data

• Semi-structured data

• Structured data

Question 94)

Which 3 (3) of these statements near the TCP protocol are True? (Select three)

• TCP packets are reassembled by the receiving system in the order in which they were sent

• TCP is more reliable than UDP

• TCP is connection-oriented

Question 95)

In IPv4, how many of the 4 octets are used to ascertain the network portion of the address in a Course B network?

• two

Question 96)

A modest company with 25 computers wishes to connect them to the Internet using a NAT router. How many Public IP addresses volition this visitor need to clinch all 25 computers tin communicate with each other and other systems on the Internet if they implement Port Address Translations?

• i

Question 97)

Why is symmetric key encryption the most mutual choice of methods to encryptic data at residue?

• There are far more keys available for use

• It is much faster than disproportionate key encryption

Question 98)

Which of the following statements about hashing is Truthful?

• Hashing uses algorithms that are known as "one-mode" functions

Question 99)

Why is hashing not a common method used for encrypting data?

• Hashing is a one-way process and so the original data cannot be reconstructed from a hash value

Question 100)

Public cardinal encryption incorporating digital signatures ensures which of the following?

• Confidentiality and Integrity

Question 101)

What is the master authentication protocol used by Microsoft in Active Directory?

• Kerberos

Question 102)

Granting access to a user business relationship only those privileges necessary to perform its intended functions is known as what?

• The principle of to the lowest degree privileges

Question 103)

What is the virtually common patch remediation frequency for nearly organizations?

• Monthly

• Annually

Question 104)

Island hopping is an attack method usually used in which scenario?

• Supply Chain Infiltration
• Blocking access to a website for all users
• Compromising a corporate VIP
• Trojan Equus caballus attacks

Question 105)

Security training for IT staff is what blazon of control?

• Virtual

• Operational

• Physical

Question 106)

Which security concerns follow your workload even later on information technology is successfully moved to the cloud?

• All of the above

Question 107)

Which form of Cloud calculating combines both public and private clouds?

• Hybrid cloud

Question 108)

Which component of the Linux operating system interacts with your figurer'south hardware?

• The kernel

Question 109)

The encryption and protocols used to forestall unauthorized access to data are examples of which blazon of access control?

• Technical

Question 110)

In cybersecurity, Authenticity is defined as what?

• The property of being 18-carat and verifiable

Question 111)

ITIL is best described as what?

• A collection of IT Service Direction all-time practices

Question 112)

Which position is in charge of testing the security and effectiveness of computer information systems?

• Information Security Accountant

Question 113)

A company wants to prevent employees from wasting time on social media sites. To accomplish this, a document forbidding use of these sites while at work is written and circulated then the firewalls are updated to block access to Facebook, Twitter and other popular sites. Which two (2) types of security controls has the company just implemented? (Select 2)

• Administrative

• Technical

Question 114)

An email bulletin that is encrypted, uses a digital signature and carries a hash value would accost which aspects of the CIA Triad?

Confidentiality and Integrity

Question 115)

What would a slice of malicious lawmaking that gets installed on a calculator and reports back to the controller your keystrokes and other information it can assemble from your organisation be called?

• Spyware

Question 116)

Fancy Bears and Anonymous are examples of what?

• Hacking organizations

Question 117)

Select the reply the fills in the blanks in the correct order.

A weakness in a system is a/an ____. The potential danger associated with this is a/an ____ that becomes a/an ____ when attacked by a bad player.

• vulnerability, threat, exploit

• threat, exposure, risk

• threat role player, vulnerability, exposure

Question 118)

Implement a filter to remove flooded packets before they reach the host is a countermeasure to which form of attack?

• A Deprival of Service (DoS) assault

Question 119)

Trudy intercepts a romantic apparently-text message from Alice to her boyfriend Sam. The bulletin upsets Trudy so she forwards it to Bob, making it look similar Alice intended it for Bob from the beginning. Which aspect of the CIA Triad has Trudy violated ?

• All of the above

Question 120)

Which factor contributes about to the strength of an encryption system?

• How many people have admission to your public key

• The length of the encryption key used

• The number of individual keys used past the organization

Question 121)

What is an advantage asymmetric key encryption has over symmetric key encryption?

• Asymmetric keys tin exist exchanged more securely than symmetric keys

• Asymmetric key encryption is harder to interruption than symmetric key encryption

• Asymmetric central encryption is faster than symmetric key encryption

Question 122)

Which position is responsible for the "ethical hacking" of an organizations reckoner systems?

• A Penetration Tester

Question 123)

Which three (3) are considered best practices, baselines or frameworks? (Select 3)

• ISO27000 serial

• ITIL

• COBIT

Question 124)

What does the "A" in the CIA Triad correspond?

• Availability

Question 125)

Which type of access control is based upon the field of study's clearance level and the objects classification?

• Hierarchical Access Control (HAC)
• Discretionary Admission Control (DAC)
• Mandatory Access Command (MAC)
• Part Based Admission Control (RBAC)

Question 126)

Windows 10 stores 64-bit applications in which directory?

• \Program Files

Question 127)

To build a virtual calculating environment, where is the hypervisor installed?

• Betwixt the applications and the data sources
• On the cloud's supervisory system
• Between the hardware and operating system
• Betwixt the operating system and applications

Question 128)

An identical email sent to millions of addresses at random would be classified as which type of attack?

• A Shark attack

• A Phishing attack

Question 129)

Which statement about drivers running in Windows kernel mode is truthful?

• But disquisitional processes are permitted to run in kernel manner since there is nothing to preclude a

Question 130)

Symmetric key encryption by itself ensures which of the following?

• Confidentiality and Integrity

• Confidentiality only

• Confidentiality and Availability

Question 131)

Which statement best describes configuring a NAT router to employ dynamic mapping?

• The organization will demand as many registered IP addresses as information technology has computers that demand Internet access

• Many registered IP addresses are mapped to a unmarried registered IP address using dissimilar port numbers

• Unregistered IP addresses are mapped to registered IP addresses equally they are needed

• The NAT router uses each computer's IP address for both internal and external communication

Question 132)

Which address type does a computer use to get a new IP address when it boots up?

• The network'southward DHCP server address

Question 133)

What is the primary difference between the IPv4 and IPv6 addressing schema?

• IPv6 is significantly faster than IPv4

• IPv6 is used only for IOT devices

• IPv6 allows for billions of times every bit many possible IP addresses

Question 134)

Which type of firewall understands which session a bundle belongs to and analyzes it accordingly?

• A Next Generation Firewall (NGFW)

Question 135)

An employee calls the IT Helpdesk and admits that maybe, simply possibly, the links in the electronic mail he clicked on this morn were non from the real Lottery Commission. What is the first thing you should tell the employee to exercise?

• Run a Port scan

• Run an antivirus scan

Question 136)

A penetration tester involved in a "Blackness box" set on would exist doing what?

• Attempting to penetrate a client's systems as if she were an external hacker with no inside knowled

Question 137)

Which Mail Incident activity would be concerned with maintaining the proper chain-of-custody?

• Lessons learned meeting
• Testify retention
• Documentation review & update
• Utilizing collected data

Question 138)

In digital forensics, which three (three) steps are involved in the collection of information? (Select three)

• Develop a plan to larn the data

• Verify the integrity of the information

• Acquire the data

Question 139)

Which three (3) of the following are considered scripting languages? (Select 3)

• Perl

• Bash

• Python

Question 140)

What is the largest number that volition be printed during the execution of this Python while loop?

i=0

while (i<10):

 impress(i)

 i=i+i

• 9

Question 141)

Activities performed as a part of security intelligence can be divided into pre-exploit and post-exploit activities. Which two (2) of these are post-exploit activities? (Select 2)

• Assemble full situational awareness through avant-garde security analytics

• Perform forensic investigation

Question 142)

There are many good reasons for maintaining comprehensive backups of critical data. Which aspect of the CIA Triad is nigh impacted by an organisation's fill-in practices?

• Availability

• Integrity

• Authorisation

Question 143)

Which stage of DevSecOps would contain the activities Internal/External testing, Continuous assurance, and Compliance checking?

• Test

• Code & build

• Operate & monitor

• Plan

Question 144)

Which ane of the OWASP Top x Application Security Risks would be occur when there are no safeguards against a user being allowed to execute HTML or JavaScript in the user's browser that tin can hijack sessions.

• Cross-site scripting

Question 145)

SIEM license costs are typically calculated based upon which 2 (two) factors? (Select 2)

• Flows per minute (FPM)

• Events per second (EPS)

Question 146)

True or False. If you have no meliorate place to showtime hunting threats, start with a view of the global threat mural and then drill down to a regional view, industry view and finally a view of the threats specific to your own system.

• True

Question 147)

True or False. Cloud-based storage or hosting providers are among the top sources of 3rd-party breaches

• Truthful

Question 148)

You are looking very hard on the web for the everyman mortgage interest load you can observe and you come up across a rate that is then low information technology could non possibly be true. You check out the site to see that the terms are and chop-chop find you are the victim of a ransomware attack. What was the likely attack vector used by the bad actors?

• Phishing

• Malicious Links

• Software Vulnerabilities

Question 149)

Very provocative articles that come up upwardly in news feeds or Google searches are sometimes called "click-bait". These manufactures often tempt yous to link to other sites that can be infected with malware. What assail vector is used by these click-bait sites to get you to become to the really bad sites?

• Malicious Links

More New Questions

Question 150)

Which of the following defines a security threat?

• Whatever potential danger capable of exploiting a weakness in a system
• The likelihood that the weakness in a organisation will be exploited
• 1 case of a weakness being exploited
• A weakness in a organisation that could be exploited by a bad actor

Question 151)

Suspicious activeness, like IP addresses or ports being scanned sequentially, is a sign of which type of assault?

• A mapping attack
• A denial of service (DoS) attack
• A phishing assail
• An IP spoofing attack

Question 152)

Alice sends a message to Bob that is intercepted past Trudy. Which scenario describes a confidentiality violation?

• Trudy deletes the message without forwarding it
• Trudy cannot read it considering it is encrypted but allows it to exist delivered to Bob in its original form
• Trudy changes the message and so forrad information technology on
• Trudy reads the message

Question 153)

Which regulation contains the security dominion that requires all covered entities to maintain reasonable and advisable administrative, technical, and physical safeguards for protecting electronic protected health information (due east-PHI)?

• PCI-DSS
• ISO27000 serial
• HIPAA
• GDPR
• NIST 800-53A

Question 154)

A good Endpoint Detection and Response arrangement (EDR) should take which three (3) of these capabilities? (Select 3)

• Automatically quarantine noncompliant endpoints
• Manage encryption keys for each endpoint
• Manage thousands of devices at once
• Deploying devices with network configurations

Question 155)

Which statement virtually encryption is True about data in use.

• Information should e'er be kept encrypted since modern CPUs are fully capable of operating direct on encrypted data

• It is vulnerable to theft and should exist decrypted simply for the briefest possible time while it is being operated on

• Brusk of orchestrating a memory dump from a system crash, there is no practical way for malware to become at the data being processed, so dump logs are your but existent business organisation

• Data in active memory registers are not at take chances of being stolen

Question 156)

For added security y'all make up one's mind to protect your network past conducting both a stateless and stateful inspection of incoming packets. How can this exist done?

• This cannot be done The network administrator must choose to run a given network segment in either stateful or stateless mode, and and then select the respective firewall type

• Install a single firewall that is capable of conducting both stateless and stateful inspections

• Install a stateful firewall only These advanced devices inspect everything a stateless firewall inspects in add-on to land related factors

• You must install 2 firewalls in series, so all packets pass through the stateless firewall beginning so the stateless firewall

Question 157)

In IPv4, how many of the 4 octets are used to define the network portion of the address in a Class A network?

• 2
• 1
• iv
• 3

Question 158)

If you have to rely upon metadata to piece of work with the information at hand, you are probably working with which blazon of data?

• Meta-structured data
• Semi-structured data
• Structured data
• Unstructured data

Question 159)

Which 2 (ii) forms of discovery must be conducted online? (Select 2)

• Port scanning
• Shoulder surfing
• Social engineering
• Package sniffing

Question 160)

Which Incident Response Team model describes a team that runs all incident response activities for a company?

• Distributed
• Central
• Analogous
• Control

Question 161)

Which is the data protection process that prevents a suspicious data request from beingness completed?

• Information take chances assay
• Information classification
• Information discovery
• Blocking, masking and quarantining

Question 162)

Which form of penetration testing allows the testers fractional knowledge of the systems they are trying to penetrate in advance of their attack to streamline costs and focus efforts?

• Blood-red Box Testing
• Greyness Box Testing
• White Box testing
• Black Box Testing

Question 163)

Which blazon of application attack would include User denies performing an operation, attacker exploits an application without trace, and aggressor covers her tracks?

• Auditing and logging
• Authentication
• Authorization
• Input validation

Question 164)

True or Imitation. Thorough reconnaissance is an of import step in developing an effective cyber kill chain.

• True
• Imitation

Question 165)

Truthful or Fake. One of the primary challenges in cyber threat hunting is a lack of useful tools sold by besides few vendors.

• True
• False

Question 166)

True or Simulated. A big company has a information alienation involving the theft of employee personnel records but no customer data of any kind. Since no external information was involved, the company does not accept to study the breach to law enforcement.

• True
• False

Question 167)

Y'all are the CEO of a large tech company and have merely received an angry email that looks similar information technology came from one of your biggest customers. The email says your company is overbilling the customer and asks that you examine the attached invoice. You do merely find it blank, so you reply politely to the sender asking for more than details. You never hear dorsum, merely a calendar week afterwards your security team tells you lot that your credentials have been used to access and exfiltrate big amounts of company financial information. What kind of attack did you fall victim to?

• As a phishing attack
• As a whale attack
• A shark attack
• A fly phishing attack

Question 168)

Which of these statements virtually the PCI-DSS requirements for any visitor handling, processing or transmitting credit card information is truthful?

• Muti-cistron authentication is required for all new carte du jour holders
• Some grade of mobile device management (MDM) must be used on all mobile credit carte processing devices
• All employees with direct access to cardholder data must be bonded
• Cardholder data must exist encrypted if it is sent beyond open or public networks

Which Incident Response Squad model describes a team that acts as consulting experts to advise local IR teams?

• Command
• Coordinating
• Distributed
• O Central

In a Linux file organisation, which files are contained in the \bin folder?

• All user binary files, their libraries and headers
• Executable files such as grep and ping
• Configuration files such every bit fstab and inittab
• Directories such as /home and /usr

If a computer needs to ship a message to a organisation that is non part of the local network, where does information technology ship the bulletin?

• To the organisation's domain name
• To the organisation'southward IP address
• The network'due south DNS server address
• To the organization's MAC accost
• The network'south default gateway address
• The network's DHCP server address

Which three (iii) of these statements about the TCP protocol are True? (Select three)

• TCP is faster than UDP
• TCP is connection-oriented
• TCP packets are reassembled by the receiving system in the order in which they were sent
• TCP is more reliable than UDP

A professor is not allowed to alter a pupil's final grade after she submits it without completing a special form to explain the circumstances that necessitated the change. This additional step supports which aspect of the CIA Triad?

• Authorization
• Integrity
• Confidentiality
• Availability

Which of these is the all-time definition of a security risk?

• An instance of being exposed to losses
• Any potential danger that is associated with the exploitation of a vulnerability
• A weakness in a system
• The likelihood of a threat source exploiting a vulnerability

Trudy intercepts a plain text bulletin sent past Alice to Bob, but in no style interferes with its commitment. Which aspect of the CIA Triad was violated?

• Confidentiality
• Integrity
• Availability
• All of the above

What is an advantage symmetric key encryption has over asymmetric key encryption?

• Symmetric key encryption provides better security against Homo-in-the-middle attacks than is possible with disproportionate key encryption
• Symmetric key encryption is faster than asymmetric primal encryption
• Symmetric keys can be exchanged more deeply than disproportionate keys
• Symmetric key encryption is harder to suspension than disproportionate key encryption

Which blazon of application attack would include network eavesdropping, dictionary attacks and cookie replays?

• Configuration management
• Authentication
• Authorisation
• Exception management

Why should you always look for common patterns before starting a new security architecture design?

• They can help identify best practices
• They can shorten the development lifecycle
• Some document complete tested solutions
• All of the above

Last Update: 09/12/2021

Warning: Jo Respond Green hai wo correct hai but

Jo Dark-green Nahi hai. Usme se jo ek wrong option tha usko hata diya hai

PLEASE Wait I WILL ADD MORE NEW QUETIONS..

Also if you have Questions with correct respond  Send me on my Email i volition update on my web log..

niyander111@gmail.com

Thank you...

traylorglest1957.blogspot.com

Source: https://niyander.blogspot.com/2021/03/IBM%20Cybersecurity%20Analyst%20Professional%20Certificate%20Assessment%20Exam%20Answers.html

Share this post