IS3340 CHAPTER 15

Question 1

1. Anti-malware software applies mainly to workstation computers.
   TRUE OR FALSE

Answer 1

FALSE

Question 2

2. WHAT IS RTO?
3. Real time objective
4. Recovery time objective
5. Recovery turn over
6. Real turn over

Answer 2

Recovery time objective

Question 3

3. Test your backup only when you suspect media corruption.

TRUE OR FALSE

Answer 3

FALSE

Question 4

4. Even if you use the same password for a long time, it will remain secure.
   TRUE OR FALSE

Answer 4

FALSE

Question 5

5. Which of the following is an encryption recovery key that you should physically store in a separate safe location?
6. DES
7. AES
8. SSTP
9. EFS

Answer 5

EFS

Question 6

6. Which protocol is the newest VPN protocol from Microsoft?
7. SSTP
8. L2TP
9. PPP
10. TLS

Answer 6

SSTP

Question 7

7. The Plan, Do, Check, Act (PDCA) process is also called a ___ cycle.

Answer 7

Deming

Question 8

8. Which printer actions should you audit?
9. Remote access
10. Print non-text files
11. Change printer destination
12. All the above

Answer 8

Remote access
Print non-text files
Change printer destination

All the above

Question 9

9. Which of the following tools will compare computer settings to your standards? (Select two)
10. GPMC
11. SCA
12. MBSA
13. PDCA

Answer 9

SCA

MBSA

Question 10

10. Change your ____ Directory Service Restore Mode (DSRM) password periodically, at least every six months.

Answer 10

Active Directory

Question 11

11. What program should you run on Windows Server 2008 R2 immediately after installing the operating system?
12. Group Policy Object (GPO)
13. Anti-malware Shiel
14. Security Configuration Wizard (SCW)
15. Network Access Control (NAC)

Answer 11

Security Configuration Wizard (SCW)

Question 12

12. What is the first step to take when hardening applications?
13. Remove or disable unneeded services
14. Define unique user accounts
15. Harden the operating system
16. Ensure every computer has up-to-date anti-malware and data

Answer 12

Harden the operating system

Question 13

13. To isolate Web server computers from your internal network, place them in a segregated network called a ___.

Answer 13

Demilitarized Zone (DMZ)

Question 14

14. Which of the following is the best choice for secure wireless communications?
15. WPA
16. WEP
17. SSID
18. TLS

Answer 14

WPA

Question 15

15. Which of the following is NOT a core concept of Secure Development Lifecycle (SDL)?
16. Education
17. Availability
18. Continuous improvement
19. Accountability

Answer 15

Availability

Question 16

The practice of renting computer resources from a provider instead of owning the resources is called ___?

Answer 16

CLOUD COMPUTING

Question 17

The process of an attacker tricking or convincing an authorized user to carry out an action or provide valuable information for which the attacker is unauthorized is called ___?

Answer 17

SOCIAL ENGINEERING