Questions I got wrong

Question 1

What is a step by step process document called?

Answer 1

A procedure. A procedure is a document that outlines a series of steps to be followed to accomplish a specific task or operation.

Question 2

Can brand reputation be assessed for value?

Answer 2

Yes. Assets can include both tangible and intangible items that have value to an organization.

Question 3

What is the purpose of a subnet mask?

Answer 3

Subnet masks determine the network portion and host portion of an IP address.

Question 4

What is the primary purpose of a digital signature in cryptography?

Answer 4

The primary purpose of a digital signature in cryptography is to verify the integrity and authenticity of digital data.

Question 5

During an incident response, what is the highest priority of first responders?

Answer 5

In the context of incident response, the primary goal is to minimize disruption to the business or organization and restore normalcy as quickly as possible.

Question 6

In the context of privileged access management, what is the purpose of just-in-time privileged access management and just-in-time identity?

Answer 6

Providing users with temporary elevated privileges when needed.

Question 7

The security team identified that several employees have more system permissions than their roles require, due to temporary assignments or promotions that have since ended. What is the term for this situation?

Answer 7

Privilege creep

Question 8

When a cyber attacker pretends to be someone else to trick people into giving away private information, what is this kind of attack called?

Answer 8

Pretexting

Question 9

Which category of encryption does the substitution cipher belong to?

Answer 9

Symmetric encryption.

Question 10

What is a Memorandum of Understanding (MOU) or Memorandum of Agreement (MOA)?

Answer 10

In the context of BC and DR, an MOU or MOA is usually established between organizations to ensure that in the event of an emergency, such as a fire, flood, power loss, etc., one organization can share its resources and facilities with the other to maintain critical functions.

Question 11

Which process occurs as data moves up the layers of the OSI model?

Answer 11

Decapsulation

Question 12

When you see the term point to point in a network question, the technology is probably….

Answer 12

VPN

Question 13

What is a unique identifier assigned to network interfaces for communications on the physical network segment?

Answer 13

MAC address

Question 14

When key distribution is not adequately secured, a cryptographic system becomes vulnerable to which security threat?

Answer 14

Man in the middle attack

Question 15

What is the purpose of the SYN packet in the three-way handshake of TCP?

Answer 15

It establishes a reliable connection between the client and server.

Question 16

What is the point of system hardening?

Answer 16

To reduce the system’s attack surface by applying secure configurations.

Question 17

What is password hashing?

Answer 17

Adding random data to the password before hashing.

Question 18

What is an XSS attack?

Answer 18

Cross-Site Scripting (XSS) attack (option D). In an XSS attack, an attacker injects malicious scripts into content that other users view on a web application. When other users load the affected page in their browser, the malicious script executes and can perform actions such as stealing their session cookies.

Question 19

Using strong complex passwords and changing them frequently is what kind of control?

Answer 19

A preventative control

Question 20

which term refers to the expected monetary loss that can be expected from a single risk event?

Answer 20

Single Loss Expectancy (SLE)

Question 21

What is best used for ensuring the security of data in motion?

Answer 21

Public Key Infrastructure (PKI) provides a framework of encryption and data communications standards used to secure communications over public networks. It is suitable for ensuring the security of data in motion through encryption and the use of digital certificates.

Question 22

What is a dictionary attack?

Answer 22

Involves using a list of commonly-used passwords or combinations.

Question 23

Which access control systems requires individuals to validate their identity using mechanisms like PINs, biometrics, or other tokens?

Answer 23

Logical Access Control Systems

Logical Access Control Systems are automated systems that validate an individual’s identity through mechanisms like PINs, biometrics, or other tokens.

Question 24

Which tool is specifically designed to crack password hashes by comparing them against a precomputed table of hash values?

Answer 24

Rainbow Table

A rainbow table is a precomputed table for reversing cryptographic hash functions, mainly used for cracking password hashes.

Question 25

What are the key stages in the data lifecycle, representing the process of data from creation to disposal?

Answer 25

Create, Store, Use, Share, Archive, Destroy

Question 26

which sequence best describes the typical stages of identity and access management from initial access to termination?

Answer 26

Provisioning, review, revocation

Question 27

Which layer of the OSI model is primarily responsible for end-to-end communication, error recovery, and flow control?

Answer 27

Transport Layer

The Transport Layer of the OSI model provides end-to-end communication, error recovery, and flow control.

Question 28

James is looking to deploy a firewall that can inspect web traffic, ensuring that it not only filters packets based on source and destination addresses but also understands and evaluates the data at the application layer. Which type of firewall is best suited for this purpose?

Answer 28

Proxy firewall

Question 29

What is a smurf attack?

Answer 29

In a smurf attack, the attacker uses a spoofed source address (the victim’s) and broadcasts a ping request to a network. The network responds to the request by sending a reply to the spoofed address, which is the victim’s address, thereby flooding the victim with traffic.

Question 30

Which cryptographic method allows two parties to independently generate a shared secret key over an unsecured communication channel?

Answer 30

Diffie-Hellman is a key exchange protocol that enables two parties to establish a shared secret over an unsecured channel.

Question 31

Which of the following processes is responsible for overseeing and systematically handling changes to a system to maintain its integrity and performance?

Answer 31

Configuration Management is about keeping systems in a known, consistent state. It’s about managing changes, avoiding unintended system behaviors, and understanding the consequences of changes.

Question 32

Which of the following technologies allows data to be written across multiple media for enhanced performance and redundancy, and can be used in both disk and tape storage solutions?

Answer 32

RAID

Both Redundant Array of Independent Disks (RAID) and Redundant Array of Independent Tapes (RAIT) are technologies that distribute data across multiple disks or tapes respectively. They are designed to improve performance and provide data redundancy.