Test 15

Question 1

Which of the terms listed below is used to describe a foundational level of security configurations and settings required to safeguard a system?

Answer 1

Secure baseline

Question 2

Installing mobile apps from trusted sources (e.g., Apple’s App Store for iOS devices, or Google Play for Android devices) instead of third-party application stores decreases malware-related security risks.

Answer 2

True

Question 3

Data on a lost or stolen mobile device can be erased by:

Answer 3

Remote wipe

Question 4

Which of the following answers refers to a mobile security solution that enables separate controls over the user and enterprise data?

Answer 4

Storage segmentation

Question 5

Implementing full device encryption is one of the methods for securing sensitive data on a smartphone. When enabled, this type of encryption works in conjunction with the phone’s screen lock, i.e., to decrypt the phone (which stays encrypted whenever the phone is locked), a user must first unlock the screen. On Android devices, the unlocking methods include entering a PIN, password, or drawing a simple pattern with a finger. Apple devices use passcodes, facial recognition (Face ID), and fingerprint (Touch ID).

Answer 5

True

Question 6

In the context of MDM, the isolation of corporate applications and data from other parts of the mobile device is referred to as:

Answer 6

Containerization

Question 7

Which of the answers listed below refer to workstation hardening techniques? (Select 3 answers)

Answer 7

Regularly applying security patches and updates to the OS and installed software
Removing or disabling unnecessary drivers, services, software, and network protocols ( Missed)
Limiting unauthorized or unauthenticated user access

Question 8

Which of the following answers refer(s) to (a) router hardening technique(s)? (Select all that apply)

Answer 8

Changing default credentials ( Missed)
Disabling unused services and ports
Implementing regular firmware updates

Question 9

Which of the answers listed below refers to the process of assessing the physical environment, such as the layout of the building, to identify potential sources of interference and determine the optimal placement of a WAP?

Answer 9

Site survey

Question 10

An administrator needs to adjust the placement of multiple APs to ensure the best wireless signal coverage for the network. Which of the following would be of help in identifying areas of low signal strength?

Answer 10

Heat map

Question 11

Which type of software enables centralized administration of mobile devices?

Answer 11

MDM

Question 12

Which of the answers listed below refers to software that facilitates the enforcement of mobile device policies and procedures?

Answer 12

MDM

Question 13

A mobile device deployment model that allows employees to use private mobile devices for accessing company’s restricted data and applications is known as:

Answer 13

BYOD

Question 14

Which of the answers listed below refers to a mobile device deployment model where organizations provide and own the devices while allowing their personal use?

Answer 14

COPE

Question 15

What is the name of a mobile device deployment model in which employees select devices for work-related tasks from a company-approved device list?

Answer 15

CYOD

Question 16

An SSID is a unique identifier (a.k.a. wireless network name) for a WLAN. Wireless networks advertise their presence by regularly broadcasting SSID in a special packet called beacon frame. In wireless networks with disabled security features, knowing the network SSID is enough to get access to the network. SSID also pinpoints the wireless router that acts as a WAP. Wireless routers from the same manufacturer are frequently configured with default (well-known) SSID names. Since multiple devices with the same SSID displayed on the list of available networks create confusion and encourage accidental access by unauthorized users (applies to networks that lack security), changing the default SSID is a recommended practice.

Answer 16

True

Question 17

For a wireless client to be able to connect to a network, the security type (e.g., WEP, WPA, WPA2, or WPA3) and encryption type (e.g., TKIP or AES) settings on the connecting host must match the corresponding wireless security settings on a WAP.

Answer 17

True

Question 18

Which of the following answers refers to a security feature used in Bluetooth device pairing?

Answer 18

PIN

Question 19

Which of the following solutions would offer the strongest security for a small network that lacks an authentication server?

Answer 19

WPA3-SAE

Question 20

What are the characteristic features of WPA2/WPA3 Enterprise mode? (Select 3 answers)

Answer 20

Suitable for large corporate networks
IEEE 802.1X
Requires RADIUS authentication server

Question 21

What is the name of the encryption protocol primarily used in Wi-Fi networks implementing the WPA3 security standard?

Answer 21

AES-GCMP

Question 22

Which of the following acronyms refers to a client authentication method used in WPA3 Personal mode?

Answer 22

SAE

Question 23

What are the characteristics of TACACS+? (Select 3 answers)

Answer 23

Encrypts the entire payload of the access-request packet ( Missed)
Primarily used for device administration ( Missed)
Separates authentication and authorization

Question 24

What are the characteristic features of RADIUS? (Select 3 answers)

Answer 24

Combines authentication and authorization ( Missed)
Encrypts only the password in the access-request packet
Primarily used for network access

Question 25

Which of the wireless encryption schemes listed below offers the highest level of protection?

Answer 25

WPA3