Demand For Crowdsourcing Service Providers Is Driven Primarily By What Type Of Customer?

IBM Cybersecurity Analyst Professional Document Assessment Exam Quiz Answers

Alert: Jo Answer Green hai wo correct hai simply

Jo Greenish Nahi hai. Usme se jo ek wrong selection tha usko hata diya hai

Question 1)

Implementing a Security Sensation training program would be an instance of which type of command?

• Administrative control

Question ii)

Putting locks on a door is an example of which blazon of control?

• Preventative

Question iii)

How would you classify a piece of malicious code that tin can replicate itself and spread to new systems?

• A worm

Question 4)

To engage in packet sniffing, you must implement promiscuous way on which device ?

• A network bill of fare
• An Intrusion Detection System (IDS)
• A sniffing router

Question v)

Which mechanism would assistance assure the integrity of a message, but non do much to assure confidentiality or availability.

• Hashing

Question vi)

An organization wants to restrict employee after-hours access to its systems so information technology publishes a policy forbidding employees to work outside of their assigned hours, then makes sure the office doors remain locked on weekends. What ii (ii) types of controls are they using? (Select 2)

• Concrete
• Administrative

Question 7)

Which two factors contribute to cryptographic strength? (Select 2)

• The use of cyphers that are based on complex mathematical algorithms
• The use of cyphers that have undergone public scrutiny

Question 8)

Trying to interruption an encryption key by trying every possible combination of characters is called what?

• A brute force attack

Question 9)

Which of the following describes the cadre goals of IT security?

• The Open Spider web Application Security Project (OWASP) Framework
• The Business Procedure Direction Framework
• The CIA Triad

Question ten)

Which three (3) roles are typically found in an Information Security organization? (Select 3)

• Vulnerability Assessor
• Chief Information Security Officer (CISO)
• Penetration Tester

Question 11)

Trouble Direction, Modify Management, and Incident Management are all key processes of which framework?

• ITIL

Question 12)

Alice sends a message to Bob that is intercepted past Trudy. Which scenario describes an integrity violation?

• Trudy changes the bulletin and and so forwards information technology on
• Trudy deletes the message without forwarding it
• Trudy reads the message
• Trudy cannot read it because it is encrypted but allows it to exist delivered to Bob in its original form

Question 13)

In cybersecurity, Accountability is defined equally what?

• Existence able to map an activity to an identity

Question xiv)

Multifactor authentication (MFA) requires more than 1 authentication method to be used earlier identity is authenticated. Which 3 (3) are authentication methods? (Select 3)

• Something a person is
• Something a person has
• Something a person knows

Question 15)

Which three (three) of the following are Physical Access Controls? (Select 3)

• Door locks
• Security guards
• Fences

Question 16)

If y'all are setting upward a Windows 10 laptop with a 32Gb hard drive, which 2 (2) file arrangement could you lot select? (Select ii)

• NTFS
• FAT32

Question 17)

Which three (iii) permissions tin can be set on a file in Linux? (Select iii)

• write
• execute
• read

Question 18)

If cost is the principal concern, which blazon of deject should be considered get-go?

• Public deject

Question nineteen)

Consolidating and virtualizing workloads should be done when?

• Earlier moving the workloads to the deject

Question 20)

Which of the post-obit is a self-regulating standard set up up by the credit menu industry in the Usa?

• PCI-DSS

Question 21)

Which 2 (two) of the following attack types target endpoints?

• Advertisement Network
• Spear Phishing

Question 22)

If an Endpoint Detection and Response (EDR) organization detects that an endpoint does not have a required patch installed, which argument best characterizes the deportment information technology is able to take automatically?

• The endpoint tin be quarantined from all network resources except those that allow it to download and install the missing patch

Question 23)

Granting access to a user based upon how loftier up he is in an organization violates what bones security premise?

• The principle of least privileges

Question 24)

The Windows Security App available in Windows 10 provides uses with which of the following protections?

• Firewall and network protection
• Family options (parental controls)
• All of the above

Question 25)

Hashing ensures which of the following?

• Integrity

Question 26)

Which of the following practices helps assure the best results when implementing encryption?

• Choose a reliable and proven published algorithm
• Develop a unique cryptographic algorithm for your system and go along them secret

Question 27)

Which of these methods ensures the authentication, non-repudiation and integrity of a digital advice?

• Use of digital signatures

Question 28)

Which of the post-obit practices volition help assure the confidentiality of information in transit?

• Disable document pinning
• Accept self-signed certificates
• Implement HTTP Strict Transport Protocol (HSTS)

Question 29)

Which three (3) of these are benefits you can realize from using a NAT (Network Address Translation) router? (Select 3)

• Allows static 1-to-1 mapping of local IP addresses to global IP addresses
• Allows dynamic mapping of many local IP addresses to a smaller number of global IP address only when they are needed
• Allows internal IP addresses to be hidden from outside observers

Question 30)

Which statement best describes configuring a NAT router to use static mapping?

• The organization volition demand as many registered IP addresses as it has computers that need Internet admission

Question 31)

If a estimator needs to send a message to a system that is function of the local network, where does it transport the message?

• To the organisation'south MAC address

Question 32)

Which are properties of a highly available system?

• Redundancy, failover and monitoring

Question 33)

Which three (three) of these statements near the UDP protocol are True? (Select 3)

• UDP is faster than TCP
• UDP packets are reassembled by the receiving system in whatever order they are received
• UDP is connectionless

Question 34)

What is 1 divergence betwixt a Stateful Firewall and a Next Generation Firewall?

• A NGFW understand which awarding sent a given packet

Question 35)

You lot are concerned that your system is really not very experienced with securing data sources. Which hosting model would crave you to secure the fewest data sources?

• SaaS

Question 36)

Hassan is an engineer who works a normal day shift from his company's headquarters in Austin, TX USA. Which two (ii) of these activities raise the virtually cause for business concern? (Select 2)

• Each night Hassan logs into his business relationship from an Internet access provider in China
• 1 evening, Hassan downloads all of the files associated with the new production he is working on

Question 37)

Which three (iii) of the following are considered prophylactic coding practices? (Select 3)

• Use library functions in identify of OS commands
• Avoid using OS commands whenever possible
• Avert running commands through a shell interpreter

Question 38)

Which 3 (3) items should be included in the Planning footstep of a penetration test? (Select 3)

• Informing Need-to-know employees
• Establishing Boundaries
• Setting Objectives

Question 39)

Which portion of the pentest report would cover the risk ranking, recommendations and roadmap?

• Executive Summary

Question 40)

Spare workstations and servers, blank removable media, bundle sniffers and protocol analyzers, all belong to which Incident Response resource category?

• Incident Post-Assay Resources
• Incident Analysis Hardware and Software

Question 41)

NIST recommends considering a number of items, including a loftier level of testing and monitoring, during which stage of a comprehensive Containment, Eradication & Recovery strategy?

• Recovery

Question 42)

True or Simulated. Digital forensics is effective in solving cyber crimes but is not considered effective in solving violent crimes such as rape and murder.

• False

Question 43)

Which three (3) are common obstacles faced when trying to examine forensic data? (Select 3)

• Selecting the correct tools to help filter and exclude irrelevant information
• Finding the relevant files among the hundreds of thousands plant on well-nigh hard drives
• Bypassing controls such every bit passwords

Question 44)

What scripting concept volition repeatedly execute the same cake of code while a specified condition remains true?

• Loops

Question 45)

Which two (2) statements about Python are true? (Select 2)

• Python code is considered easy to debug compared with other pop programming languages
• Python code is considered very readable by novice programmers

Question 46)

In the Python argument

pi="three"

What data type is the data blazon of the variable pi?

• str

Question 47)

What volition be printed by the following block of Python code?

def Add5(in)

 out=in+5

 return out

 print(Add5(x))

• 15

Question 48)

Which threat intelligence framework was developed by the Us Government to enable consistent characterization and categorization of cyberthreat events?

• Cyber Threat Framework

Question 49)

True or Fake. An organisation's security allowed organisation should be integrated with outside organizations, including vendors and other third-parties.

• True

Question 50)

Which 3 (3) of these are among the top 12 capabilities that a good information security and protection solution should provide? (Select three)

• Vulnerability assessment
• Real-time alerting
• Tokenization

Question 51)

True or Fake. For iOS and Android mobile devices, users must interact with the operating system only through a series of applications, but not directly.

• True

Question 52)

All industries take their ain unique data security challenges. Which of these industries has a particular concern with PCI-DSS compliance while having a large number of admission points staffed past low-level employees who accept access to payment carte data?

• Retail

Question 53)

True or Imitation. WireShark has an impressive array of features and is distributed gratuitous of charge.

• True

Question 54)

In which component of a Common Vulnerability Score (CVSS) would privileges required exist reflected?

• Base-Exploitability Subscore

Question 55)

The Decommission stride in the DevSecOps Release, Deploy & Decommission phase contains which of these activities?

• IAM controls to regulate authorization

Question 56)

You calculate that there is a ii% probability that a cybercriminal will be able to steal credit card numbers from your online storefront which volition issue in $10M in losses to your company. What take you simply determined?

• A risk

Question 57)

Which one of the OWASP Elevation 10 Application Security Risks would be occur when an application's API exposes financial, healthcare or other PII data?

• Sensitive data exposure

Question 58)

Which 3 (3) of these are Solution Edifice Blocks (SBBs)? (Select 3)

• Virus Protection
• Application Firewall
• Spam Filter

Question 59)

A robust cybersecurity defense includes contributions from iii areas, human being expertise, security analytics and artificial intelligence. Speedily analyzing large quantities of unstructured information lends itself best to which of these areas?

• Artificial intelligence

Question 60)

The triad of a security operations centers (SOC) is People, Process and Technology. Which part of the triad would network monitoring belong?

• Applied science

Question 61)

Which of these is a good definition for cyber threat hunting?

• The deed of proactively and aggressively identifying, intercepting, tracking, investigating and eliminating cyber adversaries equally early equally possible in the cyber kill chain

Question 62)

There is value brought by each of the IBM i2 EIA apply cases. Which one of these provides immediate alerting on make compromises and fraud on the nighttime web.

• Threat Discovery

.

Question 63)

Which three (3) soft skills are important to have in an arrangement's incident response team? (Select 3)

• Communication
• Teamwork
• Problem solving and Critical thinking

Question 64)

Implementing strong endpoint detection and mitigation strategies falls into which stage of the incident response lifecycle?

• Detection & Analysis

Question 65)

Which three (3) of these statistics nigh phishing attacks are real? (Select iii)

• Effectually xv million new phishing sites are created each calendar month
• Phishing accounts for near xx% of information breaches
• xxx% of phishing messages are opened by their targeted users

Question 66)

Which three (3) of these control processes are included in the PCI-DSS standard? (Select 3)

• Implement potent access command measures
• Regularly monitor and test networks
• Maintain an data security policy

Question 67)

Which 3 (iii) are malware types usually used in PoS attacks to steal credit card information? (Select 3)

• Alina
• BlackPOS
• vSkimmer

Question 68)

According to a 2019 Ponemon study, what percent of consumers indicated they would be willing to pay more for a product or service from a provider with better security?

• 52%

Question 69)

You get a phone telephone call from a technician at the "Windows company" who tells you lot that they take detected a problem with your system and would like to help you resolve it. In lodge to aid, they need yous to go to a web site and download a uncomplicated utility that volition allow them to fix the settings on your estimator. Since yous only own an Apple Mac, you are suspicious of this caller and hang up. What would the attack vector have been if you had downloaded the "simple utility" equally asked?

• Remote Desktop Protocol (RDP)

Question 70)

What is an effective fully automated fashion to prevent malware from entering your arrangement as an email attachment?

• Anti-virus software

 Question 71)

Truthful or False. The large majority of stolen credit carte du jour numbers are used speedily past the thief or a fellow member of his/her family.

• Fake

Question 72)

Which three (3) of these are PCI-DSS requirements for any company handling, processing or transmitting credit menu data? (Select 3)

• Restrict access to cardholder data by business need-to-know
• Assign a unique ID to each person with figurer access
• Restrict physical access to cardholder data

Question 73)

True or False. Communications of a information breach should exist handled by a team composed of members of the IR squad, legal personnel and public relations.

• Truthful

Question 74)

A Analogous incident response team model is characterized by which of the following?

• Multiple incident response teams within an system all of whom coordinate their activities only within their state or department

• Multiple incident response teams within an system just one with authority to assure consequent policies and practices are followed beyond all teams

• This term refers to a structure that assures the incident response team's activities are coordinated with senior direction and all appropriate departments inside and organization

Question 75)

The cyber hunting squad and the SOC analysts are informally referred to as the ____ and ____ teams, respectively.

• Blue Red

• Cerise, Blue

Question 76)

The partnership betwixt security analysts and technology can be said to be grouped into 3 domains, human expertise, security analytics and artificial intelligence. The human being expertise domain would comprise which three (iii) of these topics?

• Abstraction
• Dilemmas
• Morals

Question 77)

Solution architectures often contain diagrams like the one below. What does this diagram prove?

<<Solution Compages Data Menstruation.png>>

• Functional components and data menses

Question 78)

Port numbers 1024 through 49151 are known as what?

• Registered Ports

Question 79)

Which layer of the OSI model to packet sniffers operate on?

• Data Link

Question 80)

True or False. Internal attacks from trusted employees represents equally every bit significant a threat as external attacks from professional cyber criminals.

• True

Question 81)

According to the FireEye Mandiant'south Security Effectiveness Report 2020, what fraction of security tools are deployed with default settings and thus underperform expectations?

• 80%

Question 82)

Which country had the highest average cost per breach in 2018 at $8.19M

• U.s.a.

Question 83)

Which 2 (2) of these Python libraries provides useful statistical functions? (Select 2)

• StatsModels

• Scikit-learn

Question 84)

What will print out when this cake of Python code is run?

i=1

#i=i+ane

#i=i+2

#i=i+iii

print(i)

• 1

Question 85)

Which 3 (iii) statements about Python variables are truthful? (Select three)

• A variable proper noun must start with a letter or the underscore "_" character
• Variables can alter type after they have been set
• Variables practice not have to be declared in accelerate of their utilize

Question 86)

PowerShell is a configuration management framework for which operating system?

• Windows

Question 87)

In digital forensics documenting the chain of custody of bear witness is critical. Which of these should be included in your concatenation of custody log?

• All of the higher up

Question 88)

Forensic analysis should always be conducted on a copy of the original data. Which two (2) types of copying are advisable for getting data from a laptop acquired from a terminated employee, if you doubtable he has deleted incriminating files? (Select 2)

• An incremental backup

• A logical backup

Question 89)

Which of the post-obit would exist considered an incident precursor?

• An alert from your antivirus software indicating it had detected malware on your system

• An announced threat confronting your arrangement past a hactivist group

Question 90)

If a penetration test calls for you to create a diagram of the target network including the identity of hosts and servers as well as a listing of open ports and published services, which tool would be the all-time fit for this task?

• Nmap

Question 91)

Which type of list is considered best for safe coding practice?

• Whitelist

Question 92)

In reviewing the security logs for a company'due south headquarters in New York City, which of these activities should not raise much of a security concern?

• A recently hired data scientist in the Medical Analytics department has repeatedly attempted to admission the corporate financial database

• An employee has started logging in from home for an hour or so during the last 2 weeks of each quarter

Question 93)

Data sources such equally newspapers, books and web pages are considered which type of information?

• Unstructured data

• Semi-structured data

• Structured data

Question 94)

Which three (iii) of these statements about the TCP protocol are True? (Select 3)

• TCP packets are reassembled by the receiving system in the social club in which they were sent

• TCP is more reliable than UDP

• TCP is connectedness-oriented

Question 95)

In IPv4, how many of the 4 octets are used to define the network portion of the address in a Class B network?

• 2

Question 96)

A small company with 25 computers wishes to connect them to the Internet using a NAT router. How many Public IP addresses volition this company need to assure all 25 computers can communicate with each other and other systems on the Internet if they implement Port Accost Translations?

• ane

Question 97)

Why is symmetric key encryption the most common pick of methods to encryptic information at rest?

• In that location are far more than keys available for utilise

• It is much faster than asymmetric primal encryption

Question 98)

Which of the following statements about hashing is Truthful?

• Hashing uses algorithms that are known as "one-way" functions

Question 99)

Why is hashing non a mutual method used for encrypting data?

• Hashing is a ane-way procedure then the original data cannot be reconstructed from a hash value

Question 100)

Public primal encryption incorporating digital signatures ensures which of the following?

• Confidentiality and Integrity

Question 101)

What is the main authentication protocol used by Microsoft in Active Directory?

• Kerberos

Question 102)

Granting access to a user business relationship only those privileges necessary to perform its intended functions is known as what?

• The principle of least privileges

Question 103)

What is the well-nigh common patch remediation frequency for most organizations?

• Monthly

• Annually

Question 104)

Island hopping is an assail method usually used in which scenario?

• Supply Chain Infiltration
• Blocking access to a website for all users
• Compromising a corporate VIP
• Trojan Horse attacks

Question 105)

Security training for It staff is what type of control?

• Virtual

• Operational

• Physical

Question 106)

Which security concerns follow your workload even later on it is successfully moved to the cloud?

• All of the above

Question 107)

Which form of Cloud computing combines both public and private clouds?

• Hybrid deject

Question 108)

Which component of the Linux operating system interacts with your computer'southward hardware?

• The kernel

Question 109)

The encryption and protocols used to preclude unauthorized access to data are examples of which type of access command?

• Technical

Question 110)

In cybersecurity, Authenticity is divers as what?

• The belongings of existence 18-carat and verifiable

Question 111)

ITIL is best described as what?

• A collection of IT Service Direction all-time practices

Question 112)

Which position is in charge of testing the security and effectiveness of computer information systems?

• Information Security Auditor

Question 113)

A visitor wants to prevent employees from wasting fourth dimension on social media sites. To accomplish this, a document forbidding use of these sites while at work is written and circulated and then the firewalls are updated to cake access to Facebook, Twitter and other popular sites. Which two (2) types of security controls has the company just implemented? (Select ii)

• Administrative

• Technical

Question 114)

An e-mail message that is encrypted, uses a digital signature and carries a hash value would address which aspects of the CIA Triad?

Confidentiality and Integrity

Question 115)

What would a piece of malicious code that gets installed on a computer and reports back to the controller your keystrokes and other information information technology tin can assemble from your system be chosen?

• Spyware

Question 116)

Fancy Bears and Bearding are examples of what?

• Hacking organizations

Question 117)

Select the reply the fills in the blanks in the right order.

A weakness in a system is a/an ____. The potential danger associated with this is a/an ____ that becomes a/an ____ when attacked by a bad player.

• vulnerability, threat, exploit

• threat, exposure, take chances

• threat player, vulnerability, exposure

Question 118)

Implement a filter to remove flooded packets before they reach the host is a countermeasure to which form of assail?

• A Deprival of Service (DoS) set on

Question 119)

Trudy intercepts a romantic plain-text message from Alice to her beau Sam. The message upsets Trudy so she forwards it to Bob, making information technology look like Alice intended it for Bob from the get-go. Which attribute of the CIA Triad has Trudy violated ?

• All of the above

Question 120)

Which factor contributes well-nigh to the strength of an encryption system?

• How many people have access to your public central

• The length of the encryption primal used

• The number of private keys used by the organization

Question 121)

What is an advantage asymmetric cardinal encryption has over symmetric key encryption?

• Disproportionate keys can be exchanged more securely than symmetric keys

• Asymmetric key encryption is harder to break than symmetric key encryption

• Disproportionate central encryption is faster than symmetric key encryption

Question 122)

Which position is responsible for the "ethical hacking" of an organizations computer systems?

• A Penetration Tester

Question 123)

Which iii (3) are considered best practices, baselines or frameworks? (Select 3)

• ISO27000 series

• ITIL

• COBIT

Question 124)

What does the "A" in the CIA Triad stand for?

• Availability

Question 125)

Which blazon of access control is based upon the subject's clearance level and the objects nomenclature?

• Hierarchical Access Command (HAC)
• Discretionary Admission Control (DAC)
• Mandatory Admission Control (MAC)
• Role Based Admission Control (RBAC)

Question 126)

Windows 10 stores 64-bit applications in which directory?

• \Programme Files

Question 127)

To build a virtual computing environment, where is the hypervisor installed?

• Betwixt the applications and the information sources
• On the deject'southward supervisory system
• Between the hardware and operating system
• Between the operating system and applications

Question 128)

An identical email sent to millions of addresses at random would be classified as which blazon of attack?

• A Shark attack

• A Phishing attack

Question 129)

Which statement nigh drivers running in Windows kernel style is truthful?

• Only critical processes are permitted to run in kernel style since there is null to foreclose a

Question 130)

Symmetric central encryption by itself ensures which of the post-obit?

• Confidentiality and Integrity

• Confidentiality only

• Confidentiality and Availability

Question 131)

Which argument best describes configuring a NAT router to use dynamic mapping?

• The organization will need as many registered IP addresses as information technology has computers that need Internet access

• Many registered IP addresses are mapped to a unmarried registered IP address using different port numbers

• Unregistered IP addresses are mapped to registered IP addresses equally they are needed

• The NAT router uses each reckoner's IP address for both internal and external communication

Question 132)

Which address type does a computer utilize to get a new IP address when it boots up?

• The network'south DHCP server address

Question 133)

What is the primary divergence betwixt the IPv4 and IPv6 addressing schema?

• IPv6 is significantly faster than IPv4

• IPv6 is used but for IOT devices

• IPv6 allows for billions of times as many possible IP addresses

Question 134)

Which blazon of firewall understands which session a parcel belongs to and analyzes it accordingly?

• A Next Generation Firewall (NGFW)

Question 135)

An employee calls the IT Helpdesk and admits that maybe, just possibly, the links in the email he clicked on this morn were non from the real Lottery Committee. What is the commencement affair you should tell the employee to exercise?

• Run a Port browse

• Run an antivirus scan

Question 136)

A penetration tester involved in a "Black box" assail would be doing what?

• Attempting to penetrate a client'south systems every bit if she were an external hacker with no inside knowled

Question 137)

Which Post Incident activity would be concerned with maintaining the proper chain-of-custody?

• Lessons learned coming together
• Prove retention
• Documentation review & update
• Utilizing collected data

Question 138)

In digital forensics, which three (iii) steps are involved in the collection of data? (Select 3)

• Develop a plan to acquire the data

• Verify the integrity of the information

• Learn the information

Question 139)

Which three (3) of the post-obit are considered scripting languages? (Select three)

• Perl

• Bash

• Python

Question 140)

What is the largest number that will be printed during the execution of this Python while loop?

i=0

while (i<10):

 print(i)

 i=i+1

• nine

Question 141)

Activities performed as a part of security intelligence can exist divided into pre-exploit and post-exploit activities. Which two (2) of these are post-exploit activities? (Select ii)

• Get together full situational awareness through advanced security analytics

• Perform forensic investigation

Question 142)

There are many good reasons for maintaining comprehensive backups of disquisitional data. Which aspect of the CIA Triad is most impacted by an organization's fill-in practices?

• Availability

• Integrity

• Authorization

Question 143)

Which phase of DevSecOps would comprise the activities Internal/External testing, Continuous assurance, and Compliance checking?

• Test

• Code & build

• Operate & monitor

• Plan

Question 144)

Which one of the OWASP Top x Application Security Risks would be occur when in that location are no safeguards against a user being allowed to execute HTML or JavaScript in the user's browser that can hijack sessions.

• Cantankerous-site scripting

Question 145)

SIEM license costs are typically calculated based upon which two (two) factors? (Select two)

• Flows per minute (FPM)

• Events per second (EPS)

Question 146)

True or False. If you accept no better place to commencement hunting threats, showtime with a view of the global threat landscape and and then drill downwards to a regional view, industry view and finally a view of the threats specific to your own organization.

• True

Question 147)

True or False. Cloud-based storage or hosting providers are among the top sources of 3rd-party breaches

• True

Question 148)

You are looking very hard on the spider web for the lowest mortgage interest load yous can find and you lot come beyond a rate that is and so low it could not possibly exist true. You bank check out the site to see that the terms are and quickly notice you lot are the victim of a ransomware set on. What was the likely assail vector used by the bad actors?

• Phishing

• Malicious Links

• Software Vulnerabilities

Question 149)

Very provocative articles that come up in news feeds or Google searches are sometimes called "click-allurement". These manufactures often tempt you to link to other sites that tin be infected with malware. What attack vector is used past these click-allurement sites to go you to go to the really bad sites?

• Malicious Links

More New Questions

Question 150)

Which of the post-obit defines a security threat?

• Whatever potential danger capable of exploiting a weakness in a organization
• The likelihood that the weakness in a system volition be exploited
• One example of a weakness existence exploited
• A weakness in a arrangement that could exist exploited by a bad player

Question 151)

Suspicious activity, like IP addresses or ports being scanned sequentially, is a sign of which type of set on?

• A mapping attack
• A denial of service (DoS) assail
• A phishing attack
• An IP spoofing assail

Question 152)

Alice sends a message to Bob that is intercepted by Trudy. Which scenario describes a confidentiality violation?

• Trudy deletes the message without forwarding information technology
• Trudy cannot read it because it is encrypted simply allows it to be delivered to Bob in its original grade
• Trudy changes the message and then forwards it on
• Trudy reads the message

Question 153)

Which regulation contains the security dominion that requires all covered entities to maintain reasonable and appropriate administrative, technical, and physical safeguards for protecting electronic protected health information (e-PHI)?

• PCI-DSS
• ISO27000 series
• HIPAA
• GDPR
• NIST 800-53A

Question 154)

A skillful Endpoint Detection and Response organisation (EDR) should have which iii (3) of these capabilities? (Select 3)

• Automatically quarantine noncompliant endpoints
• Manage encryption keys for each endpoint
• Manage thousands of devices at once
• Deploying devices with network configurations

Question 155)

Which argument nigh encryption is True well-nigh data in apply.

• Data should always be kept encrypted since mod CPUs are fully capable of operating directly on encrypted data

• It is vulnerable to theft and should be decrypted but for the briefest possible fourth dimension while it is being operated on

• Short of orchestrating a retentiveness dump from a system crash, there is no practical way for malware to go at the data beingness processed, then dump logs are your only existent concern

• Data in agile memory registers are not at run a risk of being stolen

Question 156)

For added security you decide to protect your network by conducting both a stateless and stateful inspection of incoming packets. How can this be done?

• This cannot be done The network ambassador must choose to run a given network segment in either stateful or stateless manner, and then select the corresponding firewall type

• Install a single firewall that is capable of conducting both stateless and stateful inspections

• Install a stateful firewall only These avant-garde devices inspect everything a stateless firewall inspects in addition to state related factors

• Yous must install 2 firewalls in series, so all packets laissez passer through the stateless firewall starting time and then the stateless firewall

Question 157)

In IPv4, how many of the 4 octets are used to define the network portion of the address in a Class A network?

• two
• one
• iv
• iii

Question 158)

If you have to rely upon metadata to work with the data at mitt, you are probably working with which type of data?

• Meta-structured data
• Semi-structured data
• Structured data
• Unstructured data

Question 159)

Which 2 (two) forms of discovery must be conducted online? (Select 2)

• Port scanning
• Shoulder surfing
• Social engineering
• Package sniffing

Question 160)

Which Incident Response Squad model describes a squad that runs all incident response activities for a company?

• Distributed
• Key
• Analogous
• Command

Question 161)

Which is the information protection procedure that prevents a suspicious information request from beingness completed?

• Data risk analysis
• Information classification
• Data discovery
• Blocking, masking and quarantining

Question 162)

Which grade of penetration testing allows the testers partial knowledge of the systems they are trying to penetrate in advance of their attack to streamline costs and focus efforts?

• Red Box Testing
• Gray Box Testing
• White Box testing
• Black Box Testing

Question 163)

Which blazon of application attack would include User denies performing an operation, attacker exploits an application without trace, and attacker covers her tracks?

• Auditing and logging
• Authentication
• Authorization
• Input validation

Question 164)

Truthful or False. Thorough reconnaissance is an of import step in developing an effective cyber kill chain.

• True
• Simulated

Question 165)

True or Fake. I of the primary challenges in cyber threat hunting is a lack of useful tools sold by too few vendors.

• True
• Imitation

Question 166)

True or False. A big company has a data alienation involving the theft of employee personnel records but no customer data of whatever kind. Since no external data was involved, the company does not have to report the breach to law enforcement.

• Truthful
• Imitation

Question 167)

Yous are the CEO of a large tech company and have only received an aroused email that looks like it came from one of your biggest customers. The email says your visitor is overbilling the customer and asks that you examine the fastened invoice. You lot do merely discover it blank, so y'all respond politely to the sender asking for more details. You never hear back, but a calendar week later your security squad tells you that your credentials have been used to access and exfiltrate big amounts of visitor financial information. What kind of assail did y'all autumn victim to?

• Equally a phishing set on
• As a whale attack
• A shark assault
• A wing phishing assail

Question 168)

Which of these statements about the PCI-DSS requirements for any company handling, processing or transmitting credit carte du jour data is true?

• Muti-factor authentication is required for all new card holders
• Some form of mobile device management (MDM) must be used on all mobile credit card processing devices
• All employees with straight admission to cardholder data must exist bonded
• Cardholder data must exist encrypted if information technology is sent across open or public networks

Which Incident Response Team model describes a squad that acts as consulting experts to advise local IR teams?

• Control
• Coordinating
• Distributed
• O Cardinal

In a Linux file system, which files are independent in the \bin folder?

• All user binary files, their libraries and headers
• Executable files such as grep and ping
• Configuration files such equally fstab and inittab
• Directories such every bit /habitation and /usr

If a reckoner needs to send a bulletin to a arrangement that is not role of the local network, where does it send the bulletin?

• To the system's domain name
• To the system'southward IP address
• The network'due south DNS server accost
• To the system'due south MAC address
• The network's default gateway accost
• The network'south DHCP server address

Which three (iii) of these statements about the TCP protocol are True? (Select three)

• TCP is faster than UDP
• TCP is connexion-oriented
• TCP packets are reassembled by the receiving system in the order in which they were sent
• TCP is more reliable than UDP

A professor is not allowed to change a student'due south terminal grade afterward she submits it without completing a special class to explain the circumstances that necessitated the change. This additional step supports which aspect of the CIA Triad?

• Authorization
• Integrity
• Confidentiality
• Availability

Which of these is the best definition of a security risk?

• An instance of beingness exposed to losses
• Any potential danger that is associated with the exploitation of a vulnerability
• A weakness in a organisation
• The likelihood of a threat source exploiting a vulnerability

Trudy intercepts a plain text message sent by Alice to Bob, but in no way interferes with its commitment. Which attribute of the CIA Triad was violated?

• Confidentiality
• Integrity
• Availability
• All of the above

What is an advantage symmetric central encryption has over asymmetric primal encryption?

• Symmetric key encryption provides better security confronting Man-in-the-centre attacks than is possible with asymmetric primal encryption
• Symmetric central encryption is faster than disproportionate key encryption
• Symmetric keys can be exchanged more securely than asymmetric keys
• Symmetric key encryption is harder to suspension than disproportionate key encryption

Which type of application attack would include network eavesdropping, dictionary attacks and cookie replays?

• Configuration management
• Authentication
• Authorization
• Exception management

Why should you always wait for common patterns before starting a new security architecture design?

• They can help identify all-time practices
• They can shorten the development lifecycle
• Some document consummate tested solutions
• All of the above

Last Update: 09/12/2021

Warning: Jo Reply Green hai wo correct hai but

Jo Green Nahi hai. Usme se jo ek wrong selection tha usko hata diya hai

Delight Expect I WILL ADD More NEW QUETIONS..

Also if you have Questions with correct reply  Transport me on my Email i will update on my web log..

niyander111@gmail.com

Thank you...

Source: https://niyander.blogspot.com/2021/03/IBM%20Cybersecurity%20Analyst%20Professional%20Certificate%20Assessment%20Exam%20Answers.html

Posted by: coledowasud.blogspot.com

Share this post