Practice Test Questions

21 Jul

Posted at 13:38h in Practice Test Questions by

Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies. Fred would like to implement a new security platform that can coordinate access policies across the many cloud providers used by his organization. What technology would best meet his needs? A. CASB B. SIEM C. NGEP D. NGFW Correct Answer: A Cloud access security brokers (CASB) are designed to coordinate security policy enforcement across the cloud providers used by an organization. This is the correct answer. Security information and event management (SIEM) solutions are designed to monitor and correlate activity across security devices. So, this is not the correct answer. Next-generation endpoint protection (NGEP) and next generation firewall (NGFW) technologies are an important part of evolving cybersecurity programs but they do not directly interact with cloud providers. So these are not the correct answers.   Interested in more practice test questions?   Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test! ...

23 Jun

Posted at 11:38h in Practice Test Questions by

Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies. Greg is operating a web application that processes credit cards and determines that it is subject to a SQL injection vulnerability. He is unable to fix the vulnerability immediately because developers must create a patch that will take several weeks. The application is business critical and must remain running in the meantime. Which one of the following would serve as the best compensating control? A. Web Application Firewall B. Data Loss Prevention System C. Intrusion Detection System D. Privileged Access Management System Correct Answer: A A web application firewall would be able to identify inbound traffic containing attempted injection attacks and stop that traffic from reaching the web server. It is the best compensating control in this situation. A data loss prevention system may notice exfiltration of sensitive data and block it, but this would only trigger after a successful attack, so this is not as good of an option as a web application firewall. An intrusion detection system would simply report the attack, not stop it, and a privileged access management system would not help in this situation.   Interested in more practice test questions?   Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test! ...

23 Jun

Posted at 11:31h in Practice Test Questions by

Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies. Bijan is configuring an automated data transfer between two servers and is choosing an authentication technique for one server to connect to the other. What approach would be best-suited for this scenario? A. Biometric Authentication B. Smart Card Authentication C. SSH Key D. Hard Coded Password Correct Answer: C Biometrics and smart cards require the administrator to intervene by either submitting to biometric or manipulating a smart card. This question asked about automated transfers, so those techniques are not appropriate. The use of an SSH key can automate the connection between these two systems without requiring human intervention, making it the correct answer. Passwords should not be hard-coded in applications to prevent theft. So they’re not appropriate here either.   Interested in more practice test questions?   Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test! ...