Q131. What should be the INITIAL response to Intrusion Detection System/Intrusion Prevention System (IDS/IPS) alerts? 

A. Ensure that the Incident Response Plan is available and current. 

B. Determine the traffic's initial source and block the appropriate port. 

C. Disable or disconnect suspected target and source systems. 

D. Verify the threat and determine the scope of the attack. 

Answer:


Q132. Which of the following defines the key exchange for Internet Protocol Security (IPSec)? 

A. Secure Sockets Layer (SSL) key exchange 

B. Internet Key Exchange (IKE) 

C. Security Key Exchange (SKE) 

D. Internet Control Message Protocol (ICMP) 

Answer:


Q133. Which of the following MOST influences the design of the organization's electronic monitoring policies? 

A. Workplace privacy laws 

B. Level of organizational trust 

C. Results of background checks 

D. Business ethical considerations 

Answer:


Q134. An organization has hired a security services firm to conduct a penetration test. Which of the following will the organization provide to the tester? 

A. Limits and scope of the testing. 

B. Physical location of server room and wiring closet. 

C. Logical location of filters and concentrators. 

D. Employee directory and organizational chart. 

Answer:


Q135. When using third-party software developers, which of the following is the MOST effective method of providing software development Quality Assurance (QA)? 

A. Retain intellectual property rights through contractual wording. 

B. Perform overlapping code reviews by both parties. 

C. Verify that the contractors attend development planning meetings. 

D. Create a separate contractor development environment. 

Answer:


Q136. Which of the following wraps the decryption key of a full disk encryption implementation and ties the hard disk drive to a particular device? 

A. Trusted Platform Module (TPM) 

B. Preboot eXecution Environment (PXE) 

C. Key Distribution Center (KDC) 

D. Simple Key-Management for Internet Protocol (SKIP) 

Answer:


Q137. Which of the following is an effective method for avoiding magnetic media data 

remanence? 

A. Degaussing 

B. Encryption 

C. Data Loss Prevention (DLP) 

D. Authentication 

Answer:


Q138. The PRIMARY outcome of a certification process is that it provides documented 

A. system weaknesses for remediation. 

B. standards for security assessment, testing, and process evaluation. 

C. interconnected systems and their implemented security controls. 

D. security analyses needed to make a risk-based decision. 

Answer:


Q139. Which of the following provides effective management assurance for a Wireless Local Area Network (WLAN)? 

A. Maintaining an inventory of authorized Access Points (AP) and connecting devices B. Setting the radio frequency to the minimum range required 

C. Establishing a Virtual Private Network (VPN) tunnel between the WLAN client device and a VPN concentrator 

D. Verifying that all default passwords have been changed 

Answer:


Q140. Which of the following could elicit a.Denial of.Service (DoS).attack against a credential management system? 

A. Delayed revocation or destruction of credentials 

B. Modification of Certificate Revocation List 

C. Unauthorized renewal or re-issuance 

D. Token use after decommissioning 

Answer: