SECURITY+ GUIDE TO NETWORK SECURITY FUNDAMENTALS
SECURITY+ GUIDE TO NETWORK SECURITY FUNDAMENTALS EXAM QUESTIONS AND
ANSWERS GRADED A+!!
Ian recently earned his security certification and has been offered a
promotion to a position that requires him to analyze and design
security solutions as well as identifying users' needs. Which of these
generally recognized security positions has Ian been offered? Answer
>> *a. Security administrator*
b. Security technician
c. Security officer
d. Security manager
Alcona has been asked by her supervisor to give a presentation
regarding reasons why security attacks continue to be successful. She
has decided to focus on the issue of widespread vulnerabilities. Which
of the following would Alcona NOT include in her presentation?
Answer >> a. Large number of vulnerabilities
b. End-of-life systems
c. Lack of vendor support
*d. Misconfigurations*
Tatyana is discussing with her supervisor potential reasons why a
recent attack was successful against one of their systems. Which of the
following configuration issues would NOT covered? Answer >> a.
Default configurations
,SECURITY+ GUIDE TO NETWORK SECURITY FUNDAMENTALS
b. Weak configurations
*c. Vulnerable business processes*
d. Misconfigurations
What is a race condition? Answer >> a. When a vulnerability is
discovered and there is a race to see if it can be patched before it is
exploited by attackers.
*b. When two concurrent threads of execution access a shared
resource simultaneously, resulting in unintended consequences. *
c. When an attack finishes its operation before antivirus can complete
its work.
d. When a software update is distributed prior to a vulnerability being
discovered.
Which the following is NOT a reason why it is difficult to defend against
today's attackers? Answer >> a. Delay in security updating
*b. Greater sophistication of defense tools*
c. Increased speed of attacks
d. Simplicity of attack tools
Which of the following is NOT true regarding security? Answer >> a.
Security is a goal.
b. Security includes the necessary steps to protect from harm.
c. Security is a process.
,SECURITY+ GUIDE TO NETWORK SECURITY FUNDAMENTALS
*d. Security is a war that must be won at all costs. *
Atone is attempting to explain to his friend the relationship between
security and convenience. Which of the following statements would he
use? Answer >> a. "Security and convenience are not related."
b. "Convenience always outweighs security."
*c. "Security and convenience are inversely proportional."*
d. "Whenever security and convenience intersect, security always
wins."
Which of the following ensures that only authorized parties can view
protected information? Answer >> a. Authorization
*b. Confidentiality*
c. Availability
d. Integrity
Which of the following is NOT a successive layer in which information
security is achieved? Answer >> a. Products
b. People
c. Procedures
*d. Purposes*
Complete this definition of information security: That which protects
the integrity, confidentiality, and availability of information _____.
, SECURITY+ GUIDE TO NETWORK SECURITY FUNDAMENTALS
Answer >> a. on electronic digital devices and limited analog devices
that can connect via the Internet or through a local area network.
b. through a long-term process that results in ultimate security.
c. using both open-sourced as well as supplier-sourced hardware and
software that interacts appropriately with limited resources.
*d. through products, people, and procedures on the devices that
store, manipulate, and transmit the information. *
Which of the following is an enterprise critical asset? Answer >> a.
System software
*b. Information*
c. Outsourced computing services
d. Servers, routers, and power supplies
Gunnar is creating a document that explains risk response techniques.
Which of the following would he NOT list and explain in his document?
Answer >> *a. Extinguish risk*
b. Transfer risk
c. Mitigate risk
d. Avoid risk
Which act requires banks and financial institutions to alert their
customers of their policies in disclosing customer information? Answer
>> a. Sarbanes-Oxley Act (Soapbox)
SECURITY+ GUIDE TO NETWORK SECURITY FUNDAMENTALS EXAM QUESTIONS AND
ANSWERS GRADED A+!!
Ian recently earned his security certification and has been offered a
promotion to a position that requires him to analyze and design
security solutions as well as identifying users' needs. Which of these
generally recognized security positions has Ian been offered? Answer
>> *a. Security administrator*
b. Security technician
c. Security officer
d. Security manager
Alcona has been asked by her supervisor to give a presentation
regarding reasons why security attacks continue to be successful. She
has decided to focus on the issue of widespread vulnerabilities. Which
of the following would Alcona NOT include in her presentation?
Answer >> a. Large number of vulnerabilities
b. End-of-life systems
c. Lack of vendor support
*d. Misconfigurations*
Tatyana is discussing with her supervisor potential reasons why a
recent attack was successful against one of their systems. Which of the
following configuration issues would NOT covered? Answer >> a.
Default configurations
,SECURITY+ GUIDE TO NETWORK SECURITY FUNDAMENTALS
b. Weak configurations
*c. Vulnerable business processes*
d. Misconfigurations
What is a race condition? Answer >> a. When a vulnerability is
discovered and there is a race to see if it can be patched before it is
exploited by attackers.
*b. When two concurrent threads of execution access a shared
resource simultaneously, resulting in unintended consequences. *
c. When an attack finishes its operation before antivirus can complete
its work.
d. When a software update is distributed prior to a vulnerability being
discovered.
Which the following is NOT a reason why it is difficult to defend against
today's attackers? Answer >> a. Delay in security updating
*b. Greater sophistication of defense tools*
c. Increased speed of attacks
d. Simplicity of attack tools
Which of the following is NOT true regarding security? Answer >> a.
Security is a goal.
b. Security includes the necessary steps to protect from harm.
c. Security is a process.
,SECURITY+ GUIDE TO NETWORK SECURITY FUNDAMENTALS
*d. Security is a war that must be won at all costs. *
Atone is attempting to explain to his friend the relationship between
security and convenience. Which of the following statements would he
use? Answer >> a. "Security and convenience are not related."
b. "Convenience always outweighs security."
*c. "Security and convenience are inversely proportional."*
d. "Whenever security and convenience intersect, security always
wins."
Which of the following ensures that only authorized parties can view
protected information? Answer >> a. Authorization
*b. Confidentiality*
c. Availability
d. Integrity
Which of the following is NOT a successive layer in which information
security is achieved? Answer >> a. Products
b. People
c. Procedures
*d. Purposes*
Complete this definition of information security: That which protects
the integrity, confidentiality, and availability of information _____.
, SECURITY+ GUIDE TO NETWORK SECURITY FUNDAMENTALS
Answer >> a. on electronic digital devices and limited analog devices
that can connect via the Internet or through a local area network.
b. through a long-term process that results in ultimate security.
c. using both open-sourced as well as supplier-sourced hardware and
software that interacts appropriately with limited resources.
*d. through products, people, and procedures on the devices that
store, manipulate, and transmit the information. *
Which of the following is an enterprise critical asset? Answer >> a.
System software
*b. Information*
c. Outsourced computing services
d. Servers, routers, and power supplies
Gunnar is creating a document that explains risk response techniques.
Which of the following would he NOT list and explain in his document?
Answer >> *a. Extinguish risk*
b. Transfer risk
c. Mitigate risk
d. Avoid risk
Which act requires banks and financial institutions to alert their
customers of their policies in disclosing customer information? Answer
>> a. Sarbanes-Oxley Act (Soapbox)
