CYBERSECURITY
CYBERSECURITY EXAM QUESTIONS WITH CORRECT
ANSWERS.
Containment, Eradication, and Recovery Answer >>>>> reports the cause and cost
of the incident and the steps to prevent future incidents in cyber security
Detection and Analysis Answer >>>>> mitigates the impact of an incident
Post-Incident Activity Answer >>>>> Evaluates incident indicators to determine
whether they are legitimate attacks and alerts the organization of the incidents
Preparation Answer >>>>> Establishes an incident response capability to ensure
that organizational assets are sufficiently secure
You have an ACL configured for inbound traffic.
Which type of entry should you add to the ACL to prevent spoofing of the internal
network? Answer >>>>> An entry to block traffic from private address spaces
A cybersecurity analyst is investigating an unknown executable file discovered on
a Linux desktop computer. The analyst enters the Is -I command in the terminal.
What is the purpose of the command? Answer >>>>> to display the file
permissions and file ownership
You need to transfer configuration files to a router across an unsecured network.
Which protocol should you use to encrypt the files in transit? Answer >>>>> SSH
, CYBERSECURITY
Vulnerability Management Process Diagram Answer >>>>> Discover - Nap, Nessus
Scanner
Prioritize - CVSS
Remediate - Windows Auto Update, Patch Management Software
Your organization's SIEM system alerts you that users are connecting to an
unusual URL. you need to determine whether the URL is malicious and what type
of threat it represents. What should you do? Answer >>>>> Submit the URL to a
threat intelligence portal for analysis
Which activity is an example of active reconnaissance performed during a
penetration test? Answer >>>>> Performing a Nap port scan
Customers of an online shopping store are complaining that they cannot visit the
website. The website keeps crashing. What type of cybersecurity threat should
you investigate? Answer >>>>> Denial of Service
You are working with the senior administration to learn to identify which risks are
acceptable. Which phase of risk management are you in? Answer >>>>>
measuring residual risk
A security analyst discovers that a hacker was able to gain root access to an
enterprise Linux server. The hacker accessed the server as a guest, used a
program to bypass the root password, and then killed essential server processes
as the root user. Which type of endpoint attack is this? Answer >>>>> privilege
escalation
You are reviewing company remote access procedures and notice that telnet is
being used to connect to the corporate database server to check on inventory
CYBERSECURITY EXAM QUESTIONS WITH CORRECT
ANSWERS.
Containment, Eradication, and Recovery Answer >>>>> reports the cause and cost
of the incident and the steps to prevent future incidents in cyber security
Detection and Analysis Answer >>>>> mitigates the impact of an incident
Post-Incident Activity Answer >>>>> Evaluates incident indicators to determine
whether they are legitimate attacks and alerts the organization of the incidents
Preparation Answer >>>>> Establishes an incident response capability to ensure
that organizational assets are sufficiently secure
You have an ACL configured for inbound traffic.
Which type of entry should you add to the ACL to prevent spoofing of the internal
network? Answer >>>>> An entry to block traffic from private address spaces
A cybersecurity analyst is investigating an unknown executable file discovered on
a Linux desktop computer. The analyst enters the Is -I command in the terminal.
What is the purpose of the command? Answer >>>>> to display the file
permissions and file ownership
You need to transfer configuration files to a router across an unsecured network.
Which protocol should you use to encrypt the files in transit? Answer >>>>> SSH
, CYBERSECURITY
Vulnerability Management Process Diagram Answer >>>>> Discover - Nap, Nessus
Scanner
Prioritize - CVSS
Remediate - Windows Auto Update, Patch Management Software
Your organization's SIEM system alerts you that users are connecting to an
unusual URL. you need to determine whether the URL is malicious and what type
of threat it represents. What should you do? Answer >>>>> Submit the URL to a
threat intelligence portal for analysis
Which activity is an example of active reconnaissance performed during a
penetration test? Answer >>>>> Performing a Nap port scan
Customers of an online shopping store are complaining that they cannot visit the
website. The website keeps crashing. What type of cybersecurity threat should
you investigate? Answer >>>>> Denial of Service
You are working with the senior administration to learn to identify which risks are
acceptable. Which phase of risk management are you in? Answer >>>>>
measuring residual risk
A security analyst discovers that a hacker was able to gain root access to an
enterprise Linux server. The hacker accessed the server as a guest, used a
program to bypass the root password, and then killed essential server processes
as the root user. Which type of endpoint attack is this? Answer >>>>> privilege
escalation
You are reviewing company remote access procedures and notice that telnet is
being used to connect to the corporate database server to check on inventory
