QUALYS PATCH MANAGEMENT 2026
CERTIFICATION PREPARATION WORKBOOK IT
SECURITY OPERATIONS MOCK TEST ITEMS
COMPLETE SOLUTIONS
◉ What is the role of disk encryption? Answer: It is essential for
securing data at rest within persistent storage.
◉ Why do workstations have a larger attack surface than other
devices? Answer: Because they perform varied tasks and run
numerous applications.
◉ What are two user-focused security strategies for workstations?
Answer: Regular training and awareness activities regarding threats
like phishing.
◉ How can peripheral devices like USB ports be secured on
workstations? Answer: By using endpoint protection software
features and strict device control policies.
◉ Why is network segmentation important for workstations?
Answer: To restrict communications and limit the propagation of
malware or attackers.
,◉ What is the benefit of automating endpoint protection
deployments? Answer: It saves time, improves consistency, and
reduces the risk of human error.
◉ What is the purpose of centralized management for endpoint
protection? Answer: To provide a comprehensive view of
configurations and enforce global security policies.
◉ What is the function of an automated vulnerability scanner?
Answer: To discover missing patches for the OS, third-party
software, and firmware.
◉ How are patches typically handled in residential networks?
Answer: Hosts are usually configured to check for and install patches
automatically.
◉ What is a potential issue with having multiple applications
running their own update clients? Answer: It can lead to
performance and management issues on the same host.
◉ What is a baseline in device hardening? Answer: A standard set of
guidelines or checklists for configuring devices securely.
,◉ What is the main risk of over-hardening a system? Answer: It can
negatively impact the functionality and usability of applications.
◉ What should an intrusion detection system do regarding
nonstandard network data? Answer: Detect data that does not
conform to the expected protocol format.
◉ What is a key consideration when creating an endpoint protection
deployment plan? Answer: Determining the deployment order and
using stages to limit potential disruptions.
◉ What are the four classifications of patches mentioned? Answer:
Critical, security-critical, recommended, and optional.
◉ What is the primary benefit of using an enterprise patch
management suite? Answer: It mitigates performance and
management issues caused by multiple applications running
individual update clients on the same host.
◉ Why is testing patches before deployment critical? Answer: To
ensure stability, identify conflicts, prevent new vulnerabilities, and
avoid disrupting critical operations.
, ◉ What is the recommended approach for creating a testing
environment? Answer: Building an environment that mirrors the
production environment as much as appropriate.
◉ What should be done for legacy or IoT systems that cannot be
easily patched? Answer: Implement compensating controls or other
forms of risk mitigation.
◉ What is the purpose of access control? Answer: To regulate and
manage permissions granted to individuals, software, systems, and
networks to access resources.
◉ What are Access Control Lists (ACLs) used for in networks?
Answer: To filter or forward network traffic based on criteria like
source/destination IP addresses, ports, or protocols.
◉ What does an Access Control Entry (ACE) typically contain?
Answer: A user or group identifier and associated permissions for
specific actions.
◉ What is the main risk associated with managing complex ACLs?
Answer: Increased risk of misconfigurations.
CERTIFICATION PREPARATION WORKBOOK IT
SECURITY OPERATIONS MOCK TEST ITEMS
COMPLETE SOLUTIONS
◉ What is the role of disk encryption? Answer: It is essential for
securing data at rest within persistent storage.
◉ Why do workstations have a larger attack surface than other
devices? Answer: Because they perform varied tasks and run
numerous applications.
◉ What are two user-focused security strategies for workstations?
Answer: Regular training and awareness activities regarding threats
like phishing.
◉ How can peripheral devices like USB ports be secured on
workstations? Answer: By using endpoint protection software
features and strict device control policies.
◉ Why is network segmentation important for workstations?
Answer: To restrict communications and limit the propagation of
malware or attackers.
,◉ What is the benefit of automating endpoint protection
deployments? Answer: It saves time, improves consistency, and
reduces the risk of human error.
◉ What is the purpose of centralized management for endpoint
protection? Answer: To provide a comprehensive view of
configurations and enforce global security policies.
◉ What is the function of an automated vulnerability scanner?
Answer: To discover missing patches for the OS, third-party
software, and firmware.
◉ How are patches typically handled in residential networks?
Answer: Hosts are usually configured to check for and install patches
automatically.
◉ What is a potential issue with having multiple applications
running their own update clients? Answer: It can lead to
performance and management issues on the same host.
◉ What is a baseline in device hardening? Answer: A standard set of
guidelines or checklists for configuring devices securely.
,◉ What is the main risk of over-hardening a system? Answer: It can
negatively impact the functionality and usability of applications.
◉ What should an intrusion detection system do regarding
nonstandard network data? Answer: Detect data that does not
conform to the expected protocol format.
◉ What is a key consideration when creating an endpoint protection
deployment plan? Answer: Determining the deployment order and
using stages to limit potential disruptions.
◉ What are the four classifications of patches mentioned? Answer:
Critical, security-critical, recommended, and optional.
◉ What is the primary benefit of using an enterprise patch
management suite? Answer: It mitigates performance and
management issues caused by multiple applications running
individual update clients on the same host.
◉ Why is testing patches before deployment critical? Answer: To
ensure stability, identify conflicts, prevent new vulnerabilities, and
avoid disrupting critical operations.
, ◉ What is the recommended approach for creating a testing
environment? Answer: Building an environment that mirrors the
production environment as much as appropriate.
◉ What should be done for legacy or IoT systems that cannot be
easily patched? Answer: Implement compensating controls or other
forms of risk mitigation.
◉ What is the purpose of access control? Answer: To regulate and
manage permissions granted to individuals, software, systems, and
networks to access resources.
◉ What are Access Control Lists (ACLs) used for in networks?
Answer: To filter or forward network traffic based on criteria like
source/destination IP addresses, ports, or protocols.
◉ What does an Access Control Entry (ACE) typically contain?
Answer: A user or group identifier and associated permissions for
specific actions.
◉ What is the main risk associated with managing complex ACLs?
Answer: Increased risk of misconfigurations.
