ISACA CSX Fundamentals Certificate Practice Quiz and Answers 2022.

1. To which of the following layers of the Open Systems Interconnect (OSI) model would one map Ethernet? Data Link Network Application Transport (X) 5. Which cybersecurity principle is most important when attempting to trace the source of malicious activity? Availability Integrity Nonrepudiation Confidentiality 6. Which of the following offers the strongest protection for wireless network traffic? Wireless Protected Access 2 (WPA2) Wireless Protected Access-Advanced Encryption Standard (WPA-AES) Wired Equivalent Protection 128-bit (WEP-128) Wireless Protected Access-Temporary Key Integrity Protocol (WPA-TKIP) 7. Outsourcing poses the greatest risk to an organization when it involves: Business support services Technology infrastructure Cybersecurity capabilities Core business functions 8. Risk assessments should be performed: At the start of a program On a regular basis When an asset changes When a vulnerability is discovered 9. Maintaining a high degree of confidence regarding the integrity of evidence requires a(n): Power of attorney Sworn statement Chain of custody Affidavit 10. A firewall that tracks open connection-oriented protocol sessions is said to be: State-sponsored Stateless Stateful Stated 11. During which phase of the system development lifecycle (SDLC) should security first be considered? Planning Analysis Design Implementation 12. A cybersecurity architecture designed around the concept of a perimeter is said to be: Data-centric User-centric Integrated System-centric 13. A passive network hub operates at which layer of the OSI model? Data Link Physical Network Transport 14. Updates in cloud-computing environments can be rolled out quickly because the environment is: Homogeneous Distributed Diversified Secure 15. During which phase of the six-phase incident response model is the root cause determined? Recovery Identification Containment Eradication 16. The attack mechanism directed against a system is commonly called a(n): Exploit Vulnerability Payload Attack Vector 17. Where should an organization's network terminate virtual private network (VPN) tunnels? At an interior router, to reduce network traffic congestion At a dedicated "honey pot" system in the demilitarized zone (DMZ) At the destination system, to prevent loss of confidentiality At the perimeter, to allow for effective internal monitoring 18. In practical applications: Symmetric key encryption is used to securely distribute asymmetric keys Asymmetric key encryption is used to securely obtain symmetric keys Symmetric key encryption is used only for short messages, such as digital signatures Asymmetric key encryption is used in cases where speed is important 19. Which two factors are used to calculate the likelihood of an event? Threat and vulnerability Vulnerability and asset value Asset count and asset value Threat and asset count 20. What is one advantage of a firewall implemented in software over a firewall appliance? Performance Power consumption Flexibility Resiliency 21. A business continuity plan (BCP) is not complete unless it includes: Dedicated resources Detailed procedures Network diagrams Critical processes 22. Under the US-CERT model for incident categorization, a CAT-3 incident refers to which of the following? Improper usage Investigation Denial of service (DoS) Malicious code 23. An interoperability error is what type of vulnerability? Technical Process Emergent Organizational 24. Securing Supervisory Control and Data Acquisition (SCADA) systems can be challenging because they: Operate in specialized environments and often have non-standard design elements Are subject to specialized requirements established for national security systems Support critical infrastructure processes for which any risk of compromise is unacceptable Cannot be replaced due to aging infrastructure and the complexity of included components 25. Virtual systems should be managed using a dedicated virtual local area network (VLAN) because: Network topologies do not always property identify the locations of virtual servers VLAN encryption provides a double layer of protection for virtual system data Insecure protocols could result in a compromise of privileged user credentials Segregation of management traffic and use traffic dramatically improves performance 2. Which of the following interpret requirements and apply them to specific situations? Policies Standards Guidelines Procedures 3. Business continuity plans (BCPs) associated with organizational information systems should be developed primarily on the basis of: Available resources Levels of effort Projected costs Business needs ... 4. A segmented network: Offers defense in depth superior to a concentric-layers model Consists of two or more security zones Maximizes the delay experienced by an attacker Delivers superior performance for internal applications ... ... Questions and Answers 1. Choose three. According to the NIST framework, which of the following are considered key functions necessary for the protection of digital assets? A. Encrypt B. Protect C. Investigate D. Recover E. Identify 2. Which element of an incident response plan involves obtaining and preserving evidence? A. Preparation B. Identification C. Containment D. Eradication 3. To which of the following layers of the Open Systems Interconnect (OSI) model would one map Ethernet? A. Data Link B. Network C. Application D. Transport 4. Which of the following interpret requirements and apply them to specific situations? A. Policies B. Standards C. Guidelines D. Procedures 5. Business continuity plans (BCPs) associated with organizational information systems should be developed primarily on the basis of: A. Available resources B. Levels of effort C. Projected costs D. Business needs 6. A segmented network: A. Offers defense in depth superior to a concentric-layers model B. Consists of two or more security zones C. Maximizes the delay experienced by an attacker D. Delivers superior performance for internal applications 7. Which cybersecurity principle is most important when attempting to trace the source of malicious activity? A. Availability B. Integrity C. Nonrepudiation D. Confidentiality 8. Which of the following offers the strongest protection for wireless network traffic? A. Wireless Protected Access 2 (WPA2) B. Wireless Protected Access-Advanced Encryption Standard (WPA-AES) C. Wired Equivalent Protection 128-bit (WEP-128) D. Wireless Protected Access-Temporary Key Integrity Protocol (WPA-TKIP) 9. Outsourcing poses the greatest risk to an organization when it involves A. Business support services B. Technology infrastructure C. Cybersecurity capabilities D. Core business functions 10. Risk assessments should be performed A. At the start of a program B. On a regular basis C. When an asset changes D. When a vulnerability is discovered 11. Maintaining a high degree of confidence regarding the integrity of evidence requires a(n): A. Power of attorney B. Sworn statement C. Chain of custody D. Affidavit 12. A firewall that tracks open connection-oriented protocol sessions is said to be: A. State-sponsored B. Stateless C. Stateful D. Stated 13. During which phase of the system development lifecycle (SDLC) should security first be considered? A. Planning B. Analysis C. Design D. Implementation 14. A cybersecurity architecture designed around the concept of a perimeter is said to be: A. Data-centric B. User-centric C. Integrated D. System-centric 15. A passive network hub operates at which layer of the OSI model? A. Data Link B. Physical C. Network D. Transport 16. Updates in cloud-computing environments can be rolled out quickly because the environment is: A. Homogeneous B. Distributed C. Diversified D. Secure 17. During which phase of the six-phase incident response model is the root cause determined? A. Recovery B. Identification C. Containment D. Eradication 18. The attack mechanism directed against a system is commonly called a(n): A. Exploit B. Vulnerability C. Payload D. Attack Vector 19. Where should an organization's network terminate virtual private network (VPN) tunnels? Discuss A. At an interior router, to reduce network traffic congestion B. At a dedicated "honey pot" system in the demilitarized zone (DMZ) C. At the destination system, to prevent loss of confidentiality D. At the perimeter, to allow for effective internal monitoring 20. In practical applications: A. Symmetric key encryption is used to securely distribute asymmetric keys B. Asymmetric key encryption is used to securely obtain symmetric keys C. Symmetric key encryption is used only for short messages, such as digital signatures D. Asymmetric key encryption is used in cases where speed is important 21. Which two factors are used to calculate the likelihood of an event? A. Threat and vulnerability B. Vulnerability and asset value C. Asset count and asset value D. Threat and asset count 22. What is one advantage of a firewall implemented in software over a firewall appliance? A. Performance B. Power consumption C. Flexibility D. Resiliency 23. A business continuity plan (BCP) is not complete unless it includes: A. Dedicated resources B. Detailed procedures C. Network diagrams D. Critical processes 24. Under the US-CERT model for incident categorization, a CAT-3 incident refers to which of the following? A. Improper usage B. Investigation C. Denial of service (DoS) D. Malicious code 25. An interoperability error is what type of vulnerability? A. Technical B. Process C. Emergent D. Organizational 26. Securing Supervisory Control and Data Acquisition (SCADA) systems can be challenging because they: A. Operate in specialized environments and often have non-standard design elements B. Are subject to specialized requirements established for national security systems C. Support critical infrastructure processes for which any risk of compromise is unacceptable D. Cannot be replaced due to aging infrastructure and the complexity of included components 27. Virtual systems should be managed using a dedicated virtual local area network (VLAN) because: A. Network topologies do not always property identify the locations of virtual servers B. VLAN encryption provides a double layer of protection for virtual system data C. Insecure protocols could result in a compromise of privileged user credentials D. Segregation of management traffic and use traffic dramatically improves performance 28. Three common controls used to protect the availability of information are: A. Redundancy, backups and access controls. B. Encryption, file permissions and access controls. C. Access controls, logging and digital signatures. D. Hashes, logging and backups. 29. 2. Select all that apply. Governance has several goals, including: A. Ensuring that objectives are achieved. B. Verifying that organizational resources are being used appropriately. C. Directing and monitoring security activities. D. Ascertaining whether risk is being managed properly. E. Providing strategic direction. 30. Which of the following is the best definition for cybersecurity? A. The process by which an organization manages cybersecurity risk to an acceptable level B. The protection of information from unauthorized access or disclosure C. The protection of paper documents, digital and intellectual property, and verbal or visual communications D. Protecting information assets by addressing threats to information that is processed, stored or transported by interworked information systems 31. Which of the following cybersecurity roles is charged with the duty of managing incidents and remediation? A. Board of directors B. Executive committee C. Cybersecurity management D. Cybersecurity practitioners 32. Select three. The chain of custody contains information regarding: Discuss A. Disaster recovery objectives, resources and personnel. B. Who had access to the evidence, in chronological order. C. Labor, union and privacy regulations. D. Proof that the analysis is based on copies identical to the original evidence. E. The procedures followed in working with the evidence. 33. NIST defines a(n) BLANK as a "violation or imminent threat of violation of computer security policies, acceptable use policies, or standard security practices." A. Disaster B. Event C. Threat D. Incident 34. Select all that apply. A business impact analysis (BIA) should identify: A. The circumstances under which a disaster should be declared. B. The estimated probability of the identified threats actually occurring. C. The efficiency and effectiveness of existing risk mitigation controls. D. A list of potential vulnerabilities, dangers and/or threats. E. Which types of data backups (full, incremental and differential) will be used. 35. ____________________ is defined as "a model for enabling convenient, on-demand network access to a shared pool of configurable resources (e.g., networks, servers, storage, applications and services) that can be rapidly provisioned and released with minimal management or service provider interaction." A. Software as a Service (SaaS) B. Cloud computing C. Big data D. Platform as a Service (PaaS) 36. Select all that apply. Which of the following statements about advanced persistent threats (APTs) are true? Discuss A. APTs typically originate from sources such as organized crime groups, activists or governments.