ACAS - 5.3 Course Test Questions with Complete Solutions, Rated A+

What is ACAS? - cORRECT sOLUTION ACAS is a network-based security compliance and assessment capability designed to provide awareness of the security posture and network health of DoD networks. Which of the following best describes the SecurityCenter? - cORRECT sOLUTION The central console that provides continuous asset-based security and compliance monitoring A vulnerability is a weakness or an attack that can compromise your system. - cORRECT sOLUTION False (a vulnerability does not include an attack) The Nessus scanner monitors data at rest, while the PVS monitors data in motion. - cORRECT sOLUTION True PVS detects vulnerabilities based on network traffic instead of actively scanning hosts. - cORRECT sOLUTION True Which ACAS component performs active vulnerability and compliance scanning? - cORRECT sOLUTION Nessus CMRS is a tool to provide DoD component- and enterprise-level situational awareness by quantitatively displaying an organization's security posture. - cORRECT sOLUTION True Select the Task Order for the Implementation of Assured Compliance Assessment Solution (ACAS) for the Enterprise: - cORRECT sOLUTION 13-670 Which page loads by default when you log in to SecurityCenter? Select the best answer. - cORRECT sOLUTION Dashboard Which of the following pages show the date and time of the most recent plugin updates? - cORRECT sOLUTION Plugins, Feeds Which page allows you to set your local time zone? - cORRECT sOLUTION Profile What is an organization? - cORRECT sOLUTION A group of individuals who are responsible for a set of common assets What is a scan zone? - cORRECT sOLUTION A defined static range of IP addresses with an associated Nessus scanner(s) What is the maximum size of a SecurityCenter 5 Repository? - cORRECT sOLUTION 32 GB The IP address(es) you are scanning must be contained in both the definition of the scan zone and the definition of the repository. - cORRECT sOLUTION True What SecurityCenter role is responsible for setting up scan zones? - cORRECT sOLUTION Administrator How can you get your SecurityCenter plugin updates? - cORRECT sOLUTION Automatically, from DISA's plugin server, Manually from the DoD Patch Repository The SecurityCenter Plugins menu displays a list of script files used by Nessus and PVS scanners to collect and interpret vulnerability, compliance, and configuration data. - cORRECT sOLUTION True Which of the following are options you can consider for scanning stand-alone networks? - cORRECT sOLUTION Install both Nessus and SecurityCenter on a Linux Laptop using Kickstart, Install both Nessus and SecurityCenter in virtual machines on a Windows 7 laptop, Detach a Nessus scanner from its SecurityCenter for scanning purposes and then reattach to SecurityCenter to upload scan results