SECURITY + 701 EXAMS FROM
DION 2025 QUESTIONS WITH
ANSWERS (VERIFIED ANSWERS)
ALREADY VERIFIED BY EXERTS
Archiving - CORRECT ANSWER>>>>Archiving in the context of security is
essential for maintaining a record of all system logs. -historical data. (SO)
Code signing - CORRECT ANSWER>>>>Uses digital signatures to provide an
assurance that the software code has not been modified after it was submitted
by the developer. (SO)
Which of the following vulnerabilities is unique to cloud computing environments,
posing risks related to unauthorized access and data manipulation? - CORRECT
ANSWER>>>>Insecure Interfaces and APIs. (TVM)
National legal implications - CORRECT ANSWER>>>>are laws and regulations
set at the country level that outline the requirements and boundaries for data
protection and privacy. (SPMO)
decentralized governance - CORRECT ANSWER>>>>decision-making is
distributed among various departments or sectors, promoting responsiveness
and specialization. (SPMO)
Key risk indicators - CORRECT ANSWER>>>>KRIs are metrics that provide
early warnings of increasing risk exposures, enabling organizations'
leadership to manage these risks proactively. (SPMO)
Monitoring - CORRECT ANSWER>>>>the continuous observation and
checking of system or network operations, often involves tools like Nagios or
Splunk to ensure its functionality and security. (TVM)
Host-based firewall - CORRECT ANSWER>>>>is a hardening technique that
can help protect a system or device from unauthorized or malicious network
traffic. (TVM)
,Time-of-check (TOC) - CORRECT ANSWER>>>>Type of race condition
where an attacker can alter a system resource after an application checks its
state but before the operation is performed (TVM)
Sanitization - CORRECT ANSWER>>>>involves the process of permanently
erasing or de-identifying data on a device so it cannot be recovered. (SO)
Destruction - CORRECT ANSWER>>>>involves physical destruction of the
asset itself. (SO)
Confidentiality with Public Key - CORRECT ANSWER>>>>Encrypt data using
the receiver's public key. Only the recipient with the corresponding private
key can decrypt it. (GSC)
Installation of endpoint - CORRECT ANSWER>>>>protection includes
installing antivirus, anti-malware, and firewall software on systems or devices.
This software helps protect systems and devices from known vulnerabilities.
(TVM)
Centralized governance - CORRECT ANSWER>>>>involves decision-making
authority concentrated in a single authority or department within an
organization (SPMO)
Board governance - CORRECT ANSWER>>>>typically refers to the governing
body of an organization, composed of members who represent various
stakeholders (SPMO)
Committee governance - CORRECT ANSWER>>>>involves decision-making
authority vested in committees, which are groups of individuals formed to
address specific tasks or issues within the organization. (SPMO)
Key exchange - CORRECT ANSWER>>>>is a process in which two
communicating parties establish a shared secret key, typically used for
symmetric encryption. (GSC)
Session Management - CORRECT ANSWER>>>>Enables web applications to
uniquely identify a user across a number of different actions and requests,
while keeping the state of the data generated by the user and ensuring it is
assigned to that user. (SPMO)
, Agent based Network Access Control use additional software to authenticate users,
- CORRECT ANSWER>>>>while Agentless NACs use network level protocols
to authenticate users. (SO)
Signature-based detection - CORRECT ANSWER>>>>relies on a database of
known threat patterns. Therefore, it might not recognize or stop new threats
or zero-day exploits because their signatures aren't in the database yet. (SO)
Infrastructure as code (IaC) - CORRECT ANSWER>>>>A provisioning
architecture in which deployment of resources is performed by scripted
automation and orchestration. (SA)
Directory Traversal Attack - CORRECT ANSWER>>>>an attack that involves
navigating to other directories an gaining access to files and directories that
would otherwise be restricted. (TVM)
Enforcement of Baselines - CORRECT ANSWER>>>>is about maintaining a
standard, secure configuration across all systems. This standardization is
crucial for efficient automation, as it ensures all systems are at a known,
secure state. This reduces the risk of security incidents as it minimizes
configuration drift and variance, which can create security vulnerabilities.
(SO)
Inline devices - CORRECT ANSWER>>>>are designed to interact with
network traffic actively and can take actions such as accepting, rejecting, or
modifying packets, making them the optimal choice for this scenario (SA)
Secure Access Service Edge (SASE) - CORRECT ANSWER>>>>A networking
and security architecture that provides secure access to cloud applications and
services while reducing complexity. It combines security services like
firewalls, identity and access management, and secure web gateway with
networking services such as SD-WAN.
Risk Assessment - CORRECT ANSWER>>>>are a managerial security control
that involves regularly evaluating the threats to systems and networks. This
can help the company identify potential threats and take steps to mitigate
them. (GSC)
Supply Chain Attacks - CORRECT ANSWER>>>>An attack that targets a
weaker link in the supply chain to gain access to a primary target
DION 2025 QUESTIONS WITH
ANSWERS (VERIFIED ANSWERS)
ALREADY VERIFIED BY EXERTS
Archiving - CORRECT ANSWER>>>>Archiving in the context of security is
essential for maintaining a record of all system logs. -historical data. (SO)
Code signing - CORRECT ANSWER>>>>Uses digital signatures to provide an
assurance that the software code has not been modified after it was submitted
by the developer. (SO)
Which of the following vulnerabilities is unique to cloud computing environments,
posing risks related to unauthorized access and data manipulation? - CORRECT
ANSWER>>>>Insecure Interfaces and APIs. (TVM)
National legal implications - CORRECT ANSWER>>>>are laws and regulations
set at the country level that outline the requirements and boundaries for data
protection and privacy. (SPMO)
decentralized governance - CORRECT ANSWER>>>>decision-making is
distributed among various departments or sectors, promoting responsiveness
and specialization. (SPMO)
Key risk indicators - CORRECT ANSWER>>>>KRIs are metrics that provide
early warnings of increasing risk exposures, enabling organizations'
leadership to manage these risks proactively. (SPMO)
Monitoring - CORRECT ANSWER>>>>the continuous observation and
checking of system or network operations, often involves tools like Nagios or
Splunk to ensure its functionality and security. (TVM)
Host-based firewall - CORRECT ANSWER>>>>is a hardening technique that
can help protect a system or device from unauthorized or malicious network
traffic. (TVM)
,Time-of-check (TOC) - CORRECT ANSWER>>>>Type of race condition
where an attacker can alter a system resource after an application checks its
state but before the operation is performed (TVM)
Sanitization - CORRECT ANSWER>>>>involves the process of permanently
erasing or de-identifying data on a device so it cannot be recovered. (SO)
Destruction - CORRECT ANSWER>>>>involves physical destruction of the
asset itself. (SO)
Confidentiality with Public Key - CORRECT ANSWER>>>>Encrypt data using
the receiver's public key. Only the recipient with the corresponding private
key can decrypt it. (GSC)
Installation of endpoint - CORRECT ANSWER>>>>protection includes
installing antivirus, anti-malware, and firewall software on systems or devices.
This software helps protect systems and devices from known vulnerabilities.
(TVM)
Centralized governance - CORRECT ANSWER>>>>involves decision-making
authority concentrated in a single authority or department within an
organization (SPMO)
Board governance - CORRECT ANSWER>>>>typically refers to the governing
body of an organization, composed of members who represent various
stakeholders (SPMO)
Committee governance - CORRECT ANSWER>>>>involves decision-making
authority vested in committees, which are groups of individuals formed to
address specific tasks or issues within the organization. (SPMO)
Key exchange - CORRECT ANSWER>>>>is a process in which two
communicating parties establish a shared secret key, typically used for
symmetric encryption. (GSC)
Session Management - CORRECT ANSWER>>>>Enables web applications to
uniquely identify a user across a number of different actions and requests,
while keeping the state of the data generated by the user and ensuring it is
assigned to that user. (SPMO)
, Agent based Network Access Control use additional software to authenticate users,
- CORRECT ANSWER>>>>while Agentless NACs use network level protocols
to authenticate users. (SO)
Signature-based detection - CORRECT ANSWER>>>>relies on a database of
known threat patterns. Therefore, it might not recognize or stop new threats
or zero-day exploits because their signatures aren't in the database yet. (SO)
Infrastructure as code (IaC) - CORRECT ANSWER>>>>A provisioning
architecture in which deployment of resources is performed by scripted
automation and orchestration. (SA)
Directory Traversal Attack - CORRECT ANSWER>>>>an attack that involves
navigating to other directories an gaining access to files and directories that
would otherwise be restricted. (TVM)
Enforcement of Baselines - CORRECT ANSWER>>>>is about maintaining a
standard, secure configuration across all systems. This standardization is
crucial for efficient automation, as it ensures all systems are at a known,
secure state. This reduces the risk of security incidents as it minimizes
configuration drift and variance, which can create security vulnerabilities.
(SO)
Inline devices - CORRECT ANSWER>>>>are designed to interact with
network traffic actively and can take actions such as accepting, rejecting, or
modifying packets, making them the optimal choice for this scenario (SA)
Secure Access Service Edge (SASE) - CORRECT ANSWER>>>>A networking
and security architecture that provides secure access to cloud applications and
services while reducing complexity. It combines security services like
firewalls, identity and access management, and secure web gateway with
networking services such as SD-WAN.
Risk Assessment - CORRECT ANSWER>>>>are a managerial security control
that involves regularly evaluating the threats to systems and networks. This
can help the company identify potential threats and take steps to mitigate
them. (GSC)
Supply Chain Attacks - CORRECT ANSWER>>>>An attack that targets a
weaker link in the supply chain to gain access to a primary target
