SECURITY + DOMAIN 3 QUESTIONS AND CORRECT ANSWERS

SECURITY + DOMAIN 3 QUESTIONS
AND CORRECT ANSWERS


A systems administrator receives an alert for potential unauthorized access to sensitive d
rr rr rr rr rr rr rr rr rr rr rr rr


ata while in active memory on a server within the organization. The organization has task
rr rr rr rr rr rr rr rr rr rr rr rr rr rr


ed the systems administrator with enforcing stricter controls to prevent such breaches. W
rr rr rr rr rr rr rr rr rr rr rr rr


hat would be the MOST appropriate measure to implement? - ans-Permission restrictions
rr rr rr rr rr rr rr rr rr rr rr




A medium-
rr


sized organization is upgrading its network infrastructure to secure its enterprise infrastru
rr rr rr rr rr rr rr rr rr rr rr


cture by implementing an intrusion prevention system (IPS) and an intrusion detection sy
rr rr rr rr rr rr rr rr rr rr rr rr


stem (IDS). The organization has sensitive data in different security zones, and the IT ma
rr rr rr rr rr rr rr rr rr rr rr rr rr rr


nager has concerns regarding the attack surface and network connectivity. Which of the f
rr rr rr rr rr rr rr rr rr rr rr rr rr


ollowing placements of the IPS/IDS devices would be MOST effective in this scenario? -
rr rr rr rr rr rr rr rr rr rr rr rr rr


ans-Place the IPS/
rr rr rr


IDS devices at the network perimeter to monitor inbound and outbound traffic.
rr rr rr rr rr rr rr rr rr rr rr




A global e-
rr rr


commerce company faces challenges with its legacy monolithic application. The applicati
rr rr rr rr rr rr rr rr rr rr


on is becoming increasingly difficult to maintain due to its intertwined components and str
rr rr rr rr rr rr rr rr rr rr rr rr rr


uggles to scale quickly enough to handle sudden traffic surges during big sales events. T
rr rr rr rr rr rr rr rr rr rr rr rr rr rr


he company has already invested in cloud technology and on-
rr rr rr rr rr rr rr rr rr


premises infrastructure but still faces scalability and manageability issues. What would M
rr rr rr rr rr rr rr rr rr rr rr


OST effectively address these challenges? - ans-Microservices
rr rr rr rr rr rr




A company transmits source code from its headquarters to a partnered third-
rr rr rr rr rr rr rr rr rr rr rr


party contract group via the internet. The network administrator wants to enhance the sec
rr rr rr rr rr rr rr rr rr rr rr rr rr


urity of this code while it is in transit. The selected method converts data into a coded form
rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr


at that can only be accessed with a key and password. Which technique is being used in t
rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr


his scenario? - ans-Encryption
rr rr rr




A company is deploying a software service to monitor traffic and enforce security policies i
rr rr rr rr rr rr rr rr rr rr rr rr rr rr


n its cloud environment. Considering the need for responsiveness, which technology sho
rr rr rr rr rr rr rr rr rr rr rr


uld the company consider using? - ans-Serverless platforms and software-
rr rr rr rr rr rr rr rr rr


defined networking (SDN) rr rr




A small logistics company is contemplating certain steps for its data centers in its quest to
rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr


fortify its systems against long- rr rr rr rr


term power outages. What is the MOST suitable measure the company could undertake?
rr rr rr rr rr rr rr rr rr rr rr rr


- ans-Deploying onsite generators
rr rr rr rr

, The IT department of a healthcare provider maintains a database containing personal he
rr rr rr rr rr rr rr rr rr rr rr rr


alth information for its patients. Which classification BEST suits this type of data? - ans-
rr rr rr rr rr rr rr rr rr rr rr rr rr rr


Regulated

A nonprofit organization with limited funds needs a cost-
rr rr rr rr rr rr rr rr


effective disaster recovery plan that doesn't necessitate immediate resumption of service
rr rr rr rr rr rr rr rr rr rr


s after a disaster. What is significantly less expensive as it focuses solely on providing infr
rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr


astructure until a disaster occurs? - ans-Deploy a cold site rr rr rr rr rr rr rr rr rr




To address the escalating operational costs and complexities stemming from multiple sta
rr rr rr rr rr rr rr rr rr rr rr


ndalone applications, an organization plans to restructure its software deployment proces
rr rr rr rr rr rr rr rr rr rr


s. They want to minimize overhead, increase flexibility in development environments, and
rr rr rr rr rr rr rr rr rr rr rr r


renhance the efficient use of system resources. What approach would be the MOST effect
rr rr rr rr rr rr rr rr rr rr rr rr rr


ive? - ans-Containerization
rr rr




An IT specialist working for a multinational confectionery company needs to fortify its net
rr rr rr rr rr rr rr rr rr rr rr rr rr


work security. The firm has been dealing with intrusions where raw User Datagram Protoc
rr rr rr rr rr rr rr rr rr rr rr rr rr


ol (UDP) messages bypass open ports due to a virus. The specialist will analyze packet d
rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr


ata to verify that the application protocol corresponds to the port. The company also want
rr rr rr rr rr rr rr rr rr rr rr rr rr rr


s to track the state of sessions and prevent fraudulent session initiations. Which of the foll
rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr


owing tools should the IT specialist prioritize deploying? - ans-
rr rr rr rr rr rr rr rr rr


Deep packet inspection firewall rr rr rr




A medium-
rr


sized organization elects to redesign its network security infrastructure. The IT manager i
rr rr rr rr rr rr rr rr rr rr rr rr


s considering implementing a proxy server to enhance security and improve client perfor
rr rr rr rr rr rr rr rr rr rr rr rr


mance. The organization's network includes a virtual private network (VPN) for remote ac
rr rr rr rr rr rr rr rr rr rr rr rr


cess, multiple security zones, and a Unified Threat Management (UTM) system. Which of
rr rr rr rr rr rr rr rr rr rr rr rr r


rthe following is the primary benefit of implementing a proxy server in this scenario? - ans-
rr rr rr rr rr rr rr rr rr rr rr rr rr rr rr


The proxy server can perform application-
rr rr rr rr rr


layer filtering, enhancing network traffic security.
rr rr rr rr rr




A financial organization is currently handling a document that contains sensitive customer
rr rr rr rr rr rr rr rr rr rr rr


information, which is protected by a non-
rr rr rr rr rr rr rr


disclosure agreement. According to data classifications, how should the financial organiz
rr rr rr rr rr rr rr rr rr rr


ation categorize this data? - ans-Confidential data
rr rr rr rr rr rr




A large organization is planning to restructure its network infrastructure to create better se
rr rr rr rr rr rr rr rr rr rr rr rr rr


curity boundaries and enhance control over network traffic as it undergoes expansion wit
rr rr rr rr rr rr rr rr rr rr rr rr


h an increasing number of remote employees. What should the company implement to m
rr rr rr rr rr rr rr rr rr rr rr rr rr


eet these requirements? - ans-Logical segmentation
rr rr rr rr rr




A large organization is redesigning its network infrastructure to increase security and redu
rr rr rr rr rr rr rr rr rr rr rr rr


ce the potential attack surface. The organization considers implementing an Intrusion Pre
rr rr rr rr rr rr rr rr rr rr rr


vention System (IPS) and an Intrusion Detection System (IDS) into its security zones. The
rr rr rr rr rr rr rr rr rr rr rr rr rr