QUESTION 1

1. _________ was developed for business-to-business services providers.

Real-time monitoringGray-box testingSAS 70White-box testing

QUESTION 2

1. The SAS 70 standard addresses many of the emerging issues encountered in today's service organizations.
2.  True
3.  False

 

QUESTION 3

1. ________ helps an organization confirm that its risk management program has correctly identified and addressed or reduced risks to the organization.
2. Penetration testingReal-time monitoringAn auditVulnerability testing

 

QUESTION 4

1. Security tests should be run against production networks and systems to the degree possible without impairing system operations.
2.  True
3.  False

QUESTION 5

1. Network mapping is a technique of matching network traffic with rules or signatures based on the appearance of the traffic and its relationship to other packets.
2.  True
3.  False

 

QUESTION 6

1. Security audits help ensure that rules and __________ are up to date, documented, and subject to change control procedures.
2. responsibilitiesmitigation activitiesconfigurationsrecommendations

 

QUESTION 7

1. What is a Security Information and Event Management (SIEM) system?
2. An intrusion detection system that uses pattern matching and stateful matching to compare current traffic with activity patterns (signatures) of known network intrudersAn intrusion detection system that compares current activity with stored profiles of normal (expected) activitySecurity testing based on knowledge of the application's design and source codeSoftware and devices that assist in collecting, storing, and analyzing the contents of log files

 

QUESTION 8

1. If users know they are being audited and change their behavior, an audit will ____________.
2. not be accuratebe more accuratebe poorly plannednot be required

 

QUESTION 9

1. An audit examines the current configuration of a system as a snapshot in time to verify that it complies with a management plan.
2.  True
3.  False

 

QUESTION 10

1. Which of the following is the definition of hardened configuration?
2. Incorrectly identifying abnormal activity as normalThe state of a computer or device in which unnecessary services have been turned off or disabled and running services are protectedUsing tools to determine the layout and services running on an organization's systems and networks

SophiaPretty

(5)

Status NEW Posted 18 Nov 2017 11:11 AM My Price 10.00

-----------  ----------- H-----------ell-----------o S-----------ir/-----------Mad-----------am ----------- Th-----------ank----------- yo-----------u f-----------or -----------you-----------r i-----------nte-----------res-----------t a-----------nd -----------buy-----------ing----------- my----------- po-----------ste-----------d s-----------olu-----------tio-----------n. -----------Ple-----------ase----------- pi-----------ng -----------me -----------on -----------cha-----------t I----------- am----------- on-----------lin-----------e o-----------r i-----------nbo-----------x m-----------e a----------- me-----------ssa-----------ge -----------I w-----------ill----------- be----------- qu-----------ick-----------ly

Not Rated(0)

• Buy Answer