C795 Cybersecurity Management II – Tactical UPDATED ACTUAL Questions and CORRECT Answers
2 views 0 purchase
Course
C795 Cybersecurity Management II – Tactical
Institution
C795 Cybersecurity Management II – Tactical
C795 Cybersecurity Management II –
Tactical UPDATED ACTUAL Questions
and CORRECT Answers
As an IT security professional, you have just been hired by a multisite automotive dealership
to protect and manage its computer network. What is your first task in establishing a secure
defense system...
C795 Cybersecurity Management II –
Tactical UPDATED ACTUAL Questions
and CORRECT Answers
As an IT security professional, you have just been hired by a multisite automotive dealership
to protect and manage its computer network. What is your first task in establishing a secure
defense system for the company?This task contains the radio buttons and checkboxes for
options. The shortcut keys to perform this task are A to H and alt+1 to alt+9.
A
Hire a system security vendor.
B
Perform a full vulnerability assessment.
C
Perform an asset inventory and classification audit.
D
Document all users on the corporate domain. - CORRECT ANSWER- ✔✔Answer C is
correct.
A security administrator has to have a complete inventory of systems and equipment
connected to the corporate network. Once this information is complete and accurate, a
security professional can begin mapping vulnerabilities to the known systems.
Which characteristic most accurately describes a zero-day exploit vulnerability?This task
contains the radio buttons and checkboxes for options. The shortcut keys to perform this task
are A to H and alt+1 to alt+9.
A
It is only known to hackers and a few security professionals.
B
,It is only known to the hacker.
C
It was a major concern in the late 1990s, but current technology has eliminated them.
D
It is widely known, but ineffective and only used occasionally. - CORRECT ANSWER-
✔✔Explanation: Answer B is correct.
A zero-day exploit is a flaw in an operating system or program code that is discovered by a
threat actor with the intention of exploiting the vulnerability before authors of the code can
patch or rewrite the code to eliminate the vulnerability.
CVE - CORRECT ANSWER- ✔✔MITRE Corporation
National Vulnerability Database (NVD) - CORRECT ANSWER- ✔✔National Institute of
Standards and Technology's (NIST) Computer Security Division, these days the NVD is
brought to you by your friends at the Department of Homeland Security's National
Cybersecurity Division. According to them
Which organizations provide vulnerability-mapping services, tools, or resources that can be
accessed for free?This task contains the radio buttons and checkboxes for options. The
shortcut keys to perform this task are A to H and alt+1 to alt+9.
A
AARP
B
OWASP
C
NIST
, D
ACLU
E
MITRE - CORRECT ANSWER- ✔✔Explanation: Answers B, C, and E are correct.
The Open Web Application Security Project (OWASP), National Institute of Standards and
Technology (NIST), and MITRE Corporation all provide free vulnerability-mapping services,
tools, or resources.
One of the main purposes of a cybersecurity professional is to help a company establish its
security requirements. Which critical components of an application risk assessment
accomplish this objective? Select all that apply.This task contains the radio buttons and
checkboxes for options. The shortcut keys to perform this task are A to H and alt+1 to alt+9.
A
Understanding the application type
B
Determining the users
C
Establishing the criticality to business
D
Setting the application life-cycle
E
Classifying the information processed - CORRECT ANSWER- ✔✔Explanation: Answers A,
C, and E are correct.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller MGRADES. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $10.49. You're not tied to anything after your purchase.
