A cross-site request forgery vulnerability exploited a web application that was hosted in a public laaS network.
A security engineer determined that deploying a WAF in blocking mode at a CDN would prevent the application from being exploited again. However, a week after implementing the WAF, the application was exploited again. Which of the following should the security engineer do to make the WAF control effective?

• A.Configure the DDoS protection on the CDN.
• B.Install endpoint protection software on the VMs
• C.Add an ACL to the VM subnet.
• D.Deploy an IDS on the laaS network.

Comment: *

Name: *

Email: *

Verification: *

A security analyst reviews the daily logs and notices the following suspicious activity:

The analyst investigates the firewall logs and identities the following:

Which of the following steps should the security analyst take next to resolve this issue? (Choose two.)

• A.Submit an IT support ticket and request Kali Linux be uninstalled from John Smith's computer
• B.Block all inbound connections on port 4444 and block the IP address 201.101.25.121.
• C.Contact John Smith and request the Ethernet cable attached to the desktop be unplugged
• D.Check the running processes to confirm if a backdoor connection has been established.
• E.Upgrade the Windows x64 operating system on John Smith's computer to the latest version.
• F.Block all outbound connections from the IP address 10.150.71.151.

Comment: *

Name: *

Email: *

Verification: *

Once a year, a company's private cloud experiences increased activity. The company has a disaster recovery site that is hosted in a public cloud. To avoid investment in additional hardware, which of the following actions would BEST address this issue?

• A.Configure cloud bursting to spin up new VMs automatically and terminate them when usage is back to normal.
• B.Activate the disaster recovery site, and deactivate it when usage is back to normal.
• C.Create a new backup site and decommission it when usage is back to normal.
• D.Manually add memory and CPU to existing VMs, and remove them when usage is back to normal.

Comment: *

Name: *

Email: *

Verification: *

A system surpasses 75% to 80% of resource consumption. Which of the following scaling approaches is the most appropriate?

• A.Trending
• B.Manual
• C.Load
• D.Scheduled

Comment: *

Name: *

Email: *

Verification: *

An IT security team wants to ensure that the correct parties are informed when a specific user account is signed in. Which of the following would most likely allow an administrator to address this concern?

• A.Creating an alert based on user sign-in criteria
• B.Aggregating user sign-in logs from all systems
• C.Enabling the collection of user sign-in logs
• D.Configuring the retention of all sign-in logs

Comment: *

Name: *

Email: *

Verification: *