A security analyst needs to generate a server certificate to be used for 802.1X and secure RDP connections.
The analyst is unsure what is required to perform the task and solicits help from a senior colleague. Which of the following is the FIRST step the senior colleague will most likely tell the analyst to perform to accomplish this task?

• A.Generate a .pfx file
• B.Create a CRL
• C.Create an OCSP
• D.Generate a CSR

Comment: *

Name: *

Email: *

Verification: *

A document that appears to be malicious has been discovered in an email that was sent to a company's Chief Financial Officer (CFO). Which of the following would be BEST to allow a security analyst to gather information and confirm it is a malicious document without executing any code it may contain?

• A.Detonate the document in an analysis sandbox.
• B.Search for matching file hashes on malware websites.
• C.Open the document on an air-gapped network.
• D.View the document's metadata for origin clues.

Comment: *

Name: *

Email: *

Verification: *

A small company that does not have security staff wants to improve its security posture. Which of the following would BEST assist the company?

• A.SOAR
• B.IaaS
• C.PaaS
• D.MSSP

Comment: *

Name: *

Email: *

Verification: *

A security analyst needs to make a recommendation for restricting access to certain segments of the network using only data-link layer security.
Which of the following controls will the analyst MOST likely recommend?

• A.MAC
• B.ARP
• C.BPDU
• D.ACL

Comment: *

Name: *

Email: *

Verification: *

A security analyst is using a recently released security advisory to review historical logs, looking for the specific activity that was outlined in the advisory. Which of the following is the analyst doing?

• A.A packet capture
• B.A user behavior analysis
• C.Threat hunting
• D.Credentialed vulnerability scanning

Comment: *

Name: *

Email: *

Verification: *