Which of the following BEST explains the difference between a data owner and a data custodian?

• A.The data owner grants the technical permissions for data access, while the data custodian maintains the database access controls to the data
• B.The data owner is responsible for controlling the data, while the data custodian is responsible for maintaining the chain of custody when handling the data
• C.The data owner is responsible for determining how the data may be used, while the data custodian is responsible for implementing the protection to the data
• D.The data owner is responsible for adhering to the rules for using the data, while the data custodian is responsible for determining the corporate governance regarding the data

Comment: *

Name: *

Email: *

Verification: *

Which of the following is an example of risk avoidance?

• A.Not taking preventive measures to stop the theft of equipment
• B.Installing security updates directly in production to expedite vulnerability fixes
• C.Buying insurance to prepare for financial loss associated with exploits
• D.Not installing new software to prevent compatibility errors

Comment: *

Name: *

Email: *

Verification: *

A security analyst is investigating a phishing email that contains a malicious document directed to the company's Chief Executive Officer (CEO). Which of the following should the analyst perform to understand the threat and retrieve possible IoCs?

• A.Perform a traceroute to identify the communication path
• B.Install a sandbox to run the malicious payload in a safe environment
• C.Use netstat to check whether communication has been made with a remote host
• D.Run a vulnerability scan against the CEOs computer to find possible vulnerabilities

Comment: *

Name: *

Email: *

Verification: *

A user reports constant lag and performance issues with the wireless network when working at a local coffee shop. A security analyst walks the user through an installation of Wireshark and get a five-minute pcap to analyze. The analyst observes the following output:

Which of the following attacks does the analyst MOST likely see in this packet capture?

• A.ARP poisoning
• B.Session replay
• C.Evil twin
• D.Bluejacking

Comment: *

Name: *

Email: *

Verification: *

An organization blocks user access to command-line interpreters but hackers still managed to invoke the interpreters using native administrative tools.
Which of the following should the security team do to prevent this from Happening in the future?

• A.Configure the AV to quarantine the native OS tools whenever they are executed
• B.Trigger a SIEM alert whenever the native OS tools are executed by the user
• C.Disable the built-in OS utilities as long as they are not needed for functionality.
• D.Implement HIPS to block Inbound and outbound SMB ports 139 and 445.

Comment: *

Name: *

Email: *

Verification: *