A security administrator is working with the human resources department to classify data held by the company. The administrator has determined the data contains a variety of data types, including health information, employee names and addresses, trade secrets, and confidential customer information. Which of the following should the security administrator do NEXT?

• A.Destroy company information that is not labeled in compliance with government regulations and laws.
• B.Create a custom set of data labels to group the data by sensitivity and protection requirements.
• C.Label sensitive data according to age to comply with retention policies.
• D.Apply a predefined set of labels from government sources to all data within the company.

Comment: *

Name: *

Email: *

Verification: *

Smart home devices that ate always on or connected, such as HVAC system components, introduce SOHO networks to risks because of:

• A.default factory settings and constant communication channels to cloud servers
• B.loT devices requiring.
• C.strong passwords which are not known by SOHO administrators preventing security patching
• D.automatic firmware updates constantly shifting the threat landscape

Comment: *

Name: *

Email: *

Verification: *

A security administrator has completed a monthly review of DNS server query logs. The administrator notices continuous name resolution attempts from a large number of internal hosts to a single Internet addressable domain name. The security administrator then correlated those logs with the establishment of persistent TCP connections out to this domain. The connections seem to be carrying on the order of kilobytes of data per week.
Which of the following is the MOST likely explanation for this company?

• A.An attacker is exfiltrating large amounts of proprietary company data.
• B.Employees are playing multiplayer computer games.
• C.Internal hosts have become members of a botnet.
• D.A worm is attempting to spread to other hosts via SMB exploits.

Comment: *

Name: *

Email: *

Verification: *

A company has three divisions, each with its own networks and services. The company decides to make its secure web portal accessible to all employees utilizing their existing usernames and passwords, The security administrator has elected to use SAML to support authentication. In this scenario, which of the following will occur when users try to authenticate to the portal? (Select TWO)

• A.The portal will function as an identity provider and issue an authentication assertion
• B.The portal will request an authentication ticket from each network that is transitively trusted
• C.The back-end networks will function as an identity provider and issue an authentication assertion
• D.The portal will function as a service provider and request an authentication assertion.
• E.The back-end networks will verify the assertion token issued by the portal functioning as the identity provider
• F.The back-end networks will request authentication tickets from the portal, which will act as the third-party service provider authentication store

Comment: *

Name: *

Email: *

Verification: *

A security administrator is investigating a report that a user is receiving suspicious emails. The user's machine has an old functioning modem installed. Which of the following security concerns need to be identified and mitigated? (Choose two.)

• A.Vishing
• B.War dialing
• C.Hoaxing
• D.Whaling
• E.Pharming
• F.Spear phishing

Comment: *

Name: *

Email: *

Verification: *