Which of the following is the best metric for an organization to focus on given recent investments in SIEM, SOAR, and a ticketing system?

• A.Mean time to detect
• B.Number of exploits by tactic
• C.Alert volume
• D.Quantity of intrusion attempts

Comment: *

Name: *

Email: *

Verification: *

A company is deploying new vulnerability scanning software to assess its systems. The current network is highly segmented, and the networking team wants to minimize the number of unique firewall rules. Which of the following scanning techniques would be most efficient to achieve the objective?

• A.Deploy a scanner sensor on every segment and perform credentialed scans
• B.Deploy a central scanner and perform non-credentialed scans
• C.Deploy agents on all systems to perform the scans
• D.Deploy a cloud-based scanner and perform a network scan

Comment: *

Name: *

Email: *

Verification: *

You are a cybersecurity analyst tasked with interpreting scan data from Company As servers You must verify the requirements are being met for all of the servers and recommend changes if you find they are not
The company's hardening guidelines indicate the following
* TLS 1 2 is the only version of TLS
running.
* Apache 2.4.18 or greater should be used.
* Only default ports should be used.
INSTRUCTIONS
using the supplied dat
a. record the status of compliance With the company's guidelines for each server.
The question contains two parts: make sure you complete Part 1 and Part 2. Make recommendations for Issues based ONLY on the hardening guidelines provided.
Part 1:

AppServ2:

AppServ3:

AppServ4:


Part 2:

Correct Answer:

check the explanation part below for the solution
Explanation:
Part 1:

Part 2:
Based on the compliance report, I recommend the following changes for each server:
AppServ1: No changes are needed for this server.
AppServ2: Disable or upgrade TLS 1.0 and TLS 1.1 to TLS 1.2 on this server to ensure secure encryption and communication between clients and the server. Update Apache from version 2.4.17 to version 2.4.18 or greater on this server to fix any potential vulnerabilities or bugs.
AppServ3: Downgrade Apache from version 2.4.19 to version 2.4.18 or lower on this server to ensure compatibility and stability with the company's applications and policies. Change the port number from 8080 to either port 80 (for HTTP) or port 443 (for HTTPS) on this server to follow the default port convention and avoid any confusion or conflicts with other services.
AppServ4: Update Apache from version 2.4.16 to version 2.4.18 or greater on this server to fix any potential vulnerabilities or bugs. Change the port number from 8443 to either port 80 (for HTTP) or port 443 (for HTTPS) on this server to follow the default port convention and avoid any confusion or conflicts with other services.

Comment: *

Name: *

Email: *

Verification: *

A security analyst is reviewing a firewall usage report that contains traffic generated over the last
30 minutes in order to locate unusual traffic patterns:

Which of the following source IP addresses does the analyst need to investigate further?

• A.10.50.180.49
• B.10.18.76.179
• C.192.168.48.147
• D.192.168.100.5

Comment: *

Name: *

Email: *

Verification: *

Which of the following is described as a method of enforcing a security policy between cloud customers and cloud services?

• A.CASB
• B.DMARC
• C.SIEM
• D.PAM

Comment: *

Name: *

Email: *

Verification: *